CWSP-206 Exam Details

  • Exam Code
    :CWSP-206
  • Exam Name
    :CWSP Certified Wireless Security Professional
  • Certification
    :CWNP Certifications
  • Vendor
    :CWNP
  • Total Questions
    :60 Q&As
  • Last Updated
    :Jul 10, 2026

CWNP CWSP-206 Online Questions & Answers

  • Question 31:

    For a WIPS system to identify the location of a rogue WLAN device using location pattering (RF fingerprinting), what must be done as part of the WIPS installation?

    A. A location chipset (GPS) must be installed with it.
    B. At least six antennas must be installed in each sector.
    C. The RF environment must be sampled during an RF calibration process.
    D. All WIPS sensors must be installed as dual-purpose (AP/sensor) devices.

  • Question 32:

    Which one of the following is not a role defined in the 802.1X authentication procedures used in 802.11 and 802.3 networks for port-based authentication?

    A. AAA Server
    B. Authentication Server
    C. Supplicant
    D. Authenticator

  • Question 33:

    The Aircrack-ng WLAN software tool can capture and transmit modified 802.11 frames over the wireless network. It comes pre-installed on Kali Linux and some other Linux distributions. Which one of the following would not be a suitable penetration testing action taken with this tool?

    A. Auditing the configuration and functionality of a WIPS by simulating common attack sequences.
    B. Transmitting a deauthentication frame to disconnect a user from the AP.
    C. Cracking the authentication or encryption processes implemented poorly in some WLANs.
    D. Probing the RADIUS server and authenticator to expose the RADIUS shared secret.

  • Question 34:

    A WLAN consultant has just finished installing a WLAN controller with 15 controller-based APs. Two SSIDs with separate VLANs are configured for this network, and both VLANs are configured to use the same RADIUS server. The SSIDs are configured as follows:

    SSID Blue A. The consultant does not have a valid Kerberos ID on the Blue VLAN.
    B. The client does not have a proper certificate installed for the tunneled authentication within the established TLS tunnel.
    C. The TKIP cipher suite is not a valid option for PEAPv0 authentication.
    D. The Red VLAN does not use server certificate, but the client requires one.

  • Question 35:

    ABC Company is implementing a secure 802.11 WLAN at their headquarters (HQ) building in New York and at each of the 10 small, remote branch offices around the United States. 802.1X/EAP is ABC's preferred security solution, where possible. All access points (at the HQ building and all branch offices) connect to a single WLAN controller located at HQ. Each branch office has only a single AP and minimal IT resources. What security best practices should be followed in this deployment scenario?

    A. Remote management of the WLAN controller via Telnet, SSH, HTTP, and HTTPS should be prohibited across the WAN link.
    B. RADIUS services should be provided at branch offices so that authentication server and suppliant credentials are not sent over the Internet.
    C. An encrypted VPN should connect the WLAN controller and each remote controller-based AP, or each remote site should provide an encrypted VPN tunnel to HQ.
    D. APs at HQ and at each branch office should not broadcast the same SSID; instead each branch should have a unique ID for user accounting purposes.

  • Question 36:

    ABC Hospital wishes to create a strong security policy as a first step in securing their 802.11 WLAN. Before creating the WLAN security policy, what should you ensure you possess?

    A. Management support for the process.
    B. Security policy generation software.
    C. End-user training manuals for the policies to be created.
    D. Awareness of the exact vendor devices being installed.

  • Question 37:

    ABC Company is an Internet Service Provider with thousands of customers. ABC's customers are given login credentials for network access when they become a customer. ABC uses an LDAP server as the central user credential database. ABC is extending their service to existing customers in some public access areas and would like to use their existing database for authentication. How can ABC Company use their existing user database for wireless user authentication as they implement a large-scale WPA2-Enterprise WLAN security solution?

    A. Implement a RADIUS server and query user authentication requests through the LDAP server.
    B. Mirror the LDAP server to a RADIUS database within a WLAN controller and perform daily backups to synchronize the user databases.
    C. Import all users from the LDAP server into a RADIUS server with an LDAP-to-RADIUS conversion tool.
    D. Implement an X.509 compliant Certificate Authority and enable SSL queries on the LDAP server.

  • Question 38:

    XYZ Hospital plans to improve the security and performance of their Voice over Wi-Fi implementation and will be upgrading to 802.11n phones with 802.1X/EAP authentication. XYZ would like to support fast secure roaming for the phones and will require the ability to troubleshoot reassociations that are delayed or dropped during inter-channel roaming. What portable solution would be recommended for XYZ to troubleshoot roaming problems?

    A. Spectrum analyzer software installed on a laptop computer.
    B. An autonomous AP mounted on a mobile cart and configured to operate in monitor mode.
    C. Laptop-based protocol analyzer with multiple 802.11n adapters.
    D. WIPS sensor software installed on a laptop computer.

  • Question 39:

    What preventative measures are performed by a WIPS against intrusions?

    A. Uses SNMP to disable the switch port to which rogue APs connect.
    B. Evil twin attack against a rogue AP.
    C. EAPoL Reject frame flood against a rogue AP.
    D. Deauthentication attack against a classified neighbor AP.
    E. ASLEAP attack against a rogue AP.

  • Question 40:

    The following numbered items show some of the contents of each of the four frames exchanged during the 4-way handshake.

    1.

    Encrypted GTK sent

    2.

    Confirmation of temporal key installation

    3.

    ANonce sent from authenticator to supplicant

    4.

    SNonce sent from supplicant to authenticator, MIC included

    Arrange the frames in the correct sequence beginning with the start of the 4-way handshake.

    A. 1, 2, 3, 4
    B. 3, 4, 1, 2
    C. 4, 3, 1, 2
    D. 2, 3, 4, 1

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CWNP exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CWSP-206 exam preparations and CWNP certification application, do not hesitate to visit our Vcedump.com to find your solutions here.