I’m currently diving into the Security and Wireless sections of the CCNP ENCOR. It seems like a huge jump from CCNA where these were just minor side topics. How deep do we need to know WLC deployment models and 802.1X for the exam? I’m worried about the questions on EAP types and wireless roaming. Does anyone have tips on which specific wireless protocols are most heavily tested?
3 answers
Wireless is about 10-15% of the ENCOR exam, and you need to know more than just the basics. Focus heavily on the different WLC deployment models—Centralized, Distributed, and Cloud. You should also understand how APs discover controllers (the CAPWAP process). For security, 802.1X is a big one, especially the difference between EAP-TLS and PEAP. When I took the exam in early 2024, there were several scenario-based questions about client connectivity and how the RADIUS server interacts with the WLC. Don't skip these sections; they are easy points if you know the flow.
Nancy’s advice is solid. Steven, are you familiar with how Cisco DNA Center (Catalyst Center) handles wireless assurance? A lot of the new questions revolve around how the controller integrates with the automation platform for monitoring. Have you played around with the DNA Center GUI yet?
Don't forget the Security section! You need to know the difference between CoPP and local ACLs, plus how TrustSec uses SGT tags for segmentation. It's more than just firewalls
Totally agree with Karen. SGTs and VRFs are the bread and butter of the "Virtualization" and "Security" domains. Understanding the packet headers for VXLAN and how they carry security tags is a must-know.
Joseph, that's a great point. I found that the exam doesn't just ask about the CLI for wireless anymore; it's very focused on the "Intelligent Capture" features in DNA Center. You should definitely know how to troubleshoot a client's "onboarding" process through the dashboard. It’s a shift from how we used to do things in the old AIR-OS days.