[Jan-2022] H12-723_V3.0 Dumps Full Questions - HCIP-Security Exam Study Guide [Q57-Q79]

[Jan-2022] H12-723_V3.0 Dumps Full Questions - HCIP-Security Exam Study Guide

Exam Questions and Answers for  H12-723_V3.0 Study Guide

NEW QUESTION 57
When a guest needs to access the network through an account, which of the following methods can be used to access? (Multiple choice)

• A. Scan public QR code
• B. No authentication, no account required
• C. Use existing socialmedia accounts
• D. Create new account

Answer: A,B,C,D

 

NEW QUESTION 58
In theAgile Controller-Campus admission control scenario, regarding the role description of the RADIUS server I client, which of the following is positive True?

• A. Agile Controller-Campus As RADIUS Server side, authentication device(like 802.1X switch)As RADIUS Client.
• B. Certified equipment(like 802. 1X switch)As RADIUS On the server side, the user terminal acts as RADIUS Client.
• C. Agile Controller-Campus As RADIUS On the server side, the user terminal acts as RADIUS Client.
• D. Agile Controller-Campus Integrated RADIUS All functions of server and client."

Answer: A

 

NEW QUESTION 59
Accordingto the different user name format and content used by the access device to verify user identity, the user name format used for MAC authentication can be changed.
There are three types. Which of the following formats is not included?

• A. ARP Option format
• B. Fixed username form
• C. DHCP Option format
• D. MAC Address format

Answer: A

 

NEW QUESTION 60
VIP Experience guarantee, from which two aspects are the main guaranteesVIP User experience? (Multiple choice)

• A. Authority
• B. Forwarding priority
• C. bandwidth
• D. Strategy

Answer: B,C

 

NEW QUESTION 61
View on the switch Agile Controller-Campus The policy issued by the server is as follows:
For this strategy, which of the following options are correct? (Multiple choice)

• A. VIP Can visit Mail Server H.
• B. Common_ user Users can accessInternet www H.
• C. VIP Users can access Internet w H.
• D. Common user Users can access Mail_ Sever resource.

Answer: A,C,D

 

NEW QUESTION 62
Free mobility is a special access control method, according to the user's access location, access time, access method and terminal authorization instructions. Set permissions, as long as the user's access conditions remain unchanged, the permissions and network experience after accessing the network--To q

• A. False
• B. True

Answer: B

 

NEW QUESTION 63
Which of the following options are relevant to MAC Certification and MAC The description of bypassauthentication is correct? (Multiple choice)

• A. MAC Certification is based on MAC The address is an authentication method that controls the user's network access authority. It does not require the user to install any client software.
• B. MAC During the authentication process, the user is required to manually enter the user name or password.
• C. MAC The bypass authentication process does not MAC The address is used as the user name and password to automatically access the network.
• D. MAC Bypass authentication is first performed on the devices that are connected to the authentication
  802 1X Certification;If the device is 802. 1X No response from authentication, re-use MAC The authentication method verifies the legitimacy of the device.

Answer: A,D

 

NEW QUESTION 64
Traditional network single--The strategy is difficult to cope with the current complex situations such as diversified users, diversified locations, diversified terminals, diversified applications, and insecure experience.

• A. False
• B. True

Answer: B

 

NEW QUESTION 65
Which of the following options belong to a third-party server account? (Multiple choice)

• A. Anonymous account
• B. AD account number
• C. Guest account
• D. Mobile certificate account)

Answer: B,D

 

NEW QUESTION 66
Portal The second-level authentication method ofauthentication refers to the direct connection between the client and the access device(Or only layer devices exist in between),The device can learn the user's MAC Address and can be used IP with MAC Address to identify the user.

• A. False
• B. True

Answer: B

 

NEW QUESTION 67
Location refers to the end user's use AC-Campus The terminal environment when accessing the controlled network office. Which of the following options is correct for the description of the place?

• A. Different places can have different security policies.
• B. Place and location have nothing to do.
• C. The location has nothing to do with safety.
• D. There can only be one place in the company.

Answer: A

 

NEW QUESTION 68
Deployed by an enterprise network managerAgile Controller-Campus withSACG Later;Identityauthentication is successful but cannot access the post-authentication domain, This phenomenon may be caused by any reason? (Multiple choice)

• A. The access control list of the post-authentication domain has not been delivered SACG.
• B. A serious violation will prohibit access to the post-authentication domain.
• C. Agile Controller-Campus Wrong post-authentication domainresources are configured on the server.
• D. ALC The number of rules issued is too many, and a lot of time is required to match, causing interruption of access services.

Answer: A,B,C

 

NEW QUESTION 69
802.1X During the authentication, if the authentication point is at the aggregation switch, in addition to RADIUS,AAA,802.1X In addition to theconventional configuration, what special configuration is needed?

• A. No special configuration required
• B. The aggregation switch needs to be configured 802 1X Transparent transmission of messages.
• C. Both the aggregation layer and the access layer switches need to be turned on 802.1X Function.
• D. Access layer switch needs to be configured 802. 1X Transparent transmission of messages.

Answer: D

 

NEW QUESTION 70
When using local guest account authentication, usually use(Portal The authentication method pushes the authentication page to the visitor. Before the user is authenticated, when the admission control device receives the HTTP The requested resource is not Portal Server authentication URL When, how to deal with the access control equipment.

• A. Discard message
• B. URL Address redirected to Portal Authentication page
• C. Direct travel
• D. Send authentication information to authentication server

Answer: B

 

NEW QUESTION 71
If the self-determined meter function is enabled on the Agile Controller-Campus and the account PMAC address is bound, Within a period of time, the number of incorrect cipher input by the end user during authentication exceeds the limit. Which of the following descriptions is correct? (multiple choice)

• A. After the lock time, the account will be automatically unlocked
• B. When the account number is reserved, only the sword type number cannot be authenticated on the bound terminal device, and it can be authenticated normally on other terminal devices.
• C. If you want to lock out the account, the administrator can only delete the account from the list.
• D. The account is locked on all terminal devices and cannot be recognized.

Answer: A,B

 

NEW QUESTION 72
In WPA2, because of the more secureencryption technology-TKIP/MIC, WPA2 is more secure than WPA.

• A. False
• B. True

Answer: A

 

NEW QUESTION 73
When performing terminal access control, the authentication technology that can be used does not include which of the following options?

• A. Bypass authentication
• B. SACG Certification p2-
• C. 8021X Certification
• D. Portal Certification

Answer: A

 

NEW QUESTION 74
Regarding the identity authentication method and authenticationtype, which of the following descriptions is correct?

• A. User passed web Agent The method can support two authentication types:digital certificate authentication and system authentication.
• B. User passed web The method can support two authentication types: local authentication and digital certificate authentication.
• C. User passed web Agent The method can support two authentication types: digital certificate authentication and local authentication.
• D. User passed Agent The method can support three authentication types: local authentication, digital certificate authentication and system authentication.

Answer: D

 

NEW QUESTION 75
Visitors can access the network through their registered account. Which of the following is not an account approval method?

• A. Exemption from approval
• B. Administrator approval
• C. Receptionist approval
• D. Self-approved by visitors

Answer: D

 

NEW QUESTION 76
Mobile smartphone, tablet PC users through Any Office Client and AE Establish IPSec Encrypted tunnel, After passing the certification and compliance check, visit the enterprise business.

• A. False
• B. True

Answer: A

 

NEW QUESTION 77
User access authentication technology does not include which of the following options?

• A. Security check
• B. Authentication
• C. Isolation repair'
• D. Access control

Answer: C

 

NEW QUESTION 78
Agile Controller-Campus The product architecture includes three levels. Which of the following options does not belong to the product architecture level?

• A. Access control layer
• B. Server layer
• C. User access layer
• D. Network device layer

Answer: A

 

NEW QUESTION 79
......

HCIP-Security-CTSS V3.0 Free Update With 100% Exam Passing Guarantee: https://www.pass4training.com/H12-723_V3.0-pass-exam-training.html