HPE6-A68 Dumps HPE6-A68 Braindumps

HPE6-A68 Real Questions HPE6-A68 Practice Test HPE6-A68 Actual Questions


killexams.com


HP


HPE6-A68


Aruba Certified ClearPass Professional (ACCP)


https://killexams.com/pass4sure/exam-detail/HPE6-A68


Question:51


Refer to the exhibit.


An AD user’s department attribute is configured as “HR”. The user connects on Monday using an Android phone to an Aruba Controller that belongs to the Device Group Remote NAD. Which roles are assigned to the user in ClearPass? (Choose two.)

  1. Remote Employee

  2. Executive

  3. Vendor

  4. iOS Device

  5. HR Local


Question::52


Refertotheexhibit.

Based on the Enforcement Policy configuration, when a user with Role Engineer connects to the network and the posture token assigned is Unknown, which Enforcement Profile will be applied?

  1. RestrictedACL

  2. HR VLAN

  3. Remote Employee ACL

  4. [Deny Access Profile]

  5. EMPLOYEE_VLAN


Answer: D


Question: 53


A customer wants to make enforcement decisions during 802.1x authentication based on a client’s Onguard posture token. What enforcement profile should be used in the health check service?

  1. Quarantine VLAN

  2. RADIUS CoA

  3. RADIUS Accept

  4. RADIUS RejectE. Full Access VLAN.


Answer: B


Question: 54


Which authorization servers are supported by ClearPass? (Choose two.)

  1. Active Directory

  2. Cisco Controller

  3. Aruba Controller

  4. LDAP server

  5. Aruba Mobility Access Switch


Answer: AD


Question: 55


Refer to the exhibit.

In the Aruba RADIUS dictionary shown, what is the purpose of the RADIUS attributes?

  1. to send information via RADIUS packets to Aruba NADs

  2. to gather and send Aruba NAD information to ClearPass

  3. to send information via RADIUS packets to clients

  4. to gather information about Aruba NADs for ClearPass

  5. to send CoA packets from ClearPass to the Aruba NAD


Answer: C


Question: 56


A bank would like to deploy ClearPass Guest with web login authentication so that their customers can self-register on the network to get network access when they have meetings with bank employees. However, they’re concerned about security.

What is true? (Choose three.)

  1. If HTTPS is used for the web login page, after authentication is completed guest Internet traffic will all be encrypted as well.

  2. During web login authentication, if HTTPS is used for the web login page, guest credentials will be encrypted.

  3. After authentication, an IPSEC VPN on the guest’s client be used to encrypt Internet traffic.

  4. HTTPS should never be used for Web Login Page authentication.

  5. If HTTPS is used for the web login page, after authentication is completed some guest Internet traffic may be unencrypted.


Answer: BCE


Question: 57


Refer to the exhibit.

Which statement accurately describes the cp82 ClearPass node? (Choose two.)

  1. It stays as a Subscriber when the Publisher fails.

  2. It becomes the Publisher when the primary Publisher fails.

  3. It operates as a Publisher in a separate cluster when the Publisher is active.

  4. It operates as a Publisher in the same cluster as the primary Publisher when the primary is active.

  5. It operates as a Subscriber when the Publisher is active.


Answer: AE


Question: 58


A customer with an Aruba Controller wants to set it up to work with ClearPass Guest.

Hoe should they configure ClearPass as an authentication server in the controller so that guests are able to authenticate successfully?

  1. Add ClearPass as RADIUS CoA server.

  2. Add ClearPass as a TACACS+ authentication server.

  3. Add ClearPass as a RADIUS authentication server.

  4. Add ClearPass as a HTTPS authentication server.


Answer: A