Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ecus65

HP HPE6-A75 - Aruba Certified Edge Professional Exam

HP HPE6-A75 Premium Access     Download Demo    
Page: 1 / 2
Total 60 questions

Refer to the exhibit.

A network administrator sets up 802.1X authentication to a RADIUS server on an AOS-Switch. The RADIUS server and user devices are both set up to use REAP MSCHAPv2. The administrator tests the authentication and sees the output shown in the exhibit. Which issue could cause this output?

A.

The RADIUS shared secret does not match on the switch and the server.

B.

The administrator entered the wrong password for the test account.

C.

The switch does not have a certificate tor port-access installed on the switch.

D.

The switch port is set for user mode 801. IX. but the RADIUS server is set for port mode.

Refer to the exhibit.

An administrator implements AP licensing on a Mobility Master (MM).

• Each campus is responsible to purchase its own AP licenses.

• There are 900 AP licenses deployed in the global pool

• There are three dedicated pools.

• From the global pool, 300 AP licenses are assigned to each dedicated pool.

Network engineers at CampusA want to deploy an additional 100 APs. Currently all of the AP licenses in CampusA and CampusB are allocated, but only 200 of the AP licenses m CampusC are allocated.

What can the administrator do to add capacity for CampusA in alignment with campus policies?

A.

Allow CampusA to share from the CampusC pool.

B.

Add 100 more AP licenses and assign them to the CampusA pool.

C.

Move 100 licenses from the CampusC pool to the global pool.

D.

Add 100 more AP licenses to the global pool.

An administrator creates service-based policies for AirGroup on the Mobility Master (MM). The administrator can define location-based policy limits based on which information?

A.

AP names, AP groups, controller names, and controller groups

B.

AP Fully Qualified Location Names (FQLNs) and controller Fully Qualified Domain Names (FQDNs)

C.

AP names, AP groups, and AP Fully Qualified Location Names (FQLNs)

D.

Controller names, controller groups, and controller Fully Qualified Domain Names (FQDNs)

Refer to the exhibit.

Based on the Attribute configuration shown, which statement accurately describes the status of attribute values?

A.

Only the attribute values of department and memberOf can be used in role mapping policies.

B.

The attribute values of department, title, memberOf, telephoneNumber, and mail are directly applied as ClearPass.

C.

Only the attribute value of company can be used in role mapping policies, not the other attributes.

D.

The attribute values of department and memberOf are directly applied as ClearPass roles.

E.

Only the attribute values of title, telephoneNumber, and mail can be used in role mapping policies.

What is the purpose of the captive portal URL hash key on an AOS-Switch?

A.

It authenticates guest users based on the password the users enter hi the portal.

B.

It encrypts and secures the RADIUS messages that the AOS-Switch sends to ClearPass.

C.

It does not let users alter the URL that redirects them to the portal.

D.

It specifies the captive portal URL and conceals the setting in the config.

Why is a terminate session enforcement profile used during posture checks with 802.1 x authentication?

A.

To send a RADIUS CoA message from the ClearPass server to the client

B.

To disconnect the user for 30 seconds when they are in an unhealthy posture state

C.

To blacklist the user when they are in an unhealthy posture state

D.

To force the user to re-authenticate and run through the service flow again

E.

To remediate the client applications and firewall do that updates can be installed

An administrator implements the MultiZone feature and uses two clusters that utilize CPSec. A primary and a data zone are created. MultiZone APs successfully build sessions to the primary cluster but fail to establish sessions to the data zone cluster.

What must the administrator do to solve this problem?

A.

Enable CPSec in the MultiZone profile for both the primary and data zone.

B.

Enable MultiZone booting in the MultiZone AP apboot configuration mode.

C.

Add the MultiZone APs to the data zone’s CPSec whitelist.

D.

Use different AP Group names for the two zones.

in a VPN that uses certificate-based authentication, which component must be configured on the Mobility Master (MM) to allow a RAP to successfully connect to a Mobility Controller (MC)

A.

RAP VPN username and password

B.

WLAN and new RAP group

C.

RAP IPSec pre-shared key

D.

RAP whitelist

Which technologies can prevent split brain in a VSF fabric that includes Aruba 2930F switches?

A.

ARP MAD or OOBM MAD

B.

VLAN MAD or ARP MAD

C.

OOBM MAD or LLDP MAD

D.

LLDP MAD or VLAN MAD

An administrator wants to use Airwave to manually add devices on the network. Where should the administrator perform this action?

A.

in Device Setup

B.

in Groups

C.

in AMP Setup

D.

in Devices