
Prepare 100-160 Question Answers Free Update With 100% Exam Passing Guarantee [2026]
Dumps Real Cisco 100-160 Exam Questions [Updated 2026]
NEW QUESTION # 164
A remote worker is visiting a branch office to attend face-to-face meetings. The worker tries to associate their company laptop with the branch wireless access point (WAP) but is unable to do so.
What is a possible cause?
- A. The WAP is using open authentication.
- B. The IP address of the laptop is not correct.
- C. The WAP is configured for MAC address filtering.
- D. The SSID is not broadcasting.
Answer: C
Explanation:
The CCST Cybersecurity material explains that MAC address filtering is a wireless security measure that allows only devices with approved hardware addresses to connect. If the laptop's MAC address is not on the allow list, the connection will be blocked even if the SSID is correct.
"Wireless access points can be configured with MAC address filters to limit network access to authorized devices. If a device's MAC address is not on the permitted list, the connection will fail regardless of credentials." (CCST Cybersecurity, Basic Network Security Concepts, Wireless Security section, Cisco Networking Academy) A is unlikely because non-broadcast SSIDs can still be manually connected to.
B is correct: MAC address filtering would block an unregistered device.
C would cause IP issues after association, not prevent initial connection.
D (open authentication) would allow connection, so it's not the cause here.
NEW QUESTION # 165
Which two passwords follow strong password policy guidelines? (Choose 2.)
- A. Fluffy#
- B. 1mPressm3!
- C. Feb121978
- D. Wh@tareyouDo1ngtoday4
Answer: B,D
Explanation:
The CCST Cybersecurity course defines a strong password as one that:
Is at least 8-12 characters long
Uses a mix of uppercase, lowercase, numbers, and symbols
Avoids dictionary words, personal information, and predictable patterns
"Strong passwords combine length, complexity, and unpredictability, making them resistant to brute force and dictionary attacks." (CCST Cybersecurity, Essential Security Principles, Authentication and Access Control section, Cisco Networking Academy) A is correct: It's long, mixed case, includes numbers and symbols, and is not easily guessable.
B is incorrect: It's based on a date, which is predictable.
C is incorrect: Short and based on a dictionary word.
D is correct: Uses complexity and length with leetspeak for added unpredictability.
NEW QUESTION # 166
Which of the following operating systems includes a built-in antivirus software called Windows Defender?
- A. Linux
- B. Windows and macOS
- C. Windows
- D. macOS
Answer: C
Explanation:
Windows operating system includes a built-in antivirus software called Windows Defender. It provides real-time protection against various types of malware, including viruses, spyware, and ransomware. Windows Defender is automatically enabled and updated on Windows computers to help keep the system secure. Note: macOS and Linux operating systems have their own security features, but they do not include Windows Defender. macOS has a built-in security tool called XProtect, which provides some protection against malware, and Linux offers various security features such as SELinux (Security-Enhanced Linux) and AppArmor.
NEW QUESTION # 167
Which of the following is an example of multifactor authentication?
- A. Using a biometric scan and a passcode
- B. Using a smart card and a PIN
- C. Using a username and password only
- D. Using a fingerprint scan only
Answer: B
Explanation:
Multifactor authentication refers to the use of two or more different factors to verify an individual's identity. In this case, using a smart card (something you have) and a PIN (something you know) constitutes multifactor authentication. Combining something you have and something you know adds an extra layer of security compared to using only one factor.
NEW QUESTION # 168
Which of the following helps to ensure the confidentiality of data in computer operations?
- A. Data integrity controls
- B. Intrusion Detection System (IDS)
- C. Access control lists (ACLs)
- D. Antivirus software
Answer: C
Explanation:
Access control lists (ACLs) are a security mechanism used in computer operations to enforce and manage access permissions for users and resources. ACLs enable organizations to control who can access specific data or resources, helping to ensure the confidentiality of sensitive information.
NEW QUESTION # 169
During an incident response, the security team needs to isolate a compromised server from the rest of the network but still allow forensic analysis. Which action should they take?
- A. Power off the server immediately.
- B. Delete suspicious files from the server.
- C. Reset all user passwords on the server.
- D. Disconnect the server from the network and connect it to an isolated forensic network.
Answer: D
Explanation:
The CCST Cybersecurity course notes that isolation is a key part of the containment phase of incident response. The goal is to prevent the compromised system from communicating with the attacker or spreading malware, while preserving it for analysis.
"Containment often involves removing an affected system from the production network and connecting it to a controlled forensic environment to preserve evidence and prevent further compromise." (CCST Cybersecurity, Incident Handling, Containment Procedures section, Cisco Networking Academy)
NEW QUESTION # 170
Which of the following features of the Cisco Identity Services Engine (ISE) allows network administrators to define policies for controlling access to network resources based on user identities and user or group attributes?
- A. TrustSec
- B. Identity Firewall
- C. Profiling
- D. Network Access Profiles
Answer: C
Explanation:
Option 1: Network Access Profiles: Network Access Profiles in Cisco ISE define the behavior of network devices when they are accessed by authenticated users. They are a set of policies that determine how network resources are allocated to users or user groups, and what level of access they have.
Option 2: Identity Firewall: Cisco ISE's Identity Firewall feature enables network administrators to apply firewall policies based on user identities. It allows for granular control over network access and can enforce allow, deny, or redirect actions based on user attributes.
Option 3: Profiling: This is the correct answer. Cisco ISE's Profiling feature is used to dynamically classify endpoints connecting to the network based on their characteristics, such as their MAC addresses, IP addresses, and DHCP options. This information is then used to enforce access policies.
Option 4: TrustSe TrustSec is a Cisco security solution that provides secure access control across the network infrastructure. While TrustSec is related to identity and access management, it is not a feature of Cisco ISE specifically.
NEW QUESTION # 171
Which Windows app is a command-line interface that includes a sophisticated scripting language used to automate Windows tasks?
- A. MS-DOS
- B. Vim
- C. Microsoft Management Console
- D. PowerShell
Answer: D
Explanation:
The CCST Cybersecurity course identifies Windows PowerShell as both a command-line interface (CLI) and a robust scripting environment. It is used by system administrators for automation, configuration, and task scheduling.
"PowerShell is a Windows command-line shell and scripting language built on the .NET framework. It allows administrators to automate administrative tasks, manage system configurations, and execute complex scripts for system management." (CCST Cybersecurity, Endpoint Security Concepts, System Administration Tools section, Cisco Networking Academy) A is correct: PowerShell provides both interactive command execution and scripting capabilities.
B (MMC) is a GUI-based management console, not a CLI.
C (Vim) is a text editor, not a Windows-native CLI.
D (MS-DOS) is a legacy command shell with no advanced scripting features comparable to PowerShell.
NEW QUESTION # 172
Which command-line tool is used for network traffic capture and packet analysis?
- A. netstat
- B. tcpdump
- C. nslookup
- D. ping
Answer: B
Explanation:
The correct command-line tool for network traffic capture and packet analysis is tcpdump. It captures packets that are transmitted on a network interface, allowing you to analyze the traffic, detect potential security threats, and understand the behavior of network communications.
NEW QUESTION # 173
What is the main motivation for attackers to conduct cyber attacks?
- A. Knowledge
- B. Revenge
- C. Curiosity
- D. Financial gain
Answer: D
Explanation:
The primary motivation for many cyber attackers is financial gain. By conducting cyber attacks, attackers may aim to steal sensitive information, such as credit card details or personal data, which they can then use or sell for financial profit.
NEW QUESTION # 174
What is a man-in-the-middle attack?
- A. An attack that intercepts and manipulates communication between two parties.
- B. An attack that targets Internet of Things devices.
- C. An attack where an insider intentionally releases sensitive information.
- D. An attack that exploits vulnerabilities in a device's software.
Answer: A
Explanation:
A man-in-the-middle attack occurs when a malicious actor intercepts communication between two parties without their knowledge and manipulates the data exchanged. This can allow the attacker to eavesdrop on conversations, steal sensitive information, or impersonate one of the parties involved.
NEW QUESTION # 175
Which of the following is a recommended practice for securing a wireless SoHo network?
- A. Disabling encryption for ease of use
- B. Sharing Wi-Fi passwords with neighbors
- C. Using the default network name (SSID)
- D. Regularly updating the router's firmware
Answer: D
Explanation:
Regularly updating the router's firmware is a recommended practice for securing a wireless SoHo network. Router manufacturers often release firmware updates to address security vulnerabilities and improve performance. By installing the latest firmware updates, you can ensure that your router has the latest security patches. Disabling encryption (A) would make the network vulnerable to unauthorized access. Sharing Wi-Fi passwords with neighbors (C) may compromise security. Using the default network name (D) (SSID) can make it easier for attackers to identify and target your network.
NEW QUESTION # 176
Which aspect of the Diamond Model represents the "Infrastructure" used by threat actors?
- A. Capability
- B. Victim
- C. Campaign
- D. Adversary
Answer: A
Explanation:
The Diamond Model is a tool used for analyzing cyber threat intelligence. It consists of four components: Adversary, Victim, Infrastructure, and Capability. The Infrastructure aspect refers to the resources and infrastructure utilized by the threat actors, including networks, servers, and tools.
NEW QUESTION # 177
Which of the following describes the purpose of a firewall in network infrastructure?
- A. To provide high-speed connectivity between different networks
- B. To identify and prevent unauthorized access to the network
- C. To monitor network traffic for potential security threats
- D. To regulate the flow of data between different network segments
Answer: D
Explanation:
A firewall is a network security device that is designed to monitor and control the incoming and outgoing network traffic. It acts as a barrier between different network segments, regulating the flow of data according to predefined security policies. Firewalls help to prevent unauthorized access to the network by allowing only authorized traffic and blocking any potentially harmful traffic.
NEW QUESTION # 178
Which technology is commonly used to monitor network data and identify security incidents?
- A. SOAR (Security Orchestration, Automation, and Response)
- B. IDS (Intrusion Detection System)
- C. Firewall
- D. SIEM (Security Information and Event Management)
Answer: D
Explanation:
SIEM is a technology that focuses on monitoring network data to identify security incidents. It collects and analyzes security event logs from various sources, such as firewalls, intrusion detection systems (IDS), and antivirus software, to identify abnormal behavior or potential security incidents. SIEM solutions provide real-time monitoring, correlation, and alerting capabilities, enabling organizations to effectively detect and respond to security threats.
NEW QUESTION # 179
......
Cisco 100-160 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
100-160 Exam Dumps, 100-160 Practice Test Questions: https://prepcram.pass4guide.com/100-160-dumps-questions.html