Practice Free 350-401 Implementing Cisco Enterprise Network Core Technologies (350-401 ENCOR) Exam Questions Answers With Explanation

Add a timestamp to the request in the API header.

Use a password hash.

Add OAuth to the request in the API header.

Use HTTPS.

Set RADIUS Profiling.

Set AAA Policy name.

Enable Network Access Control State.

Enable AAA Override.

80%

8.8%

.08%

8%

leave group

hello

graft

source-specific membership report

Switches are cross-finned at the same layer and have a single connection to each upstream distribution device

Switches are connected to each upstream distribution and core device.

Switches are connected to each upstream distribution device.

Switches are cross-linked to devices at the same layer and at the upstream and downstream devices.

It uses dynamic routing to discover and provision the border and edge switches

It uses VXLAN for the control plane

It uses PnP to discover and provision border and access switches

It uses GRE tor me policy plane

provides multiple entry and exit points for fabric traffic

provides the default exit point for fabric traffic

provides the default entry point for fabric traffic

provides a host database that maps endpoint IDs to a current location

authenticates endpoints

core switch

vBond controller

edge node

access switch

border node

The 2 4-GHz balWMS§24 non-overlapping channels

Devices that connect to the same Wi-Fi channel reside in the same collision domain.

Wi-Fi channels are spaced 30 MHz apart.

The 5-GHz band offers 11 different channels for Wi-Fi clients

Enable PSK and FT + PSK.

Enable Fast Transition and FT + PSK.

Enable Fast Transition and PSK.

Change Fast Transition to Adaptive Enabled and enable FT * PSK.

Data forwarding is stopped until the routing protocols reconverge after the switchover.

The standby route processor initialization is started when the primary router processor fails.

The standby route processor is fully initialed and state information is maintained.

User sessions are immediately recreated on the new active route processor.

Data forwarding can continue along known paths until routing protocol information is restored.

SE-connect mode

sensor mode

client mode

sniffer mode

security ft adaptive

security wpa akm dotlx

security wpa akm psk

security wpa akm ft psk

They enable programmers to change or write their own application within the device operating system.

They create more secure and efficient SNMP OIDs.

They make the CLI simpler and more efficient.

They provide a standardized data structure, which results in configuration scalability and consistency.

an encrypted JSON token that is used for authentication

an encrypted JSON token that is used for authorization

an encoded JSON token that is used to securely exchange information

an encoded JSON token that is used for authentication

Layer 3

Layer 7

Layer 1

Layer 2

012345

(0.5)

05

01234

as strict data structures defined by RFC 6020

in an XML tree format

In an HTML format

as modules within a tree

broadcast discover request

join request to all the WLCs

unicast discovery request to each WLC

Unicast discovery request to the first WLS that resolves the domain name

CCMP256 encryption with CCKM key management

GCMP128 encryption with OWE key management

CCMP128 encryption with SAE key management

GCMP256 encryption with 802.1x key management

ECMP

HSRP

RSVP

NSF

to enable vBond to learn the public IP of WAN Edge devices that are behind NAT gateways or in private address space

to facilitate downloading and distribution of operational and security patches

to allow for global reachability from all WAN Edges in the Cisco SD-WAN and to facilitate NAT traversal

to provide access to Cisco Smart Licensing servers for license enablement

OAuth 2 tokens

cookie-based session authentication

API keys

SSL/TLS certificate encryption

header and payload

three parts separated by dots: version, header, and signature

payload and signature

three parts separated by dots: header, payload. and signature

Puppet

Ansible

Saltstack

Chef

VlanNames(0)

VlanName[Vlan1']

VlanName['response']

list(VlanNames)

Increase antenna size.

Increase the cell size of each AP.

Increase the mandatory minimum data rate.

Increase TX power.

low complexity and high overall solution scale

centralized reachability. security, and application policies

operates over DTLS and TLS authenticated and secured tunnels

unified data plane and control plane

mobile IP

mobility tunnel

LWAPP tunnel

GRE tunnel

Set the 24 Mbps and 54 Mbps data rates to Supported.

Set the RSSI Threshold to -67dBm.

Set the Fragmentation Threshold to 1250 bytes

Disable RSSI Low Check.

Passive

Tap

Inline tap

Inline

Clients must obtain a new IP address when they roam between APs.

It provides seamless roaming between APs that are connected to different Layer 3 networks and different mobility groups.

It is only supported on controllers that run SSO.

It provides seamless client roaming between APs in different Layer 3 networks but within the same mobility group.

network underlay

network control platform

network data platform

partner ecosystem

fabric overlay

action 4.0 syslog command "show process cpu sorted | append flash:high-cpu-file"

action 4.0 cli command "show process cpu sorted | append flash:high-cpu-file"

action 4.0 ens-event "show process cpu sorted | append flash:high-cpu-file"

action 4.0 publish-event "show process cpu sorted | append flash:high-cpu-file"

crypto file ransomware protection using a file hash calculation

file retrospection using continuous scan and analyses

phishing file quarantine using an internal environment to store attached files

file sandboxing using a protected environment to analyze and simulate the behavior of unknown files

There is a later software version available on Cisco Catalyst Center (formerly DNA Center).

The current software image does not match the selected Golden image for this type of network device.

The current type of software image does not match the type of the network device.

There is a later software version available at www.cisco.com website.

They exchange XML-formatted content

They exchange JSON-kxmatted content.

They implement the RESTCONF protocol.

They implement the NETCONF protocol.

They exchange protobuf-formatted content.

in charge of establishing Layer 3 adjacencies with nonfabric unmanaged node

performs tunnelling between fabric and nonfabric devices to route traffic over unknown networks

provides fabric extension to nonfabric devices through remote registration and configuration

used to extend the fabric connecting to downstream nonfabric enabled Layer 2 switches

anchor

foreign

mobility

transparent

fabric control plane node

fabric edge node

fabric border node

fabric wireless controller

Devices are assigned to virtual networks based on their VLAN membership.

Scalable group tags are used for macrosegmentatlon.

Virtual networks are used for microsegmentation.

All traffic is Layer 3 within the fabric.

TrustSec

MACsec

IPsec

GRE

It connects 1o ITSM services such as ServiceNow.

It allows administrators to make API calls to Cisco DNA Center.

It sends webhooks from Cisco DNA Center when alerts are triggered

It adds support for managing non-Cisco devices from Cisco DNA Center.

GLBP

LCAP

HSRP

VRRP

tap

inline tap

high availability

clustering

15

20

25

10

to provide centralized management and provisioning of all elements into the network

to configure NAT communication on WAN Edge routers

to provide configuration synchronization of an WAN Edge devices

to facilitate start-up by performing authentication and authorization of all elements into the network

on the first-hop fabric edge switch

on the WLC node

on the fabric border node switch

directly on the fabric APs

ingress tunnel router

map resolver

egress tunnel router

map server

RFID

client probing

beacons

data packets

The token has expired

The URI string is incorrect

Authentication has failed

The JSON payload contains the incorrect UUID