Cisco 350-401 today updated questions - Verified by Cisco Experts

Implementing Cisco Enterprise Network Core Technologies (350-401 ENCOR) Questions and Answers

Question 1

Which technology collects location information through data packets received by the APs instead of using mobile device probes?

Options:

detect and locate

FastLocate

hyperlocation

RF fingerprinting

Question 2

Refer to the exhibit An engineer is troubleshooting an issue with non-Wi-Fi interference on the 5-GHz band The engineer has enabled Cisco CleanAir and set the appropriate traps, but the AP does not change the channel when it detects significant interference Which action will resolve the issue?

Options:

Enable the Avoid Persistent Non-WiFi Interference option

Disable the Avoid Foreign AP Interference option.

Change the DCA Sensitivity option to High

Enable the Event Driven Radio Resource Management option

Question 3

What is a benefit of MACsec in a multilayered LAN network design?

Options:

There is no requirement to run IEEE 802.1X when MACsec is enabled on a switch port.

Layer 2 trunk links between switches can be secured.

Application flows between hosts on the LAN to remote destinations can be encrypted.

Layer 3 links between switches can be secured.

Question 4

What is the intent API in Cisco Catalyst Center (formerly DNA Center)?

Options:

northbound consumer-facing RESTful API, which enables network discovery and configuration management

southbound consumer-facing RESTful API. which enables network discovery and configuration management

interface between the controller and the network devices, which enables network discovery and configuration management

westbound interface, which allows the exchange of data such as ITSM. IPAM, and reporting information

Question 5

Which two components are needed when a Cisco SD-Access fabric is designed? (Choose two.)

Options:

Cisco Catalyst Center (formerly DNA Center) application

Firepower Threat Defense

Identity Service Engine

Cisco Data Center Network Manager

Cisco Prime Infrastructure

Question 6

In a campus network design, what are two benefits of using BFD for failure detection'? (Choose two.)

Options:

BFD speeds up routing convergence time

BFD provides path failure detection in less than a second

BFD provides fault tolerance by enabling multiple routers to appear as a single virtual router

BFD is an efficient way to reduce memory and CPU usage

BFD enables network peers to continue forwarding packets in the event of a restart

Question 7

Which task Is mandatory when provisioning a device through the plug-and-play workflow in Cisco DNA Center?

Options:

site assignment

slack serial number assignment

golden image upgrade

template configuration application

Question 8

Drag and drop the code snippets from the bottom onto the blanks in the code to construct a request that configures a deny rule on an access list?

Options:

Question 9

What is a characteristic of omnidirectional antennas?

Options:

It includes dish antennas.

It has high gain.

It provides the most focused and narrow beamwidth.

It includes dipole antennas.

Question 10

An engineer must configure a new 6 Ghz only SSID on a cisco catalyst 9800 series WLC, with these requirements:

Provide 802.11ax data rates for supported devices

All users authenticate using a certificate

Which wireless layer 2 security mode meets the requirements?

Options:

WPA2 Enterprise

WPA3 Personal

WPA2 Personal

WPA3 Enterprise

Question 11

Drag and drop the automation characteristics from the left onto the appropriate tools on the right. Not all options are used.

Options:

Question 12

An engineer is configuring RADIUS-Based Authentication with EAP. MS-CHAPv2 is configured on a client device. Which outer method protocol must be configured on the ISE to support this authentication type?

Options:

EAP-TLS

EAP-FAST

LDAP

PEAP

Question 13

Which data is properly formatted with JSON?

Options:

Option A

Option B

Option C

Option D

Question 14

How does Cisco DNA Center perform a network discovery?

Options:

using SNMP

using ICMP

through a DHCP server

using CDP with a seed IP address

Question 15

Refer to the exhibit. Running the script causes the output in the exhibit. What should be the first line of the script?

Options:

import manager

ncclient manager import

from ncclient import *

from ncclient import manager

Question 16

Which two southbound interfaces originate from Cisco Catalyst Center (formerly DNA Center) and terminate at fabric underlay switches'? (Choose two.)

Options:

ICMP Discovery

UDP67 DHCP

TCP 23 Telnet

UDP6007 NetFlow

UDP 162 SNMP

Question 17

At which plane does vBond operate in Cisco SD-WAN solutions?

Options:

control plane

data plane

orchestration plane

management plane

Question 18

Refer to the exhibit. An engineer builds an EEM script to apply an access list. Which statement must be added to complete the script?

Options:

event none

action 6.0 cli command "ip access-list extended 101"

action 2.1 cli command "ip access-list extended 101"

action 3.1 cli command "ip access-list extended 101"

Question 19

Drag and drop the snippets onto the blanks within the code to create an EEM script that adds an entry to a locally stored text file with a timestamp when a configuration change is made. Not all options are used.

Options:

Question 20

Which characteristics applies to Cisco SD-Access?

Options:

It uses dynamic routing to discover and provision the border and edge switches

It uses VXLAN for the control plane

It uses PnP to discover and provision border and access switches

It uses GRE tor me policy plane

Question 21

Refer to the exhibit. What is achieved by this Python script?

Options:

It configures access list statements

It reads access list statements into a dictionary list

It displays access list statements on a terminal screen.

It converts access list statements to a human-readable format.

Question 22

Which device is responsible for finding EID-to-RLOC mappings when traffic is sent to a LISP-capable site?

Options:

ingress tunnel router

map resolver

egress tunnel router

map server

Question 23

Which tag defines the roaming domain and properties of an AP deployment?

Options:

RF tag

policy tag

site tag

AP tag

Question 24

Which device makes the decision for a wireless client to roam?

Options:

wireless client

Wireless LAN controller

access point

WCS location server

Question 25

What is a characteristic of Layer 3 roaming?

Options:

Clients must obtain a new IP address when they roam between APs.

It provides seamless roaming between APs that are connected to different Layer 3 networks and different mobility groups.

It is only supported on controllers that run SSO.

It provides seamless client roaming between APs in different Layer 3 networks but within the same mobility group.

Question 26

Which controller is the single plane of management for Cisco SD-WAN?

Options:

vBond

vEdge

vSmart

vManage

Question 27

What is the name of the numerical relationship of the wireless signal compared to the noise floor?

Options:

SNR

RSSI

EIRP

gain

Question 28

Refer to the exhibit. Which HTTP request produced the REST API response that was returned by the Cisco Catalyst Center (formerly DNA Center) platform?

Options:

POST /auth/token

GET /network-device

GET /template-programmer/template/version/42a3df73-3ef4-49e2-b4f0-6927bbd4bf52

POST /discovery

Question 29

Ascriptcontainsthe statement white loop != 999 ’ Which value terminates the loop?

Options:

A value equal to 999.

A value not equal to 999.

A value greater than or equal to 999.

A value less than or equal to 999.

Question 30

Refer to the exhibit. Which Python snippet stores the data structure of the device in JSON format?

Options:

A close up of a text AI-generated content may be incorrect.

A close up of a logo AI-generated content may be incorrect.

A close up of a text AI-generated content may be incorrect.

A black text on a white background AI-generated content may be incorrect.

Question 31

Refer to the exhibit.

What does the snippet of code achieve?

Options:

It creates a temporary connection to a Cisco Nexus device and retrieves a token to be used for API calls.

It opens a tunnel and encapsulates the login information, if the host key is correct.

It opens an ncclient connection to a Cisco Nexus device and maintains it for the duration of the context.

It creates an SSH connection using the SSH key that is stored, and the password is ignored.

Question 32

What does a next-generation firewall that is deployed at the data center protect against?

Options:

signature-based malware

DMZ web server vulnerabilities

zero-day attacks

DDoS

Question 33

What are two characteristics of Cisco Catalyst SD-WAN? (Choose two.)

Options:

control plane operates over DTLS/TLS authenticated and secured tunnels

time-consuming configuration and maintenance

distributed control plane

unified data plane and control plane

centralized reachability, security, and application policies

Question 34

Which technology is the Cisco SD-Access control plane based on?

Options:

IS-IS

LISP

Cisco TrustSec

VXLAN

Question 35

What is the API keys option for REST API authentication?

Options:

a credential that is transmitted unencrypted

one-time encrypted token

a username that is stored in the local router

a predetermined string that is passed from client to server.

Question 36

A customer requests a design that includes GLBP as the FHRP. The network architect discovers that the members of the GLBP group have different throughput capabilities. Which GLBP load balancing method supports this environment?