Huawei H12-723_V3.0 Dumps

The aggregation layer device is not configured RADIUS Certification template.

Agile Controller-Campus The switch is not added on NAS equipment.

Connect to the terminal on the device to open 802.1X Function.

The Layer 2 link is used between the access device and the aggregation device, and it is not turned on 802 Instrument transparent transmission function

router

switch

Firewall

IPS

Visitor registration account can be configured to be exempt from approval

Guest login can only be configured as Web Way of webpage

Anonymous account authentication cannot be performed on the guest authentication page

Visitor account approval information can be notified to visitors via SMS

True

False

S5720HI Series Switch:

AR Series router

USG6000 Series firewall

SVN5600 series

Open https://SM server IP:8943 in the browser, enter the account admin and the default password Changeme123, if the login is successful, it will be explained. The SIM components are normal.

After logging in to SC, select Resources>Users>User Management to create a common account. Open https://SM server IP:8447 in the browser newauth, if you can successfully log in using the account created in the previous step, the SM component is normal.

Open https://SC Server IP:8443 in the browser and enter the account admin and the default password Changeme123. If the login is successful, it will be explained. The SC component is normal.

Afterlogging in to SM, select Ziyuan>User>User Management, and Xinlu has a common part number. Open https://SC server IP:8447 newauth in the browser. If you can successfully log in with the account created in the previous step, it means that the SC component is Wang Chang.

MAC Certification is based on MAC The address is an authentication method that controls the user's network access authority. It does not require the user to install any client software.

MAC Bypass authentication is first performed on the devices that are connected to the authentication 802 1X Certification;If the device is 802. 1X No response from authentication, re-use MAC The authentication method verifies the legitimacy of the device.

MAC During the authentication process, the user is required to manually enter the user name or password.

MAC The bypass authentication process does not MAC The address is used as the user name and password to automatically access the network.

True

False

User passed web The method can support two authentication types: local authentication and digital certificate authentication.

User passed web Agent The method can support two authentication types:digital certificate authentication and system authentication.

User passed Agent The method can support three authentication types: local authentication, digital certificate authentication and system authentication.

User passed web Agent The method can support two authentication types: digital certificate authentication and local authentication.

You can check whether the screen saver is enabled on the terminal

You can check whether the screen saver password is enabled

Only supports Windows operating system

Screen saver settings cannot be automatically repaired

Agile Controller-CampusThere is no corresponding user on.

switch AAA Configuration error.

The switch is not turned on Portal Function.

Portal The push page on the server is wrong.

Wired access

Wireless access

VPN Access

802.1X Access

Different places can have different security policies.

The location has nothing to do with safety.

There can only be one place in the company.

Place and location have nothing to do.

192.168.1.0 definitely is Agile Controller-Campus Manager IP address

if 192.126.200.11 Is the server of the post-authentication domain, then IP Address is 192.18.0.1 If your terminal has not passed the authentication, it is possible to access the server.

192.168.100.1 definitely is Agile Controller-Campus Controller IP address.

Ifin 6 Within minutes of the conversation 192.168.0.19 154->/192.162.0.11: 15080 Not refreshed,IP Address is 192.168.0.119 If the device wants to IP Address is 192.168.200.11 For device communication, the session must be re-established.

WLAN Is to adopt 80211 Technical WiFi

WLAN There are two basic architectures: FAT AP with AC+FIT AP

AC+FATAP The architecture is suitable for medium andlarge use scenarios

AC+FITAP Autonomous network architecture

The automatic account lock and manual account lock functions cannot be activated at the same time.

For automatically locked accounts, if the number of incorrect passwords entered by the terminal user during authenticationexceeds the limited number of times within a limited time, the account will be automatically locked.

For manually locked accounts, the administrator needs to manually add the account to the locked account list.

Manually lock the account anddelete it from the list, the lock of the account will be released.

Portal The certification process is only used in Web Certification

Server for a terminal Portal Certification will only give one Portal Device sends authentication message

Switch received Portal Online message, will give Radius Server send Radius Certification request

Portal The authentication message will not carry the result of the security check

Users can use Any Office Perform authentication.

User can't use web Way to authenticate.

Users can use Web Agent Perform authentication.

Users can use their own 802. 1X The client authenticates.

True

False

Brute force

Crowd attack

DoS Denial of service attack

Weak IV attack

Define security group

Define and deploy group policies

The system runs automatically

Security group reported by the system

Define user groups

hardware SACG use Any Office Perform admission control.

software SACG use Any Office Perform admission control.

hardware SACG Thansoftware SACG cut costs.

hardware SACG The security is higher.

When a terminal device accesses the network, it first authenticates the user's identity through the access device, and the access device cooperates withthe authentication server to complete the user Authentication.

The terminal device directly interacts with the security policy server, and the terminal reports its own status information, including virus database version, operating system version, andterminal Information such as the patch version installed on the device.

The security policy server checks the status information of the terminal, and for terminal devices that do not meet the corporate security standards, the security policy server reissues. The authorization information is given to the access device.

The terminal device selects the answer to the resource to be accessed according to the result of the status check.

A serious violation will prohibit access to the post-authentication domain.

The access control list of the post-authentication domain has not been delivered SACG.

ALC The number of rules issued is too many, and a lot of time is required to match, causing interruption of access services.

Agile Controller-Campus Wrong post-authentication domainresources are configured on the server.

When configuring the policy template, you can inherit the parent template and modify the parent template policy

Only the strategy in the strategy template can be used, and the administrator cannot customize the strategy.

You can assign a policy template to a certain network segment.

If different policy templates are applied to departments and accounts, the policy template assigned to the highest priority will take effect. The priority relationship of the number is: account>department