Implementing Cisco NAC Appliance : 642-591 Exam
642-591 CANAC
Implementing Cisco NAC Appliance

Exam Number: 642-591
Associated Certifications: CCSP/ Cisco Network Admission Control Specialist
Duration: 75 minutes (60 questions)
Available Languages: English
Click Here to Register: Pearson VUE
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions

Exam Description Exam Topics Recommended Training Additional Resources
Exam Description
The 642-591 CANAC Implementing Cisco NAC Appliance exam is associated with both the Cisco Certified Security Professional and the Cisco Network Admission Control Specialist certifications. Candidates can prepare for this exam by taking the Implementing Cisco NAC Appliance course. This exam tests a candidate’s knowledge of the Cisco NAC Appliance solution.

Exam Topics
The following topics are general guidelines for the content likely to be included on the Remote Access exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Implement Cisco NAC Appliance
Identify the components and features used for Cisco NAC Appliance
Configure and verify NAM and NAS to support the Cisco NAC Appliance In-Band server solutions
Configure and verify NAM and NAS to support the Cisco NAC appliance Out-of-Band server solutions
Configure Single Sign on
Configure and verify Cisco Switches as network access devices
Configure and verify user roles
Implement and verify rule based policies
Configure Cisco NAC Appliance network scanning
Configure NAM to implement NAA on user devices
Implement and verify an HA solution
Administer and monitor a Cisco NAC Appliance solution

Exam Number/Code: 642-591
Exam Name:Implementing Cisco NAC Appliance

“Implementing Cisco NAC Appliance”, also known as 642-591 exam, is a Cisco certification. With the complete collection of questions and answers, Actualtests has assembled to take you through 60 Q&As to your 642-591 Exam preparation. In the 642-591 exam resources, you will cover every field and category in Others helping to ready you for your successful Cisco Certification.
Free Demo Download Actualtests offers free demo for 642-591 exam (Implementing Cisco NAC Appliance). You can check out the interface, question quality and usability of our practice exams before you decide to buy it.

Free Sample :PassGuide-it certification Printable PDF Or software Download: Actualtest offers free demo for IT certification Exams You can check out the interface, question quality and usability of our IT Simulation exams before you decide to buy it. We are the only one site can offer demo for almost all products http://demo.passguide.com/download

QUESTION 11
Where is a local user validated?
A. At the authentication Server
B. At the Cisco NAA
C. At the Cisco NAS
D. At the Cisco NAM
Answer: D
QUESTION 12
In Cisco NAC Appliance Solutions, which statements is correct regarding devices on the
certified list?
A. Device manually added to the certified device list are automatically deleted when the
device list-clearing timer expires
B. Devices that pass the Cisco NAA requirements are automatically added to the exempt
device list
C. To remove an exempt device from the certified list, click the clear Certified Device
Button
D. A device is not required to be rescanned at the next login as long as it MAC address is
in the certified list
Answer: D
QUESTION 13
How do you ensure that the Cisco NAS has the most recent version of the Cisco NAA to
install on user devices?
642-591
Actualtests.com – The Power of Knowing
A. From the Cisco NAS web Admin Console, enable Cisco NAA autoupdate on the
Administration->Software Update Form
B. The Cisco NAA is upgraded directly to each Cisco NAS using the upgrade server
form available on the Cisco NAM web console GUI
C. Configure the Cisco NAS by selecting which Cisco NAA to upgrade in the Cisco
NAA Upgrade form
D. Each Time the Cisco NAA is upgraded, the Cisco NAM automatically download the
new version of Cisco NAA to all Cisco NAS Servers
Answer: D
QUESTION 14
When trying to restrict a guest-role end user to a host that has multiple or dynamic IP
Addresses; the administrator would create which type of policy?
A. Address-based inclusion Policy
B. Server-based exemption Policy
C. Host-based traffic Control Policy
D. IP-based Access Policy
Answer: C
QUESTION 15
Custom login pages can be targeted to specific groups of end users. Which three target
methods are supported by Cisco NAC Appliance? (Choose three.)
A. Operating System
B. Subnet
C. Network Access Method
D. End-user Role
E. VLAN ID
F. Device Type
Answer: A,B,E
QUESTION 16
When configuring an in-band central-deployment virtual gateway on the Cisco NAS,
what must be configured to ensure that the interface traffic on the same Layer 2 switch
does not create a loop?
A. In the network form, select the passthrough VLAN ID option for the untrusted and
trusted management VLAN
B. Configure the first switch downstream of the Cisco NAS with Spanning Tree
C. In the managed subnet form, enter the IP address that is assigned to the Cisco NAS to
route the subnet, not the calculated network address
D. In the VLAN mapping form, map the untrusted interface VLAN ID to a trusted
642-591
Actualtests.com – The Power of Knowing
network VLAN ID
Answer: D
QUESTION 17
In an out-of-band Cisco NAC Appliance high-availability deployment, why must port
security be disabled between the switch interfaces to which the Cisco NAS and Cisco
NAM are connected?
A. Port Security interfaces with SNMP message delivery between Cisco NAM failover
peers
B. Port Security interfaces with UDP heartbeat signals
C. Port Security creates time-based latency, causing erratic SSL communication
D. Port Security can interface with Cisco NAS high availability and DHCP delivery
Answer: D
QUESTION 18
Which interface is always used by Cisco NAM failover peers to support inter-peer
connections?
A. The eth1 interface
B. The Serial Connection
C. The Second Ethernet Port
D. The eth0 Interface
Answer: A
QUESTION 19
What does the secondary Cisco NAM do after it reboots from its initial configuration?
A. Switches to active mode, enabling load sharing with the primary Cisco NAM
B. Automatically sends a message to all Cisco NAS Servers, identifying itself as the
secondary Cisco NAM
C. Automatically Synchronizes its database with the primary Cisco NAM
D. Takes over as the active Cisco NAM if the secondary Cisco NAM has a higher
priority
Answer: C
QUESTION 20
Which NAC Appliance Component performs network scanning?
A. Cisco NAC Appliance Agent
B. Cisco NAC Appliance Server
C. Cisco NAC Appliance Manager
642-591
Actualtests.com – The Power of Knowing
D. Cisco NAC Trust Agent
Answer: B

Free download:pass4sure CCSP 642-591
Free download?testking CCSP 642-591

Download Free PassGuide Product, Help you pass any it Exams,Click Me

Actualtests Free Downloads

Type	Exam Bible	NEW Questions & Answers	Latest Updated	Download link
	All Actual-Test 's Exam Pack	858	1 days ago	Full Download

Download Free Latest Actualtests Certification Braindumps

1. Free Actualtest Actualtests CCSP 642-522
2. Free Actualtest Actualtests CCSP 642-521
3. Free Actualtest Actualtests CCSP 642-532
4. Free Actualtest Actualtests CCSP 642-503
5. Free Actualtest Actualtests CCSP 642-551
6. Free Actualtest Actualtests CCSP 642-523
7. Free Actualtest Actualtests CCSP 642-533
8. Free Actualtest Actualtests CCSP 642-544
9. Free Actualtest Actualtests CCSP 642-524
10. Free Actualtest Actualtests CCSP 642-515