Junos Pulse Access Control, Specialist (JNCIS-AC)

Question 1

An authentication realm consists of which three authentication resources? (Choose three.)

A. Authentication policy

B. End-point security policy

C. Authentication server

D. Session options

E. Role-mapping rules

Correct Answer: A,C,E

Question 2

Your company wants to allow for differentiated access on Windows laptops depending on whether they are corporate assets or personal assets.
Which Host Checker rule would be used for this purpose?

A. A custom rule that validates the serial number.

B. A custom rule that validates the computer vendor name.

C. A predefined rule that verifies virus signatures are up-to-date.

D. A custom rule that verifies a file exists.

Correct Answer: D

Question 3

In a Junos Pulse Access Control Service firewall enforcement configuration, what is the purpose of the source IP policy?

A. to specify the destination addresses to which access is permitted

B. to specify the source address permitted to access the resource

C. to inform the enforcer to expect policy information from the Junos Pulse Access Control Service

D. to specify the services to which access is permitted

Correct Answer: C

Question 4

-- Exhibit - -- Exhibit -

Click the Exhibit button.
You have created a new sign-in policy and informed users that they must now sign in to the URL https://agentless.mycompany.com to access their secure files. Users are reporting, however, that they are unable to sign in from that URL.
Referring to the exhibit, what is causing this issue?

A. Role-mapping rules have not yet been defined.

B. The authentication realm is not properly configured.

C. The sign-in URL does not support local authentication.

D. The sign-in URLs are not in the correct order.

Correct Answer: D

Question 5

You want to configure an authentication server that authenticates Common Access Card (CAC) users.
In the Junos Pulse Access Control Service UI, which authentication server should you configure?

A. ACE

B. Certificate

C. Anonymous

D. LDAP

Correct Answer: B

Question 6

You are customizing the user interface options for the finance department in your organization. Users in the department are able to see a session counter on the Web interface of the Junos Pulse Access Control Service. The CFO is unable to see the session counter.
Which explanation would cause this behavior?

A. The CFO is mapped to the finance role, but the session counter was enabled prior to the role mapping.

B. The CFO is mapped to the executive and finance roles, but the CFO was mapped to the executive role last, which does not have the session counter enabled.

C. The CFO is mapped to the finance role, but the session counter was enabled after the role mapping.

D. The CFO is mapped to the executive and finance roles, but the CFO was mapped to the executive role first, which does not have the session counter enabled.

Correct Answer: D

Question 7

When configuring resource access policies in a Junos Pulse Access Control Service device, which entry is permitted when defining the specific resources?

A. Hostname

B. fully qualified domain name

C. address book entry

D. IP address

Correct Answer: D

Question 8

Which two steps on the Junos Pulse Access Control Service would you take to verify that a firewall enforcer has properly connected? (Choose two.)

A. Examine the connection status in the User Access log.

B. Examine the Enforcer Status LED icon.

C. Examine the connection status in the Events log.

D. Examine the connection status in the Sensors log.

Correct Answer: B,C

Question 9

A user logs in and is mapped to two roles. The first role has a maximum timeout value of 600 minutes and the default Juniper Networks logo on the user interface page. The second role has a maximum timeout value of 1200 minutes and a custom logo on the user interface page.
Based on the merging of these two roles, which two will be applied? (Choose two.)

A. A maximum time out value of 1200 minutes

B. A maximum timeout value of 600 minutes

C. A custom logo on the user interface page

D. A default Juniper Networks logo on the user interface page

Correct Answer: A,D

Question 10

You are an administrator of a large campus network. Every switch on a floor within each building of your campus has been configured for a different VLAN. During implementation of the Junos Pulse Access Control Service, you must configure a RADIUS return attribute policy to apply a role representing a group of authenticated users that frequently transport their laptops from building to building and floor to floor.
In the admin GUI, which policy element would you enable to accommodate these users?

A. Open port

B. Add Termination-Action attribute with value equal

C. Add Session-Timeout attribute with value equal to the session lifetime

D. VLAN

Correct Answer: A

Question 11

You are setting up a Junos Pulse Access Control Service. You cannot obtain a device certificate from an external certificate authority.
Which tool should you use to generate a device certificate?

A. OpenLDAP

B. OpenSSL

C. OpenRADIUS

D. OpenSSH

Correct Answer: B

Juniper Junos Pulse Access Control, Specialist (JNCIS-AC) - JN0-314 Exam Practice Test

Latest Update

Useful Links

Contact Us