350-401 Implementing Cisco Enterprise Network Core Technologies (350-401 ENCOR) sample Question + Exam 2026 Practice Exam Dumps

Question # 4

Drag and drop the code snippets from the bottom onto the blanks in the script to convert a Python object into a JSON string. Not all options are used

Full Access

Question # 5

What are two benefits of virtualizing the server with the use of VMs in a data center environment? (Choose two.)

smaller Layer 2 domain

speedy deployment

increased security

reduced IP and MAC address requirements

reduced rack space, power, and cooling requirements

Full Access

Question # 6

Refer to the exhibit.

An engineer must modify the access control list EGRESS to allow all IP traffic from subnet 10.1.10.0/24 to 10.1.2.0/24. The access control list is applied in the outbound direction on router interface GigabitEthemet 0/1. Which configuration commands can the engineer use to allow this traffic without disrupting existing traffic flows?

Option A

Option B

Option C

Option D

Full Access

Question # 7

Which location tracking method is used when locating client devices using Cisco hyperlocation?

angle of arrival

location patterning

TTL

line of sight

Full Access

Question # 8

Drag and drop the Cisco Catalyst Center (formerly DNA Center) southbound API characteristics from the left to the right. Not all options are used.

Full Access

Question # 9

Which data is properly formatted with JSON?

Option A

Option B

Option C

Option D

Full Access

Question # 10

With IGMPv2, which multicast group address does the IGMP querier use to send query messages to all hosts on the LAN?

239.0.0.2

224.0.0.1

239.0.0.1

224.0.0.2

Full Access

Question # 11

A wireless administrator must create a new web authentication corporate SSID that will be using ISE as the external RADIUS server. The guest VLAN must be specified after the authentication completes. Which action must be performed to allow the ISE server to specify the guest VLAN?

Set RADIUS Profiling.

Set AAA Policy name.

Enable Network Access Control State.

Enable AAA Override.

Full Access

Question # 12

Why would a network engineer configure an AP in SE-Connect mode?

to redirect WLAN traffic to an endpoint for protocol analysis

to monitor the VLAN traffic for rogue APs

to connect the wired LAN with the wireless infrastructure

to analyze the RF spectrum surrounding the AP

Full Access

Question # 13

Refer to lhe exhibit. An engineer deploys a script to retrieve the running configuration from a NETCONF-capable CiscoIOSXE device that Is configured with default settings. The script fails. Which configuration must be applied to retrieve the configuration using NETCONF?

Option A

Option B

Option C

Option D

Full Access

Question # 14

Refer to the exhibit Which command set is required on router R1 to allow the network administrator to authenticate via RADIUS'?

Option A

Option B

Option C

Option D

Full Access

Question # 15

Which data format can be used for an API request?

HTML

PERL

JSON

Python

Full Access

Question # 16

Which mobility role is assigned to a client in the client table of the new controller after a Layer 3 roam?

anchor

foreign

mobility

transparent

Full Access

Question # 17

In a Cisco Mobility Express wireless deployment, which AP takes over if the primary AP fails?

AP with highest IP address

AP with the lowest IP address

AP with highest MAC address

AP with highest controller up time

Full Access

Question # 18

In a wireless Cisco SD-Access deployment, which roaming method is used when a user moves from one access point to another on a different access switch using a single WLC?

Layer 3

inter-xTR

auto anchor

fast roam

Full Access

Question # 19

Which component transports data plane traffic across a Cisco SD-WAN network?

vSmart

vManage

cEdge

vBond

Full Access

Question # 20

What is used to validate the authenticity of the client and is sent in HTTP requests as a JSON object?

SSH

TLS

HTTPS

JWT

Full Access

Question # 21

Drag and drop the characteristics from the left onto the orchestration tools that they describe on the right.

Full Access

Question # 22

In which two ways does PIM dense mode function in the network? (Choose two.)

It waits to forward multicast traffic until a downstream router requests the traffic.

It utilizes the designated forwarder election to avoid multicast packet loops.

It receives traffic from only one Reverse Path Forwarding interface.

It forwards multicast traffic on all interfaces until a downstream router requests that forwarding stop.

It uses a push method, and fallback occurs when RP information is lost.

Full Access

Question # 23

What is a benefit of MACsec in a multilayered LAN network design?

There is no requirement to run IEEE 802.1X when MACsec is enabled on a switch port.

Layer 2 trunk links between switches can be secured.

Application flows between hosts on the LAN to remote destinations can be encrypted.

Layer 3 links between switches can be secured.

Full Access

Question # 24

What is the responsibility of a secondary WLC?

It avoids congestion on the primary controller by sharing the registration load on the LAPs.

It registers the LAPs if the primary controller fails.

It enables Layer 2 and Layer 3 roaming between itself and the primary controller.

It shares the traffic load of the LAPs with the primary controller

Full Access

Question # 25

What is a characteristic of an AP that operates in FlexConnect mode?

Configuration is done directly on the AP rather than on a controller.

Dot1x authentication is not supported for AP clients in this mode.

Client authentication is always performed on the A P.

FlexConnect groups are required to support 802.11 r fast roaming.

Full Access

Question # 26

What is the recommended minimum SNR for Voice applications for networks?

Full Access

Question # 27

Which authorization framework gives third-party applications limited access to HTTP services?

IPsec

GRE

Basic Auth

OAuth 2.0

Full Access

Question # 28

In a Cisco SD-WAN solution, which two functions are performed by OMP? (Choose two.)

advertisement of network prefixes and their attributes

configuration of control and data policies

gathering of underlay infrastructure data

delivery of crypto keys

segmentation and differentiation of traffic

Full Access

Question # 29

When a wireless client roams between two different wireless controllers, a network connectivity outage is experience for a period of time. Which configuration issue would cause this problem?

Not all of the controllers in the mobility group are using the same mobility group name.

All of the controllers within the mobility group are using the same virtual Interface IP address.

Not all of the controllers within the mobility group are using the same virtual interface IP address.

All of the controllers in the mobility group are using the same mobility group name

Full Access

Question # 30

Drag and drop the characteristics from the left into the orchestration tools that they describe on the right.