Free CWNP CWSP-207 Exam Questions

Become CWNP Certified with updated CWSP-207 exam questions and correct answers

Page: 1 / 25

Total 121 Questions | Updated On: Jun 30, 2025

Add To Cart

Question 1

Given: ABC Company has recently installed a WLAN controller and configured it to support WPA2-Enterprise security. The administrator has configured a security profile on the WLAN controller for each group within the company (Marketing, Sales, and Engineering). How are authenticated users assigned to groups so that they receive the correct security profile within the WLAN controller?

A : The WLAN controller polls the RADIUS server for a complete list of authenticated users and groups after each user authentication.

B : The RADIUS server sends a group name return list attribute to the WLAN controller during every successful user authentication.

C : The RADIUS server forwards the request for a group attribute to an LDAP database service, and LDAP sends the group attribute to the WLAN controller.

D : The RADIUS server sends the list of authenticated users and groups to the WLAN controller as part of a 4-Way Handshake prior to user authentication.

Answer: B

Question 2

Given: Fred works primarily from home and public wireless hot-spots rather than commuting to the office. He frequently accesses the office network remotely from his Mac laptop using the local 802.11 WLAN. In this remote scenario, what single wireless security practice will provide the greatest security for Fred?

A : Use an IPSec VPN for connectivity to the office network

B : Use only HTTPS when agreeing to acceptable use terms on public networks

C : Use enterprise WIPS on the corporate office network

D : Use WIPS sensor software on the laptop to monitor for risks and attacks

E : Use 802.1X/PEAPv0 to connect to the corporate office network from public hot-spots

F : Use secure protocols, such as FTP, for remote file transfers.

Answer: A

Question 3

Given: You support a coffee shop and have recently installed a free 802.11ac wireless hot-spot for the benefit of your customers. You want to minimize legal risk in the event that the hot-spot is used for illegal Internet activity. What option specifies the best approach to minimize legal risk at this public hot-spot while maintaining an open venue for customer Internet access?

A : Configure WPA2-Enterprise security on the access point

B : Block TCP port 25 and 80 outbound on the Internet router

C : Require client STAs to have updated firewall and antivirus software

D : Allow only trusted patrons to use the WLAN

E : Use a WIPS to monitor all traffic and deauthenticate malicious stations

F : Implement a captive portal with an acceptable use disclaimer

Answer: F

Question 4

What is the purpose of the Pairwise Transient Key (PTK) in IEEE 802.11 Authentication and Key Management?

A : The PTK is a type of master key used as an input to the GMK, which is used for encrypting multicast data frames.

B : The PTK contains keys that are used to encrypt unicast data frames that traverse the wireless medium.

C : The PTK is XOR'd with the PSK on the Authentication Server to create the AAA key.

D : The PTK is used to encrypt the Pairwise Master Key (PMK) for distribution to the 802.1X Authenticator prior to the 4-Way Handshake.

Answer: B

Question 5

Given: ABC Company is deploying an IEEE 802.11-compliant wireless security solution using 802.1X/EAP authentication. According to company policy, the security solution must prevent an eavesdropper from decrypting data frames traversing a wireless connection. What security characteristics and/or components play a role in preventing data decryption? (Choose 2)

A : Multi-factor authentication

B : 4-Way Handshake

C : PLCP Cyclic Redundancy Check (CRC)

D : Encrypted Passphrase Protocol (EPP)

E : Integrity Check Value (ICV)

F : Group Temporal Keys

Answer: B,F

Page: 1 / 25

Total 121 Questions | Updated On: Jun 30, 2025

Add To Cart