Practice Free 300-430 Exam Online Questions
The security policy mandates that only controller web management traffic is allowed from the IT subnet. In testing, an engineer is trying to connect to a WLAN with Web Authentication for guest users, but the page is timing out on the wireless client browser.
What is the cause of the issue?
- A . The implemented CPU ACL on the controller is blocking HTTP/HTTPS traffic from the guest clients.
- B . Web Authentication Redirect is not supported with CPU ACLs.
- C . The DNS server that is configured on the controller is incorrect.
- D . Web Authentication Redirect is supported only with Internet Explorer, and the client is using Google Chrome.
An engineer is implementing profiling for BYOD devices using Cisco ISE.
When using a distributed model, which persona must the engineer configure with the profiling service?
- A . Device Admin Node
- B . Primary Admin Node
- C . Monitor Node
- D . Policy Services Node
Which EAP method can an AP use to authenticate to the wired network?
- A . EAP-GTC
- B . EAP-MD5
- C . EAP-TLS
- D . EAP-FAST
What is the maximum time range that can be viewed on the Cisco DNA Center issues and alarms page?
- A . 3 hours
- B . 24 hours
- C . 3 days
- D . 7 days
An engineer is deploying a virtual MSE. The network has 3000 APs and needs 7000 IPS licenses.
To which size server does the engineer scale it?
- A . virtual
- B . standard
- C . high end
- D . low end
An engineer is following the proper upgrade path to upgrade a Cisco AireOS WLC from version 7.3 to 8.9.
Which two ACLs for Cisco CWA must be configured when upgrading from the specified codes? (Choose two.)
- A . Permit 0.0.0.0 0.0.0.0 any DNS any
- B . Permit 0.0.0.0 0.0.0.0 UDP DNS any
- C . Permit 0.0.0.0 0.0.0.0 UDP any DNS
- D . Permit any anyany
- E . Permit 0.0.0.0 0.0.0.0 UDP any any
AE
Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html
A wireless administrator receives this information to complete a CMX deployment in high availability by using version 10.6 to gather analytics.
– IP address of the primary server
– IP address of the secondary server
– failover mode to be configured as automatic
– root password of the secondary server
– email ID for NOC notifications
Enabling high availability fails when these parameters are used.
Which action resolves the issue?
- A . Insert the cmxadmin password of the secondary server.
- B . Use IP protocol 4242 for the controller to reach the CMX server.
- C . Place primary and secondary servers in different subnets.
- D . Enable the virtual IP address of the primary server.
A company has a single WLAN configured for 802.1x authentication with the QoS set to Silver. This WLAN supports all corporate and BYOD access. A decision has been made to allow users to install Cisco Jabber on their personal mobile devices. Users report poor voice quality when using Jabber.QoS is being applied only as best effort.
What must be configured to ensure that the WLAN remains on the Silver class and to ensure Platinum class for Jabber?
- A . Configure QoS on the mobile devices that have Jabber installed.
- B . Enable Cisco Centralized Key Management on the WLAN so that the Jabber-enabled devices will connect.
- C . Configure the WLAN to broadcast on 5 GHz radios only and allow Jabber users to connect.
- D . Configure an AVC profile for the Jabber traffic and apply it to the WLAN.
An engineer has many different WLANs on a WLC but does not want to broadcast them to every AP in the building.
Which group must be configured on the WLC to allow different WLANs on the different APs without creating new interfaces?
- A . ACL
- B . interface group
- C . mobility group
- D . AP group
D
Explanation:
In a Cisco Wireless LAN Controller (WLC), AP groups are used to manage the distribution of WLANs to different access points (APs). By configuring AP groups, an engineer can specify which WLANs are
broadcasted by which APs. This allows for the creation of multiple WLANs across different APs without the need to create new interfaces for each WLAN. AP groups provide the flexibility to control WLAN availability based on location or other criteria, ensuring that only the intended WLANs are available through specific APs.
A university campus uses Cisco Catalyst Center and Cisco Spaces to provide indoor wayfinding for students and guests by leveraging the university mobile app. IT administrators notice that location tracking is inaccurate in multistory buildings, especially near staircases and elevators. Upon investigation, they find that overlapping signals from APs on different floors are causing triangulation errors. The IT team already ensured that APs are not placed directly above or below each other. However, the problem persists, and location accuracy remains unreliable near vertical structures.
Which action must the IT team take to resolve the issue?
- A . Increase the maximum allowable client connections per AP to compensate for signal overlap in high-traffic areas.
- B . Enable coverage hole detection and mitigation to address areas with inconsistent signal strength near staircases and elevators.
- C . Adjust AP transmit power and orientation to minimize vertical signal propagation between floors and optimize coverage for horizontal triangulation
- D . Configure all the APs in the building to use the same channel to provide consistent signal coverage across floors.