Free CWNP CWSP-208 Exam Questions

Become CWNP Certified with updated CWSP-208 exam questions and correct answers

Page: 1 / 25

Total 121 Questions | Updated On: Jan 27, 2026

Add To Cart

Question 1

What is a primary criteria for a network to qualify as a Robust Security Network (RSN)?

A : Token cards must be used for authentication.

B : Dynamic WEP-104 encryption must be enabled.

C : WEP may not be used for encryption.

D : WPA-Personal must be supported for authentication and encryption.

E : WLAN controllers and APs must not support SSHv1.

Answer: C

Question 2

Given: ABC Company has recently installed a WLAN controller and configured it to support WPA2-Enterprise security. The administrator has configured a security profile on the WLAN controller for each group within the company (Marketing, Sales, and Engineering). How are authenticated users assigned to groups so that they receive the correct security profile within the WLAN controller?

A : The WLAN controller polls the RADIUS server for a complete list of authenticated users and groups after each user authentication.

B : The RADIUS server sends a group name return list attribute to the WLAN controller during every successful user authentication.

C : The RADIUS server forwards the request for a group attribute to an LDAP database service, and LDAP sends the group attribute to the WLAN controller.

D : The RADIUS server sends the list of authenticated users and groups to the WLAN controller as part of a 4-Way Handshake prior to user authentication.

Answer: B

Question 3

As a part of a large organization’s security policy, how should a wireless security professional address the problem of rogue access points?

A : Use a WPA2-Enterprise compliant security solution with strong mutual authentication and encryption for network access of corporate devices.

B : Hide the SSID of all legitimate APs on the network so that intruders cannot copy this parameter on rogue APs.

C : Conduct thorough manual facility scans with spectrum analyzers to detect rogue AP RF signatures.

D : A trained employee should install and configure a WIPS for rogue detection and response measures.

E : Enable port security on Ethernet switch ports with a maximum of only 3 MAC addresses on each port.

Answer: D

Question 4

What attack cannot be detected by a Wireless Intrusion Prevention System (WIPS)?

A : MAC Spoofing

B : Eavesdropping

C : Hot-spotter

D : Soft AP

E : Deauthentication flood

F : EAP flood

Answer: B

Question 5

Given: You are the WLAN administrator in your organization and you are required to monitor the network and ensure all active WLANs are providing RSNs. You have a laptop protocol analyzer configured. In what frame could you see the existence or non-existence of proper RSN configuration parameters for each BSS through the RSN IE?

A : Probe request

B : Beacon

C : RTS

D : CTS

E : Data frames

Answer: B

Page: 1 / 25

Total 121 Questions | Updated On: Jan 27, 2026

Add To Cart