Welcome to TestSimulate

Pass Your Next Certification Exam Fast!

Everything you need to prepare, learn & pass your certification exam easily.

365 days free updates. First attempt guaranteed success.

  • Home
  • Blogs
  • [Q74-Q99] Real Huawei H12-723 Exam Questions [Updated 2022]

[Q74-Q99] Real Huawei H12-723 Exam Questions [Updated 2022]

Share

Real Huawei H12-723 Exam Questions [Updated 2022]

H12-723 Exam Dumps Pass with Updated 2022 HCIP-Security-CTSS(Huawei Certified ICT Professional -Constructing Terminal Security System)

NEW QUESTION 74
Agile controller-Campus system can manage the software installed on the terminal, define the black and white list, and assist the terminal to install the necessary software and uninstall the software that is not allowed to be installed by linking with the access control device. The definition of the black and white list, which is correct?

  • A. Check for prohibited install software and software that must be installed
  • B. Check for prohibited install software and allowed install software
  • C. Check for prohibited install software
  • D. Check the software that must be installed

Answer: A

 

NEW QUESTION 75
Check the policy delivered by the Agile Controller-Campus server on the switch as follows:
<SW>display acl all
Total nonempty ACL number is 3
Advanced ACL Auto PGM_OPEN_POLICY_3999 , 0 rule
Acl's step is 5
Ucl-group ACL Auto_PGM_U2 9996 , 1 rule
Acl's step is 5
rule 1 permit ip source ucl-group name Common_user destination ucl-group name Mail_Server(match-counter 0) Ucl-group ACL Auto_PGM_U1 9997 , 2 rules Acl's step is 5 rule 1 permit ip source ucl-group name VIP destination ucl-group name Mail_Server (match-counter 0) rule 2 permit ip source ucl-group name VIP destination ucl-group name Internet_WWW (match-counter 0) Ucl-group ACL Auto_PGM 9998 , 1 rule Acl's step is 5 rule 1 deny ip source ucl-group 0 (match-counter 0) Lid-group ACL Auto_PGM_PREFER_POLICY 9999 , 0 rule Acl's step is 5 Which of the following are correct for this strategy? (Multiple choices)

  • A. Common_user users can access Mail_Server resources.
  • B. Common_user users can access Internet_WWW resources.
  • C. VIP users can access Internet_WWW resources.
  • D. VIP can access Mail_Server resources.

Answer: A,C,D

 

NEW QUESTION 76
Which of the following options are right 802. 1X The description of the access process is correct? (Multiple choice).

  • A. 802.1X Authentication does not require security policy checks.
  • B. use MD5 The algorithm checks the information.
  • C. Through the entire authentication process, the terminal passes EAP The message exchanges information with the server.
  • D. Terminal and 802.1X Switch EAP Message interaction,802.1X Switch and server use Radius Message exchange information

Answer: B,D

 

NEW QUESTION 77
Which of the following descriptions are correct regarding MAC authentication and MAC bypass authentication?

  • A. If network port only connects dumb terminals (printers, IP phones), use MAC authentication to shorten the authentication time.
  • B. If one network port may connected to dumb terminal (printer, IP phone) or to laptop, use MAC bypass authentication. Try 802.1X authentication first. After the authentication fails, try MAC authentication again.
  • C. The biggest difference between the two is MAC bypass authentication belongs to 802.1X authentication, while MAC authentication does not belong to 802.1X authentication.
  • D. MAC authentication has one more 802.1X authentication link than MAC bypass authentication, so it takes longer than MAC bypass authentication.

Answer: A,B,C

 

NEW QUESTION 78
Regarding the description of the logic architecture of the business accompanying, which of the following options is correct?

  • A. The network equipment plane focuses on user terminals and static resources.
  • B. The user plane focuses on authentication points and policy enforcement points.
  • C. The business management plane focuses on administrators, authentication servers, and policy servers.
  • D. The business free mobility logic architecture includes a management subsystem, an authentication and authorization subsystem, and a business strategy subsystem.

Answer: C

 

NEW QUESTION 79
The traditional campus network is based on IP As the core network, if there are mobile office users, which of the following options is not the problem that mobile office users face when deploying access authentication?

  • A. The deployment of the access control strategy is significant.
  • B. User experience technology
  • C. The user distribution range is large, and the access control requirements are high.
  • D. Access rights are difficult to control.

Answer: C

 

NEW QUESTION 80
Which of the following are correct about hardware SACG authentication deployment scenario? (Multiple choices)

  • A. SACG authentication is generally used in scenarios where new networks are set up for wireless admission control.
  • B. SACG is generally deployed in bypass mode without changing the original network topology.
  • C. SACG essentially controls access to users through 802.1X technology.
  • D. SACG authentication is generally used in stable network scenarios where wired admission control is performed.

Answer: B,D

 

NEW QUESTION 81
Sort all services according to user group and account: By the end IP The address range is time-sharing, if it is a user group, a small terminal with an account IP Address range allocation for the same business(Chen Gongji outside business) I The business assigned to the one with the highest priority will take effect.
Which of the following is correct regarding the order of priority?

  • A. account>user group>terminal IP Address range
  • B. By the end P Address range>account number>user group
  • C. user group>terminal P Address range>Account
  • D. account>Terminal protection address range>user group

Answer: D

 

NEW QUESTION 82
According to the different user name format and content used by the access device to verify user identity, the user name format used for MAC authentication can be changed.
There are three types. Which of the following formats is not included?

  • A. DHCP Option format
  • B. MAC Address format
  • C. ARP Option format
  • D. Fixed username form

Answer: C

 

NEW QUESTION 83
An account can only belong to one user group, that is, one user only can belong to one department.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 84
When configuring the antivirus software policy, if you set"The required antivirus software violation level is not installed or running"for"generally"And check"out Now serious violation of the rules prohibits access to the network"Options. When the user uses Any office Certify, The certification is passed, but the result of the security check Can the user access the network when the virus software is not turned on?

  • A. Can access the network? Can also access network resources.
  • B. You can access the network, but you need to re-authenticate to access network resources.
  • C. Can pick up? The network needs to be repaired before you can access network resources.
  • D. Cannot access the network.

Answer: C

 

NEW QUESTION 85
How to check if MC service is started?

  • A. Check whether TMCServer and TMCServerDaemon services are started in Task Manager.
  • B. Check whether TMCServerDaemon service is started in Task Manager.
  • C. Check whether TMCServer service is started in task manager.
  • D. On the server, choose "Start> All Programs> Huawei> Agile Controller> Server Controller" Check whether MC status is "Running".

Answer: A

 

NEW QUESTION 86
In the visitor reception hall of a company, there are many temporary terminal users, and the administrator hopes that users do not need to provide any account numbers and passwords. access Internet. Which of the following authentication methods can be used for access?

  • A. Anonymous authentication
  • B. MAC Certification
  • C. AD Account Verification
  • D. Local account authentication

Answer: A

 

NEW QUESTION 87
The Agile Controller-Campus is deployed on Windows platform and use SQL Server database.
Which of the following is true about HA function of Agile Controller-Campus? (Multiple choices)

  • A. When deploying the management center MC, HA is supported and HA active/standby switchover based on Keepalived technology is provided.
  • B. When deploying the service manager SM, HA is supported and HA active/standby switchover based on Keepalived technology is provided.
  • C. When the database DB is deployed, HA is supported. Use SQL Server database mirroring technology, you need to deploy the primary DB + mirror DB + witness DB.
  • D. When deploying the service controller SC, HA is supported and backup scheme for resource pool mode is provided. N+1 SC need to be deployed.

Answer: C,D

 

NEW QUESTION 88
Portal authentication on the Agile Controller-Campus has been configured and is correct.
Configure the following commands on the access control switch:
[S5720] authentication free-rule 1 destination ip 10.1.31.78 mask 255.255. 255.255 Which of the following options are correct? (multiple choice)

  • A. After the configuration is complete, the switch will automatically release the data flow to access the security controller,No need for manual configuration by the administrator.
  • B. Only after the authentication is passed, the terminal can access 10.1.31.78 Host.
  • C. After the configuration is complete, the administrator still needs to manually configure the release network segment
  • D. This configuration allows users to access network resources before authentication.

Answer: A,D

 

NEW QUESTION 89
When performing terminal access control, the authentication technology that can be used does not include which of the following options?

  • A. SACG Certification p2-
  • B. Bypass authentication
  • C. 8021X Certification
  • D. Portal Certification

Answer: B

 

NEW QUESTION 90
When visitor needs to access the network through an account, which of the following methods can be used to access it? (Multiple choices)

  • A. Scan public QR code
  • B. Use existing social media accounts
  • C. Create new account
  • D. No certification, no account required

Answer: A,B,C,D

 

NEW QUESTION 91
Which deployment mode does Agile Controller-Campus not support?

  • A. Centralized deployment
  • B. Two-machine deployment
  • C. Hierarchical deployment
  • D. Distributed deployment

Answer: B

 

NEW QUESTION 92
Regarding the policy for checking account security, which of the following descriptions are correct? (Multiple choice)

  • A. It cannot be repaired automatically._
  • B. You can check whether there is a weak password.
  • C. You can check whether the account has joined a specific group.
  • D. It is not possible to check whether the password length meets the requirements.

Answer: B,C

 

NEW QUESTION 93
Portal page push rule has priority. The high precedence rule matches the user's authentication information first. If none of the configured rules match, the default rule is used.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 94
When the test-aaa command is used on the access control device to test the connectivity to the Radius server, the operation result is displayed successfully. However, the user cannot access the device normally. Possible reasons do not include the following options:

  • A. In the wireless 802.1X scenario, no security profile is configured on the access control device.
  • B. The user account or password is wrong configured.
  • C. The service controller does not join AD domain in AD authentication scenario.
  • D. The access layer switch does not enable EAP transparent transmission.

Answer: B

 

NEW QUESTION 95
In Portal authentication, which of the following parameters must be configured on the switch? (Multiple choice)

  • A. Portal Protocol version
  • B. Portal server IP
  • C. Portal page URL
  • D. shared-key

Answer: B,C,D

 

NEW QUESTION 96
Terminal security access technology does not include which of the following options?

  • A. System Management
  • B. safety certificate
  • C. Access control
  • D. Authentication

Answer: A

 

NEW QUESTION 97
After an enterprise deployed antivirus software, it was discovered that virus infections still occurred on a large scale. In addition to the limitations of the product's own technology, the reason for the problem is weak personal terminal security protection, which is also an important factor.

  • A. right
  • B. wrong

Answer: A

 

NEW QUESTION 98
Agile Controller-Campus The department includes four parts of the management center(MC)Business manager(SM)And business controller(SC)And client network access equipment (NAD)As a component of the solution, it is linked with the service controller to realize user access control and free mobility.

  • A. right
  • B. wrong

Answer: A

 

NEW QUESTION 99
......

H12-723 Exam Dumps, H12-723 Practice Test Questions: https://www.testsimulate.com/H12-723-study-materials.html

Related Blogs

more
Go To H12-723 Questions

Copyright © 2026 TESTSIMULATE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.