Exam 350-401 All QuestionsBrowse all questions from this exam
Go to Exam
Question 727

Refer to the exhibit.

A company requires that all wireless users authenticate using dynamic key generation. Which configuration must be applied?

    Correct Answer: A

    To achieve dynamic key generation for wireless users, EAP (Extensible Authentication Protocol) is typically used. EAP is a flexible authentication framework that supports multiple authentication methods. In the configuration, using 'authentication open eap eap_methods' sets up the SSID to use EAP for authentication, which can handle dynamic key generation more securely and efficiently than static WEP keys. Thus, the correct configuration statement is 'AP(config-if-ssid)# authentication open eap eap_methods'.

Discussion
ClausterOption: A

After several minutes researching the answer is A. Here's the documentation that clearly states it: https://www.cisco.com/c/en/us/td/docs/routers/access/wireless/software/guide/SecurityAuthenticationTypes.html#:~:text=This%20authentication%20type%20provides%20the%20highest%20level%20of,authentication%20and%20derive%20a%20dynamic%20unicast%20WEP%20key. Also here's answer from other Exams with the same question correct answer https://exam-files.com/cisco/350-401/implementing%20cisco%20enterprise%20network%20core%20technologies%20%28350-401%20encor%29.certdumps.350-401.2022-03-01.1e.498q.vcex/ MODERATOR PLEASE FIX WHEN POSSIBLE>

PureInertiaCopy

Chat GPT seems to think it is B A company requires that all wireless users authenticate using dynamic key generation. Which configuration must be applied? A. AP(config-if-ssid)# authentication open eap eap_methods B. AP(config-if-ssid)# authentication dynamic open wep_dynamic C. AP(config-if-ssid)# authentication dynamic wep wep_methods D. AP(config-if-ssid)# authentication open wep wep_methods

PureInertiaCopy

The correct configuration for dynamic key generation in this scenario is: B. AP(config-if-ssid)# authentication dynamic open wep_dynamic Explanation: Dynamic key generation typically involves using a protocol like WEP (Wired Equivalent Privacy) with dynamic keys that are generated and changed frequently. In this context, "authentication dynamic open wep_dynamic" would likely enable dynamic key generation using the WEP protocol. Option A mentions EAP methods, which are typically used for more advanced and secure authentication methods like WPA/WPA2, not WEP. Option C is similar to Option A and is not typically used for dynamic key generation. Option D mentions WEP, but it doesn't specify dynamic key generation, and it's not recommended to use static WEP keys due to security vulnerabilities. So, the most appropriate option is B: AP(config-if-ssid)# authentication dynamic open wep_dynamic.

PureInertiaCopy

I apologize for the confusion. If the correct answer is indeed A, let me explain: A. AP(config-if-ssid)# authentication open eap eap_methods This configuration suggests using EAP (Extensible Authentication Protocol) for authentication with dynamic key generation. EAP is a more secure and flexible authentication protocol compared to WEP. EAP can be used in conjunction with other security protocols like WPA/WPA2 to provide stronger security for wireless networks. In this context, "authentication open eap eap_methods" would set up the SSID to use EAP authentication methods with dynamic key generation. Thank you for providing the correct information, and I appreciate your understanding.

Sa134Option: A

https://www.cisco.com/c/en/us/support/docs/wireless/aironet-1100-series/44844-leapserver.html

Colmenarez

this is NOT an ENCORE exam question

ihateciscoreally

just remember answer, there is no other way around

rogue_userOption: A

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/15-3-3/configuration/guide/cg15-3-3/cg15-3-3-chap10-cipherwep.html There is no such option as "open wep", only "open eap"

ImFranOption: C

When your SSID authentication mechanism uses Extensible Authentication Protocol (EAP) with 802.1x authentication (and without WPA v1 or WPA v2 support), dynamic WEP keys can be generated for each wireless user. Dynamic WEP keys are more secure than static, or unchanging, WEP keys. If an intruder passively receives enough packets encrypted by the same WEP key, the intruder can perform a calculation to learn the key and use it to join your network. Because they change frequently, dynamic WEP keys prevent intruders from performing the calculation and learning the key. Reference: https://www.cisco.com/c/en/us/td/docs/wireless/access_point/15-3-3/configuration/guide/cg15-3-3/cg15-3-3-chap10-cipherwep.html

SeMo0o0oOption: A

A is correct

Shri_Fcb10Option: A

This configuration specifies that the SSID will use EAP (Extensible Authentication Protocol) for authentication, which is commonly used for dynamic key generation in modern wireless networks.

AsombrossoOption: A

authenticate

ihateciscoreally

more questions not covered in OCG and blueprint! yay!

asiansensationOption: A

the answer is A

SeMo0o0oOption: A

A is correct