CWSP Certified Wireless Security Professional Exam (CWSP-206) - CWNP Actual Exam Questions
Last updated on April 15, 2026
For which one of the following purposes would a WIPS not be a good solution?
Enforcing wireless network security policy.
Detecting and defending against eavesdropping attacks.
Performance monitoring and troubleshooting.
Security monitoring and notification.
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
ABC Company has recently installed a WLAN controller and configured it to support WPA2-Enterprise security. The administrator has configured a security profile on the WLAN controller for each group within the company (Marketing, Sales, and Engineering). How are authenticated users assigned to groups so that they receive the correct security profile within the WLAN controller?
The RADIUS server sends the list of authenticated users and groups to the WLAN controller as part of a 4-Way Handshake prior to user authentication.
The WLAN controller polls the RADIUS server for a complete list of authenticated users and groups after each user authentication.
The RADIUS server sends a group name return list attribute to the WLAN controller during every successful user authentication.
The RADIUS server forwards the request for a group attribute to an LDAP database service, and LDAP sends the group attribute to the WLAN controller.
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
In the basic 4-way handshake used in secure 802.11 networks, what is the purpose of the ANonce and SNonce?
They are added together and used as the GMK, from which the GTK is derived.
They are used to pad Message 1 and Message 2 so each frame contains the same number of bytes.
The IEEE 802.11 standard requires that all encrypted frames contain a nonce to serve as a Message Integrity Check (MIC).
They are input values used in the derivation of the Pairwise Transient Key.
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
In XYZ’s small business, two autonomous 802.11ac APs and 12 client devices are in use with WPA2- Personal. What statement about the WLAN security of this company is true?
Intruders may obtain the passphrase with an offline dictionary attack and gain network access, but will be unable to decrypt the data traffic of other users.
Because WPA2-Personal uses Open System authentication followed by a 4-Way Handshake, hijacking attacks are easily performed.
A successful attack against all unicast traffic on the network would require a weak passphrase dictionary attack and the capture of the latest 4-Way Handshake for each client.
An unauthorized wireless client device cannot associate, but can eavesdrop on some data because WPA2-Personal does not encrypt multicast or broadcast traffic.
An unauthorized WLAN user with a protocol analyzer can decode data frames of authorized users if he captures the BSSID, client MAC address, and a user’s 4-Way Handshake.
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
ABC Hospital wishes to create a strong security policy as a first step in securing their 802.11 WLAN. Before creating the WLAN security policy, what should you ensure you possess?
Management support for the process.
Security policy generation software.
End-user training manuals for the policies to be created.
Awareness of the exact vendor devices being installed.
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Finish Practice?
Are you sure you want to finish? This will end your practice session.