Testking Cisco 642-591 Exam
Exam 642-591: Implementing Cisco NAC Appliance Exam (CANAC)
Related Certifications: CCSP and Cisco NAC Specialist
Number of Questions: 60
Duration: 75 minutes
Exam Topics Include:
1. Implement Cisco NAC Appliance
2. Identify the components and features used for Cisco NAC Appliance
3. Configure and verify NAM and NAS to support the Cisco NAC Appliance In-Band server solutions
4. Configure and verify NAM and NAS to support the Cisco NAC appliance Out-of-Band server solutions
5. Configure and verify Cisco Switches as network access devices
6. Configure and verify user roles
The 642-591 CANAC exam is associated with both the Cisco Certified Security Professional and the Cisco Network Admission Control Specialist certifications. It is one of the optional exam choices for the CCSP. This exam tests a candidate’s knowledge of the Cisco NAC Appliance solution, including design, implementation, and configuration.
The NAS is configured to autogenerate an IP address pool of 30 subnets with a netmask of /30,
beginning at address 192.166.10.0. Which IP address is leased to the end-user host on the
second subnet?
A. 192.166.10.4
B. 192.166.10.5
C. 192.166.10.6
D. 192.166.10.7
Answer: C
QUESTION 2
Which derault administrator group has delete permissions?
A. admin
B. help-desk
C. add-edit
D. full-control
Answer: D
QUESTION 3
What is the result when the condition statement in a Cisco NAA check for required software
evaluates to false on a client machine?
A. The required software is automatically downloaded to the user device.
B. The required software is made available after the user is quarantined.
C. The user is put in the unauthenticated role and the software is considered missing.
D. The user is placed in the temporary role and the software is made available.
Answer: B
QUESTION 4
Which three components comprise a Cisco NAC Appliance solution? (Choose three.)
A. a NAC-enabled Cisco router
B. a Linux server for in-band or out-of-band network admission control
C. a Linux server for centralized management of network admission servers
D. a Cisco router to provide VPN services
E. a read-only client operating on an endpoint device
F. a NAC-enabled Cisco switch
Answer: B, C, E
3
When configuring the Cisco NAM to implement Cisco NAA requirement checking on client
machines, what is the next step after configuring checks and rules?
A. retrieve updates
B. require the use of the Cisco NAA
C. configure session timeout and traffic policies
D. map rules to requirement
E. configure requirements
Answer: E
What are the two types of traffic policies that apply to user roles? (Choose two.)
A. IP-based
B. peer-based
C. host-based
D. manager-based
E. server-based
F. VLAN-based
Answer: A, C
QUESTION 10
After you implement a network scan and view the report, you notice that a plug-in did not access
6
any of its dependent plug-ins. What did you forget to do?
A. enable the Dependent Plug-in check box on the General Tab form
B. configure dependent plug-in support when you mapped the Nessus scan check to the Nessus
plug-in rule
C. install dependent plug-ins when you updated the Cisco NAC Appliance plug-in library
D. load the dependent plug-ins for that plug-in in the Plug-in Updates form
Answer: D
testking cisco
Interactive Testing Engine Included!
60 Questions
Updated : 03/15/2008
Price : $87.99 $79.99
Free Down:Testking Cisco 642-591 Exam
pass4sure cisco 642-591 v2.93
password:www.certbible.org
Thanks for posting this, I’m glad you post valuable information about this noteworthy topic. Bookmarking your homepage! bye!