Free CWNP CWSP-207 Practice Exam with Questions & Answers

Name: How to Pass CWSP-207 Exams
Brand: Examstrack
SKU: cwsp-207
Price: 42 USD
Availability: InStock

Questions 1

When monitoring APs within a LAN using a Wireless Network Management System (WNMS), what secure protocol may be used by the WNMS to issue configuration changes to APs?

Options:

IPSec/ESP

TFTP

802.1X/EAP

SNMPv3

PPTP

CWNP CWSP-207 Premium Access

Ava

15-Jun-2025

The 24/7 support team at Examstrack was always there to assist me during my CWSP-207 certification journey.

Questions 2

Select the answer option that arranges the numbered events in the correct time sequence (first to last) for a client associating to a BSS using EAP-PEAPv0/MSCHAPv2.

1. Installation of PTK

2. Initiation of 4-way handshake

3. Open system authentication

4. 802.11 association

5. 802.1X controlled port is opened for data traffic

6. Client validates server certificate

7. AS validates client credentials

Options:

3—4—6—7—2—1—5

4—3—5—2—7—6—1

5—3—4—2—6—7—1

6—1—3—4—2—7—5

4—3—2—7—6—1—5

3—4—7—6—5—2—1

Questions 3

ABC Company requires the ability to identify and quickly locate rogue devices. ABC has chosen an overlay WIPS solution with sensors that use dipole antennas to perform this task. Use your knowledge of location tracking techniques to answer the question.

In what ways can this 802.11-based WIPS platform determine the location of rogue laptops or APs? (Choose 3)

Options:

Time Difference of Arrival (TDoA)

Angle of Arrival (AoA)

Trilateration of RSSI measurements

GPS Positioning

RF Fingerprinting

Questions 4

You are implementing an 802.11ac WLAN and a WIPS at the same time. You must choose between integrated and overlay WIPS solutions. Which of the following statements is true regarding integrated WIPS solutions?

Options:

Integrated WIPS always perform better from a client throughput perspective because the same radio that performs the threat scanning also services the clients.

Integrated WIPS use special sensors installed alongside the APs to scan for threats.

Many integrated WIPS solutions that detect Voice over Wi-Fi traffic will cease scanning altogether to accommodate the latency sensitive client traffic.

Integrated WIPS is always more expensive than overlay WIPS.

Questions 5

Given: You have implemented strong authentication and encryption mechanisms for your enterprise 802.11 WLAN using 802.1X/EAP with AES-CCMP.

For users connecting within the headquarters office, what other security solution will provide continuous monitoring of both clients and APs with 802.11-specific tracking?

Options:

IPSec VPN client and server software

Internet firewall software

Wireless intrusion prevention system

WLAN endpoint agent software

RADIUS proxy server

Questions 6

Given: A network security auditor is preparing to perform a comprehensive assessment of an 802.11ac network’s security.

What task should be performed at the beginning of the audit to maximize the auditor’s ability to expose network vulnerabilities?

Options:

Identify the IP subnet information for each network segment.

Identify the manufacturer of the wireless intrusion prevention system.

Identify the skill level of the wireless network security administrator(s).

Identify the manufacturer of the wireless infrastructure hardware.

Identify the wireless security solution(s) currently in use.

Questions 7

In an effort to optimize WLAN performance, ABC Company has upgraded their WLAN infrastructure from 802.11a/g to 802.11n. 802.11a/g clients are still supported and are used throughout ABC’s facility. ABC has always been highly security conscious, but due to budget limitations, they have not yet updated their overlay WIPS solution to 802.11n or 802.11ac.

Given ABC’s deployment strategy, what security risks would not be detected by the 802.11a/g WIPS?

Options:

Hijacking attack performed by using a rogue 802.11n AP against an 802.11a client

Rogue AP operating in Greenfield 40 MHz-only mode

802.11a STA performing a deauthentication attack against 802.11n APs

802.11n client spoofing the MAC address of an authorized 802.11n client

Questions 8

Wireless Intrusion Prevention Systems (WIPS) are used for what purposes? (Choose 3)

Options:

Performance monitoring and troubleshooting

Enforcing wireless network security policy

Detecting and defending against eavesdropping attacks

Security monitoring and notification

Preventing physical carrier sense attacks

Classifying wired client devices

Questions 9

ABC Company has deployed a Single Channel Architecture (SCA) solution to help overcome some of the common problems with client roaming. In such a network, all APs are configured with the same channel and BSSID. PEAPv0/EAP-MSCHAPv2 is the only supported authentication mechanism.

As the Voice over Wi-Fi (STA-1) client moves throughout this network, what events are occurring?

Options:

STA-1 initiates open authentication and 802.11 association with each AP prior to roaming.

The WLAN controller is querying the RADIUS server for authentication before the association of STA-1 is moved from one AP to the next.

STA-1 controls when and where to roam by using signal and performance metrics in accordance with the chipset drivers and 802.11k.

The WLAN controller controls the AP to which STA-1 is associated and transparently moves this association in accordance with the physical location of STA-1.

Questions 10

Given: Your network implements an 802.1X/EAP-based wireless security solution. A WLAN controller is installed and manages seven APs. FreeRADIUS is used for the RADIUS server and is installed on a dedicated server named SRV21. One example client is a MacBook Pro with 8 GB RAM.

What device functions as the 802.1X/EAP Authenticator?

Options:

SRV21

WLAN Controller/AP

MacBook Pro

RADIUS server