CWNP Exam CWSP-208 Topic 2 Question 3 Discussion

Actual exam question for CWNP's CWSP-208 exam

Question #: 3
Topic #: 2

Given: ABC Company is implementing a secure 802.11 WLAN at their headquarters (HQ) building in New York and at each of the 10 small, remote branch offices around the United States. 802.1X/EAP is ABC's preferred security solution, where possible. All access points (at the HQ building and all branch offices) connect to a single WLAN controller located at HQ. Each branch office has only a single AP and minimal IT resources.

What security best practices should be followed in this deployment scenario?

AAn encrypted VPN should connect the WLAN controller and each remote controller-based AP, or each remote site should provide an encrypted VPN tunnel to HQ.

BAPs at HQ and at each branch office should not broadcast the same SSID; instead each branch should have a unique ID for user accounting purposes.

CRADIUS services should be provided at branch offices so that authentication server and supplicant credentials are not sent over the Internet.

DRemote management of the WLAN controller via Telnet, SSH, HTTP, and HTTPS should be prohibited across the WAN link.

Show Suggested Answer

Suggested Answer: A

by Ines at Jul 09, 2025, 08:10 AM

Limited Time Offer

25%

Off

Get Premium CWSP-208 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Dolores

16 days ago

I agree with Karan, using an encrypted VPN ensures data confidentiality and integrity.

upvoted 0 times

...

Karan

19 days ago

I think option A is the best practice for secure communication between the WLAN controller and remote APs.

upvoted 0 times

...