Exampromax - Stuvia US 2025/2026
1
CWNP PW-071 Questions and Answers and
Graded
What security features are often supported in Wi-Fi networks?
You must select 3 answers
Rogue device scanning
Quality of Service filters
CCMP and TKIP encryption
© 2025 Assignment Expert
802.1X/EAP authentication
Exampromax - Stuvia US
Correct Answer
Rogue device scanning
CCMP and TKIP encryption
802.1X/EAP authentication
For retail stores in which customer credit card information traverses the
Wi-Fi network, what regulatory governance should be considered?
You must select 1 answer
WEP
PCI
ROTC
HIPAA
, Exampromax - Stuvia US 2025/2026
2
SOX
Correct Answer
PCI
In 802.11 Wi-Fi network security, WPA2-Enterprise uses _________ and
_________ for user-based authentication?
You must select 1 answer
WPA and WMM
© 2025 Assignment Expert
Exampromax - Stuvia US
WEP and Shared Key
802.1X/EAP and RADIUS
Passphrases and Master Keys
CCMP and TKIP
Correct Answer
802.1X/EAP and RADIUS.
There are three roles in a WPA2-Enterprise implementation:
supplicant (client), authenticator (AP or Controller/AP), and
authentication server (RADIUS). WPA2-Enterprise uses an
802.1X/EAP user authentication scheme (to verify user
credentials).
ABC Company has multiple departments and would like to control the
network, as follows:
, Exampromax - Stuvia US 2025/2026
3
Accounting - SID: ACCT, VLAN-20, 500 Kbps rate limit
Engineering - SSID: ENG, VLAN-50, no rate limitation
Sales - SSID: SALES, VLAN-100, 500 Kbps rate limit
Executive - SSID: EXEC, VLAN-10, no rate limitation
What security feature supports these requirements?
You must select 1 answer
Role Based Access Control (RBAC)
© 2025 Assignment Expert
Exampromax - Stuvia US
Wireless Intrusion Prevention Systems (WIPS)
Virtual Private Networking (VPN)
MAC filtering
User Access Priority (UAP) filters
Correct Answer
Role Based Access Control (RBAC).
Role Based Access Control (also called Role Based Firewall)
is a feature set within Wi-Fi infrastructure equipment used
to assign network authorization parameters to users or
groups of users. These parameters can be things like rate -
limiting, security parameters, QoS controls, location, and
much more. RBAC features should be a security policy
requirement for any medium or large organization that
deploys a Wi-Fi network.
, Exampromax - Stuvia US 2025/2026
4
What vulnerabilities are present when SSID hiding is used as a security
mechanism?
You must select 1 answer
- Role Based Access Control (RBAC) cannot be enabled in Wi-Fi networks
where SSID hiding is enabled.
- A hidden SSID can often be derived by decryption software utilities when
capturing frames from the wireless medium.
- SSIDs are only required for networks using 802.1X/EAP security, which
makes passphrase-secured networks vulnerable to attack.
© 2025 Assignment Expert
- SSID values cannot be removed from some frame types, which allows
Exampromax - Stuvia US
attackers to discover the SSID if these frames traverse the wireless medium.
Correct Answer
SSID values cannot be removed from some frame types,
which allows attackers to discover the SSID if these frames
traverse the wireless medium.
SSID values are present in Beacons, Probe Requests &
Responses, Association and ReAssociation Requests, and
other frames. When SSID hiding is enabled, depending on
the vendor's implementation, the SSID values will be
removed from Beacons and certain probe response frames.
Protocol analyzers and other diagnostic software can easily
see the SSID in other frames that traverse the wireless
medium.
Within the Wi-Fi Alliance's WPA2 security suite, there are two encryption
methods that can be used. CCMP is one of those methods. What is the
other?
1
CWNP PW-071 Questions and Answers and
Graded
What security features are often supported in Wi-Fi networks?
You must select 3 answers
Rogue device scanning
Quality of Service filters
CCMP and TKIP encryption
© 2025 Assignment Expert
802.1X/EAP authentication
Exampromax - Stuvia US
Correct Answer
Rogue device scanning
CCMP and TKIP encryption
802.1X/EAP authentication
For retail stores in which customer credit card information traverses the
Wi-Fi network, what regulatory governance should be considered?
You must select 1 answer
WEP
PCI
ROTC
HIPAA
, Exampromax - Stuvia US 2025/2026
2
SOX
Correct Answer
PCI
In 802.11 Wi-Fi network security, WPA2-Enterprise uses _________ and
_________ for user-based authentication?
You must select 1 answer
WPA and WMM
© 2025 Assignment Expert
Exampromax - Stuvia US
WEP and Shared Key
802.1X/EAP and RADIUS
Passphrases and Master Keys
CCMP and TKIP
Correct Answer
802.1X/EAP and RADIUS.
There are three roles in a WPA2-Enterprise implementation:
supplicant (client), authenticator (AP or Controller/AP), and
authentication server (RADIUS). WPA2-Enterprise uses an
802.1X/EAP user authentication scheme (to verify user
credentials).
ABC Company has multiple departments and would like to control the
network, as follows:
, Exampromax - Stuvia US 2025/2026
3
Accounting - SID: ACCT, VLAN-20, 500 Kbps rate limit
Engineering - SSID: ENG, VLAN-50, no rate limitation
Sales - SSID: SALES, VLAN-100, 500 Kbps rate limit
Executive - SSID: EXEC, VLAN-10, no rate limitation
What security feature supports these requirements?
You must select 1 answer
Role Based Access Control (RBAC)
© 2025 Assignment Expert
Exampromax - Stuvia US
Wireless Intrusion Prevention Systems (WIPS)
Virtual Private Networking (VPN)
MAC filtering
User Access Priority (UAP) filters
Correct Answer
Role Based Access Control (RBAC).
Role Based Access Control (also called Role Based Firewall)
is a feature set within Wi-Fi infrastructure equipment used
to assign network authorization parameters to users or
groups of users. These parameters can be things like rate -
limiting, security parameters, QoS controls, location, and
much more. RBAC features should be a security policy
requirement for any medium or large organization that
deploys a Wi-Fi network.
, Exampromax - Stuvia US 2025/2026
4
What vulnerabilities are present when SSID hiding is used as a security
mechanism?
You must select 1 answer
- Role Based Access Control (RBAC) cannot be enabled in Wi-Fi networks
where SSID hiding is enabled.
- A hidden SSID can often be derived by decryption software utilities when
capturing frames from the wireless medium.
- SSIDs are only required for networks using 802.1X/EAP security, which
makes passphrase-secured networks vulnerable to attack.
© 2025 Assignment Expert
- SSID values cannot be removed from some frame types, which allows
Exampromax - Stuvia US
attackers to discover the SSID if these frames traverse the wireless medium.
Correct Answer
SSID values cannot be removed from some frame types,
which allows attackers to discover the SSID if these frames
traverse the wireless medium.
SSID values are present in Beacons, Probe Requests &
Responses, Association and ReAssociation Requests, and
other frames. When SSID hiding is enabled, depending on
the vendor's implementation, the SSID values will be
removed from Beacons and certain probe response frames.
Protocol analyzers and other diagnostic software can easily
see the SSID in other frames that traverse the wireless
medium.
Within the Wi-Fi Alliance's WPA2 security suite, there are two encryption
methods that can be used. CCMP is one of those methods. What is the
other?
