Cisco Certified Internetwork Expert (CCIE) Practice Test

Which three statements about RLDP are true?

• A. It detects rogue access points that are connected to the wired network
• B. It can detect rogue APs that use WPA encryption
• C. Active Rogue containment can be initiated manually against rogue devices detected on the wired network
• D. The AP is unable to serve clients while the RLDP process is active

The correct answer is: It detects rogue access points that are connected to the wired network

Rogue Laptop Detection Protocol (RLDP) is a mechanism designed to enhance the security of wireless networks by identifying unauthorized or rogue access points that connect to the wired network. One of the primary functions of RLDP is to detect rogue access points, which helps in maintaining the integrity and security of the network. This capability makes it essential for network administrators to have a clearer view of what devices are connected to their network, thereby preventing potential security breaches. The statement about RLDP detecting rogue access points connected to the wired network aligns directly with the protocol's purpose. By identifying these unauthorized devices, RLDP helps protect the network from threats that could arise from foreign or unmonitored access points. Furthermore, the ability to identify and track rogue devices allows for a more proactive approach to network security management. In terms of the other statements, while RLDP does provide a mechanism for rogue AP detection, not all encryption types or configurations are captured uniformly across different implementations. Consequently, stating that RLDP can detect rogue APs using WPA encryption may not fully encompass the protocol's intended functionality, especially in varied environments. Active rogue containment being initiated manually signifies an action that can be taken after a rogue is detected, rather than an inherent property of the RLDP process itself.