• Home
  • Articles
  • HCNP-Security Real Exam Questions and Answers FREE H12-723-ENU Updated on Jan 10, 2022 [Q96-Q117]

HCNP-Security Real Exam Questions and Answers FREE H12-723-ENU Updated on Jan 10, 2022 [Q96-Q117]

Share

HCNP-Security H12-723-ENU Real Exam Questions and Answers FREE Updated on Jan 10, 2022

H12-723-ENU Ultimate Study Guide -  Prep4pass

NEW QUESTION 96
The admission control server is the implementer of the enterprise security policy and is responsible for implementing the corresponding admission control (allow, deny, quarantine, or restrict) according to the security policy formulated by the customer network.

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 97
When all services are allocated according to the user group, account number and terminal IP address range, if the same service is assigned to the user group, account number and terminal IP address range (except the announcement service), the business assigned by the highest priority will take effect.
About the order of priorities, which of the following is correct?

  • A. Account> User Group> Terminal IP Address Range
  • B. Account> Terminal IP Address Range> User Group
  • C. Terminal IP Address Range> Account> User Group
  • D. User Group> Terminal IP Address Range> Account

Answer: B

 

NEW QUESTION 98
In SA detection technology, which feature detection matching method does not include?

  • A. single packet match
  • B. IP match
  • C. multi-stream match
  • D. multi-Pack match

Answer: B

 

NEW QUESTION 99
When deploying the Agile Controller-Campus, the high-reliability solution of the Windows+SQL Server platform is adopted. Which of the following components is not supported for deployment?

  • A. Deploy witness DB
  • B. Deploy the main DB
  • C. Deploy MC and SM dual machine backup
  • D. Deploy image DBO

Answer: C

 

NEW QUESTION 100
For the convenience of visitors, different authentication and registration pages can be pushed for different visitors. When configuring push page policy, you need to define different matching conditions. Which of the following can be used as qualified matching conditions? (Multiple selection)

  • A. Access device location information
  • B. SSID of access network
  • C. Guest account priority
  • D. Terminal IP address

Answer: B,D

 

NEW QUESTION 101
Import the user information of the AD server on the Agile Controller-Campus to realize the user's access authentication. If the user is in the Agile.
The user information is not found on the Controller-Campus. Which of the following actions will be performed in the next step?

  • A. Discard user information.
  • B. Synchronize the database again.
  • C. User 91 Information sent to AD The server performs verification.
  • D. Straight forward to return authentication failure information.

Answer: C

 

NEW QUESTION 102
The user access security solution is one-kind"End to end"Security architecture. The user access security architecture includes three key components:Terminal equipment, network access equipment and access server.

  • A. wrong
  • B. right

Answer: B

 

NEW QUESTION 103
Which of the statement is not correct according to following configuration?
[USG] pattern-group 6t type url
[USG-pattern-group-url-bt] pattern any bt.com
[USG] url-filter policy urlpolicy3
[USG-urlfilter-policy-urlpolicy3] blacklist enable
[USG-urlfilter-policy-urlpolicy3] whitelist enable
[USG-urlfilter-policy-urlpolicy3] blacklist group 6t
[USG] web-filter policy webpolicy3
[USG-web-filter-policy-webpolicy3] policy url-filter urlpolicy3
[USG-policy-interzone-trust-untrust-outbound] policy 3
[USG-policy-interzone-trust-untrust-outbound-3] action permit
[USG-policy-interzone-trust-untrust-outbound-3] policy source range 10.10.10.101 10.10.10.200
[USG-policy-interzone-trust-untrust-outbound-3] policy web-filter webpolicy3

  • A. users of IP address 10.10.10.100 can access bt.com website
  • B. users of IP address 10.10.10.120 can access bt.com website
  • C. users of IP address 10.10.10.220 can access bt.com website
  • D. users of IP address 10.10.10.199 cannot access bt.com website

Answer: B

 

NEW QUESTION 104
Visitors can access the network through their registered account. Which of the following is not an account's approval method?

  • A. Receptionist Approval
  • B. Administrator approval
  • C. Visitor self-approval
  • D. Free approval

Answer: C

 

NEW QUESTION 105
Location refers to the terminal environment when terminal user use AC-Campus to access controlled network.
Which of the following about the location is correct?

  • A. There can only be one location in the company.
  • B. Different locations can have different security strategy.
  • C. There is no relationship between locations.
  • D. There is no relationship between location and safety.

Answer: B

 

NEW QUESTION 106
The multi-level defense system is mainly reflected in the network level and the system level. Which of the following options are used for security defense at the network level? (Multiple choice)

  • A. hardware SACG
  • B. Authentication server
  • C. 802.1X switch
  • D. software SACG

Answer: A,C,D

 

NEW QUESTION 107
Which of the following methods can security protection be used for enterprise terminal security?

  • A. Encrypted access
  • B. Auditing and accounting
  • C. Business isolation
  • D. Admission control

Answer: D

 

NEW QUESTION 108
Which of the following cybersecurity threats exist only in WLAN In the network?

  • A. Weak IV attack
  • B. Crowd attack
  • C. Brute force
  • D. DoS Denial of service attack

Answer: A

 

NEW QUESTION 109
Web Standards that come with the client and operating system 8021 The instrument client only has the function of identity authentication: It does not support the execution of inspection strategies and monitoring strategies. Any Office The client supports all inspection strategies and monitoring strategies.

  • A. wrong
  • B. right

Answer: B

 

NEW QUESTION 110
After the enterprise network administrator deploys Agile Controller-Campus and SACG, the authentication succeeds but the authentication domain can't be accessed. This may be due to which reasons? (Multiple choices)

  • A. Wrong post-authentication domain resources are configured on Agile Controller-Campus.
  • B. Serious violations will prevent access to the post-authentication domain.
  • C. ALC rules are issued in large quantities and require a lot of time to match, causing interruption of access services.
  • D. The access control list of post-authentication domain is not delivered to SACG.

Answer: A,B,D

 

NEW QUESTION 111
Which of the following steps does not need to be completed before install Agile Controller-Campus?

  • A. Import License
  • B. Install antivirus software
  • C. Install the database
  • D. Install the operating system

Answer: A

 

NEW QUESTION 112
Which of the following are correct for Any Office solution content? (Multiple choices)

  • A. Quickly integrate and interface with enterprise application cloud platform.
  • B. Application rapid integration can be extended.
  • C. Provide a unified security portal for enterprise mobility applications on mobile devices.
  • D. The tunnel is dedicated and viruses can't intrude.

Answer: A,B,C,D

 

NEW QUESTION 113
The following is the 802.1X access control switch configuration:
[S5720]dot1x authentication-method eap
[S5720-GigabitEthernet0/0/1] port link-type access
[S5720-GigabitEthemet0/0/1] port default vlan 11
[S5720-GigabitEthernet0/0/1] authentication dot1x
Assuming that GE0/0/1 is connected to user 1 and user 2 through the HUB, which of the following options is correct?

  • A. GE0/0/1 does not need to enable dot1X
  • B. User 1 and User 2 must be individually authenticated before they can access network resources
  • C. After user 1 is authenticated, user 2 can access network resources without authentication
  • D. Neither user 1 nor user 2 can pass the authentication and access network resources.

Answer: C

 

NEW QUESTION 114
Which of the following is correct about Portal authentication process?

  • A. Portal authentication process is only used in Web authentication
  • B. Portal authentication for a terminal on the server will only send authentication messages to Portal device
  • C. The switch receives Portal online message and sends Radius authentication request to the Radius server.
  • D. Portal authentication message does not carry the result of security check

Answer: C

 

NEW QUESTION 115
Portal page push rule has priority. The high precedence rule matches the user's authentication information first. If none of the configured rules match, the default rule is used.

  • A. False
  • B. True

Answer: B

 

NEW QUESTION 116
Which of the following are correct about 802.1X access process? (Multiple choices)

  • A. 802.1X authentication does not require security policy checks.
  • B. The terminal exchanges EAP packets with the 802.1X switch. The 802.1X switch and the server use Radius packets exchange information.
  • C. Use MD5 algorithm to verify the information.
  • D. Throughout the authentication process, the terminal exchanges information through the server and EAP packets.

Answer: B,C

 

NEW QUESTION 117
......

Ultimate Guide to Prepare H12-723-ENU Certification Exam for HCNP-Security: https://www.prep4pass.com/H12-723-ENU_exam-braindumps.html

Related Articles

more
Huawei H12-723-ENU Certification Practice Exam

Prep4pass is experienced IT certification exam prep provider with high passing rate, our accurate and valid exam preparation help candidates pass exam 100%.

Latest Exam Prep

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Prep4pass NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy