100% Free CWNP CWSP-208 Practice Test Questions and Answers 2026

Start Learning with the Latest and Real 100% Free CWNP CWSP-208 Exam Questions

Page: 1 / 25

Total 121 Questions | Updated On: May 24, 2026

Add To Cart

Question 1

Given: You are the WLAN administrator in your organization and you are required to monitor the network and ensure all active WLANs are providing RSNs. You have a laptop protocol analyzer configured. In what frame could you see the existence or non-existence of proper RSN configuration parameters for each BSS through the RSN IE?

A : Probe request

B : Beacon

C : RTS

D : CTS

E : Data frames

Answer: B

Question 2

As a part of a large organization’s security policy, how should a wireless security professional address the problem of rogue access points?

A : Use a WPA2-Enterprise compliant security solution with strong mutual authentication and encryption for network access of corporate devices.

B : Hide the SSID of all legitimate APs on the network so that intruders cannot copy this parameter on rogue APs.

C : Conduct thorough manual facility scans with spectrum analyzers to detect rogue AP RF signatures.

D : A trained employee should install and configure a WIPS for rogue detection and response measures.

E : Enable port security on Ethernet switch ports with a maximum of only 3 MAC addresses on each port.

Answer: D

Question 3

What preventative measures are performed by a WIPS against intrusions?

A : EAPoL Reject frame flood against a rogue AP

B : Evil twin attack against a rogue AP

C : Deauthentication attack against a classified neighbor AP

D : ASLEAP attack against a rogue AP

E : Uses SNMP to disable the switch port to which rogue APs connect

Answer: E

Question 4

What software and hardware tools are used together to hijack a wireless station from the authorized wireless network onto an unauthorized wireless network? (Choose 2)

A : RF jamming device and a wireless radio card

B : A low-gain patch antenna and terminal emulation software

C : DHCP server software and access point software

D : MAC spoofing software and MAC DoS software

Answer: A,C

Question 5

Given: In a security penetration exercise, a WLAN consultant obtains the WEP key of XYZ Corporation’s wireless network. Demonstrating the vulnerabilities of using WEP, the consultant uses a laptop running a software AP in an attempt to hijack the authorized user’s connections. XYZ’s legacy network is using 802.11n APs with 802.11b, 11g, and 11n client devices. With this setup, how can the consultant cause all of the authorized clients to establish Layer 2 connectivity with the software access point?

A : All WLAN clients will reassociate to the consultant’s software AP if the consultant’s software AP provides the same SSID on any channel with a 10 dB SNR improvement over the authorized AP.

B : A higher SSID priority value configured in the Beacon frames of the consultant’s software AP will take priority over the SSID in the authorized AP, causing the clients to reassociate.

C : When the RF signal between the clients and the authorized AP is temporarily disrupted and the consultant’s software AP is using the same SSID on a different channel than the authorized AP, the clients will reassociate to the software AP.

D : If the consultant’s software AP broadcasts Beacon frames that advertise 802.11g data rates that are faster rates than XYZ’s current 802.11b data rates, all WLAN clients will reassociate to the faster AP.

Answer: C

Page: 1 / 25

Total 121 Questions | Updated On: May 24, 2026

Add To Cart