JN0-140試験無料問題集（120題）「Juniper Certified Internet Associate (JNCIA-AC) 140 認定」

出題：1

Which statement is correct about 802.1X authentication?

A. Keys used for data encryption after authentication can be generated dynamically.

B. A network access device, such as a wireless access point, authenticates the user credentials.

C. The user must provide a valid user certificate to be allowed access to a LAN.

D. In a wireless network, 802.1x authentication must occur before an 802.11 association method can occur.

正解：A 解答を投票する

出題：2

If Host Checker restrictions are applied at the role level and the "Allow access to the role if any ONE of the select policies is passed" option is unchecked, which two statements are true? (Choose two.)

A. Clients must pass all policies to access the role.

B. Clients will pass as long as one policy is accepted.

C. Each role is evaluated separately.

D. All roles are evaluated together.

正解：A,C 解答を投票する

出題：3

Which type of policy on the Infranet Controller would allow you to specify QoS functions such as bandwidth restrictions for users who are assigned to a particular role?

A. Host Checker Policy

B. Resource Policy

C. Sign-In Policy

D. RADIUS Attribute Policy

正解：D 解答を投票する

出題：4

Which three statements about dynamic filtering are true? (Choose three.)

A. Dynamic filtering can select any log field to filter.

B. Dynamic filtering has an option to save query.

C. Dynamic filtering redraws the log when you select a variable link.

D. Dynamic filtering permanently removes other log entries.

E. Dynamic filtering creates a query statement.

正解：B,C,E 解答を投票する

出題：5

What is the function of the Host Checker?

A. Runs on the endpoint and checks for healthy communication with the Infranet Enforcer and the Infranet Controller.

B. Communicates with the Infranet Enforcer and restricts access to resources.

C. Communicates with the Infranet Controller and checks endpoint security compliance.

D. Runs on the Infranet Controller and ensures reachability to agents.

正解：C 解答を投票する

出題：6

What must be configured to enable the Infranet Controller to respond to a RADIUS request from a network access device?

A. RADIUS Client Policy

B. Sign-In Policy

C. RADIUS Attribute Policy

D. Location Group Policy

正解：A 解答を投票する

出題：7

Which capability would 802.1X provide in a deployment?

A. to control a user's location group

B. to control role assignment

C. to control their authentication server

D. to control what VLAN they are assigned

正解：D 解答を投票する

出題：8

Which statement is accurate about the UAC agent?

A. The UAC agent is installed by the Infranet Controller.

B. UAC agent is installed by the switch.

C. The UAC agent is installed by the Infranet Enforcer.

D. The UAC agent communicates with Infranet Enforcer when using agentless mode.

正解：A 解答を投票する

出題：9

What will fail if time is not synchronized between the Infranet Controller and the Infranet Enforcer?

A. Infranet Enforcer log rollback

B. certificate validation

C. Infranet Controller 802.1X VLAN assignment

D. local user authentication

正解：B 解答を投票する

出題：10

Which three options can be configured on the Host Checker policy for a Linux or Mac platform? (Choose three.)

A. registry entries

B. files

C. processes

D. integrated third-party security products

E. ports

正解：B,C,E 解答を投票する

JN0-140試験無料問題集「Juniper Certified Internet Associate (JNCIA-AC) 140 認定」