CCNA: Cisco Certified Network Associate — Question 270

An administrator must secure the WLC from receiving spoofed association requests. Which steps must be taken to configure the WLC to restrict the requests and force the user to wait 10 ms to retry an association request?

Answer options

• A. Enable MAC filtering and set the SA Query timeout to 10.
• B. Enable 802.1x Layer 2 security and set the Comeback timer to 10.
• C. Enable Security Association Teardown Protection and set the SA Query timeout to 10.
• D. Enable the Protected Management Frame service and set the Comeback timer to 10.

Correct answer: D

Explanation

The correct answer is D because enabling the Protected Management Frame service helps secure management frames, thus preventing spoofed requests and adds a Comeback timer for retries. The other options do not directly address the requirement to secure against spoofing or do not implement the specified 10 ms delay correctly.