A security administrator wants to configure a company's wireless network in a way that will prevent wireless clients from broadcasting the company's SSID. Which of the following should be configured on the company's access points?
https://www.wi-fi.org/beacon/philipp-ebbecke/protected-management-frames-enhance-wi-fi-network-security
who_cares may be correct based on the "client" focus. Enable protected management frames blocks a number of attacks..."when enabled, provides integrity protection for both unicast and broadcast management frames, and also encrypts unicast management frames in the same way as data to provide confidentiality." I'm not sure of the "prevent wireless clients from broadcasting the company's SSID" unless it is from encryption.
BUTTT... the question states simply, "prevent wireless clients from broadcasting the company's SSID." Just disable SSID broadcast.?.? Wouldn't best practice to be to first disable SSID broadcast (Basic) then enable protected management frames (Advanced)?
Answer: F
Explanation:
The previous Security+ courses discussed a rudimentary wireless security measure of disabling SSID broadcasts. This would prevent the SSID from appearing in the list of nearby wireless networks. Anyone could still connect to the wireless network by knowing the SSID and typing it in. Note: the SSID is case sensitive.
This is not discussed in this course.
"Sometimes the most obvious answer is the right answer." => and unfortunately wrong in this case:
SSID Broadcasting Off:
- Client devices must actively probe for known networks.
- Client devices are advertising trusted SSIDs.
The correct answer is A.
Read and understand this here:
https://www.juniper.net/documentation/en_US/junos-space-apps/network-director3.7/topics/concept/wireless-ssid-bssid-essid.html
Enabling ESSID broadcast won't work.
... So let's take it one step further into a Wi-Fi network that has multiple WAPs, an ESS. How do you determine the network name at this level? You simply repurpose the SSID, only apply it to the ESS as an Extended Service Set Identifier (ESSID).
Unfortunately, most Wi-Fi devices just use the term SSID, not ESSID. When you configure a wireless device to connect to an ESS, you're technically using the ESSID rather than just the SSID, but the manufacturer often has tried to make it simple for you by using only the term SSID.
TIP The CompTIA Network+ certification exam uses the two terms-SSID and ESSID-interchangeably. Concentrate on these two terms for the exam.
(https://sourcedaddy.com/networking/bssid-ssid-and-essid.html)
OR....OR...You could read the question! Where it says stopping WIRELESS CLIENTS from broadcasting and NEVER MENTIONS ANYTHING ABOUT WIRELESS APs. Then, You could google a term you have never seen, like PROTECTED MANAGEMENT FRAMES to learn that this stops advanced sniffers from capturing the SSID--- WAIT FOR IT--- not from an SSID broadcast beacon but from discovering it using deep packet inspection, like with wireshark. You would probably get this link
https://www.snbforums.com/threads/protected-management-frames.15584/
which gives you the following synopsis
Management Frames are the signaling packets used in 802.11 WiFi to allow a device to negotiate with an AP. The concept of Protected Management Frames was introduced in 2009, but can apply to all flavors of 802.11 (A,B,G, N, etc). It's support is supposed to be mandated for any WPA2 or TKIP device that wants to use the WiFi Alliance logo.
AND THEN YOU MIGHT NOT MISS THE QUESTION ON THE TEST SINCE THIS IS THE ONLY ANSWER THAT REMOTELY DEALS WITH CLIENTS!!!! YOU ARE WELCOME
upvoted 2 times
...
...
This section is not available anymore. Please use the main Exam Page.SY0-501 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
MrChopsticks
Highly Voted 4 years, 10 months agoHanzero
4 years, 7 months agowho__cares123456789___
4 years, 4 months agoRzRsHt
4 years agoRzRsHt
4 years agoreadyyeti
Most Recent 3 years, 10 months agoMiltduhilt
4 years, 3 months agoMara03
4 years, 9 months agovaxakaw829
4 years, 9 months agowho__cares123456789___
4 years, 4 months ago