[Oct 12, 2021] Updates Up to 365 days On Valid H12-723 Braindumps
Best QualityH12-723 Exam Questions Huawei Test To Gain Brilliante Result
NEW QUESTION 47
In the terminal host check class policy, you can control the access of the terminal host by checking whether the important subkeys and keys of the registry meet the requirements. Which of the following check results are recorded as violations? (Multiple choices)
- A. The registry contains the "subkeys and key values" enforced by this policy.
- B. The registry does not include the "subkeys and key values" enforced by this policy.
- C. The registry does not "subkeys and key values" prohibited by this policy.
- D. The registry contains "subkeys and key values" prohibited by this policy.
Answer: B,D
NEW QUESTION 48
Agile Controller-Campus system architecture belongs to C/S architecture.
- A. False
- B. True
Answer: A
NEW QUESTION 49
For the application scenario of centralized deployment and distributed deployment of Agile Controller-Campus, which of the following are correct? (Multiple choices)
- A. If most of the end users are concentrated in one area, a few end users work in branch and centralized deployment is recommended.
- B. If end users are geographically dispersed, it is recommended to use centralized deployment solution.
- C. If end users are geographically dispersed, it is recommended to use distributed deployment solution.
- D. If most of the end users are concentrated in one area, a few end users work in branch and distributed deployment is recommended.
Answer: A,C
NEW QUESTION 50
Which of the following are correct about hardware SACG authentication deployment scenario? (Multiple choices)
- A. SACG authentication is generally used in stable network scenarios where wired admission control is performed.
- B. SACG authentication is generally used in scenarios where new networks are set up for wireless admission control.
- C. SACG essentially controls access to users through 802.1X technology.
- D. SACG is generally deployed in bypass mode without changing the original network topology.
Answer: A,D
NEW QUESTION 51
Which of the following are the correct of security domains in Agile Controller-Campus? (Multiple choices)
- A. The user domain is generally composed of various types of terminal users. The terminal in this area has features such as large quantity, wide distribution and strong flow.
- B. A service domain is an area that provides security services for intranets of enterprises. This area is generally composed of systems that provide security services such as anti-virus servers, patch management servers and terminal security servers.
- C. The network domain is the security protection area most concerned by all kinds of enterprises, and it carries the important and core information assets of the enterprise.
- D. The service domain is a platform for service traffic bearing. It use security technology to logically divide the business according to the enterprise's needs, so as to achieve the security of the network.
Answer: A,B
NEW QUESTION 52
In order to increase the security of AP, online AP may be authenticated on AC.
What are the current authentication methods supported by Huawei AC?
- A. Password authentication
- B. SN certification
- C. No certification
- D. MAC authentication
Answer: B,C,D
NEW QUESTION 53
A Layer 3 forwarding device exists between the authentication client and the admission control device. In this case, if the Layer 3 authentication mode of Portal authentication is adopted, the device can also obtain the MAC address of the authentication client. Therefore, the IP address and MAC address can be used as the same to identify the user's information.
- A. False
- B. True
Answer: A
NEW QUESTION 54
The administrator issues notices to users through the form of announcements, such as the latest software and patch installation notices, etc. Which of the following options is wrong?
- A. The endpoint must have proxy client installed to receive announcements.
- B. You can issue an announcement by department.
- C. You can issue an announcement by account number.
- D. If the system issues an announcement and the proxy client is not online, it will not receive the announcement information after going online.
Answer: D
NEW QUESTION 55
The admission control server is the implementer of the enterprise security policy and is responsible for implementing the corresponding admission control (allow, deny, quarantine, or restrict) according to the security policy formulated by the customer network.
- A. False
- B. True
Answer: A
NEW QUESTION 56
Which of the following belongs to MAC prioritized Portal authentication application scenario?
- A. Users use Portal page for authentication.
- B. Users are concerned about WeChat for authentication.
- C. The user use NAC client for authentication.
- D. When the user use Portal for the first authentication, RADIUS server caches MAC address used by the terminal. If the terminal goes offline after being dropped within the validity period of the cache, RADIUS server searches the cache for MAC address of the terminal directly for authentication.
Answer: D
NEW QUESTION 57
MAC bypass authentication means that the access control device automatically obtains MAC address after the terminal is connected to the network, and sends the certificate of the access network to RADIUS server for verification.
- A. False
- B. True
Answer: A
NEW QUESTION 58
When visitor needs to access the network through an account, which of the following methods can be used to access it? (Multiple choices)
- A. Scan public QR code
- B. Use existing social media accounts
- C. No certification, no account required
- D. Create new account
Answer: A,B,C,D
NEW QUESTION 59
The AD/LDAP account can be synchronized to Agile Controller-Campus or not to Agile Controller-Campus. The synchronization to Agile Controller-Campus can only be authorized by the user group. If it is not synchronized to Agile Controller-Campus, it can be based on account authorization.
- A. False
- B. True
Answer: A
NEW QUESTION 60
Use the command on the switch to view the free deployment status of the service. The command is as follows:
<SW>display group-policy status
Controller IP address: 10.1.31.78
Controller port: 5222
Backup controller IP address: -
Backup controller port: -
Source IP address: 10.1.10.34
State: working
Connected controller: master
Device protocol version: 2
Controller protocol version: 2
For the above command, which of the following descriptions is correct?
- A. The address of the authentication device is 10.1.31.78
- B. The status is "working" indicating that the association between the switch and the controller is successful.
- C. The control server address is 10.1.10.34
- D. The current Controller server is backup
Answer: B
NEW QUESTION 61
According to the format and content of the user name used by the access device to verify the identity of the user, the user name format used for MAC authentication can be divided into three types. Which of the following formats is not included?
- A. ARP option format
- B. DHCP option format
- C. MAC address format
- D. Fixed username form
Answer: A
NEW QUESTION 62
According to different reliability requirements, centralized networking can provide different reliability networking solutions. Which of the following are correct about these solutions? (Multiple choices)
- A. In addition to deploying basic networking components, SC reliability networking requires the deployment of one more standby SM server.
- B. The basic networking includes deploy one SM server, one SC server, one DB and one AE server.
- C. In addition to deploying basic networking components, DB reliability networking requires the deployment of one more standby DB.
- D. In addition to deploying basic networking components, AE reliability networking requires the deployment of one more standby SC server.
Answer: B,C
NEW QUESTION 63
......
Focus on H12-723 All-in-One Exam Guide For Quick Preparation: https://www.itcertmagic.com/Huawei/real-H12-723-exam-prep-dumps.html