HPE6-A71 Dumps HPE6-A71 Braindumps
HPE6-A71 Real Questions HPE6-A71 Practice Test HPE6-A71 Actual Questions
killexams.com
Aruba Certified Mobility Professional Exam 2024
https://killexams.com/pass4sure/exam-detail/HPE6-A71
Question: 72
The administrator expects the AP to connect to a cluster, but the AP fails to connect.
The administrator examines the configuration of an AP from apboot mode shown in the exhibit.
What can the administrator determine about the configuration of the AP? A . The AP is configured to terminate on a Mobility Controller in a cluster.
B . The AP is configured as a RAP to terminate on a stand-alone controller. C . The AP is configured as a RAP to terminate on a Mobility Master.
D . The AP is configured to terminate on a non-cluster Mobility Controller.
Question: 73
An administrator creates new pre- and post-authentication roles for a new WLAN.
For which profile should the administrator assign these new roles under the Managed Network section? A . 802.1X
B . AAA profile C . Server Groups D . Virtual AP
Question: 74
An administrator deploys an AP at a branch office. The branch office has a private WAN circuit that provides connectivity to a corporate office controller. An Ethernet port on the AP is connected to a network storage device that contains sensitive information. The administrator is concerned about sending this traffic in clear-text across the private WAN circuit.
What can the administrator do to prevent this problem? A . Enable IPSec encryption on the AP’s wired ports. B . Convert the campus AP into a RA
D . Redirect the wired port traffic to an AP-to-controller GRE tunnel. E . Enable AP encryption for wired ports.
Question: 75
Which forwarding mode is used for a WLAN if a RAP needs to decrypt all user traffic and forward it locally? A . Bridge
B . Decrypt-tunnel C . Tunnel
D . Split-tunnel
Question: 76
A Microsoft RADIUS server is used to centralize AAA functions by a company. Upon a successful authentication lookup performed by an Aruba Mobility Controller (MC), the administrator wants to have the RADIUS server pass back the correct post-authentication role name that the controller should apply to the user’s traffic.
Which additional task must the administrator perform for the controller’s configuration to implement this process? A . Configure the server-derived rules on the controller.
B . Install ClearPass’s VSA file on the controller. C . Install Microsoft’s VSA file on the controller. D . Enable AAA on the controller.
Question: 77
An administrator wants to temporarily deny login access to users who fail 802.1x authentication functions three or more times.
Which process will the administrator need to configure? A . fail through
B . captive portal
C . EAP termination D . blacklisting
Question: 78
An administrator implements two redundant Aruba Mobility Masters (MMs). Which protocol should the administrator use to detect a failure in a single subnet?
A . PAPI
B . VRRP C . SNMP D . IPSec
Question: 79
An administrator creates service-based policies for AirGroup on the Mobility Master (MM). The administrator can define location-based policy limits based on which information?
A . controller names, controller groups, and controller Fully Qualified Domain Names (FQDNs) B . AP names, AP groups, controller names, and controller groups
C . AP Fully Qualified Location Names (FQLNs) and controller Fully Qualified Domain Names (FQDNs) D . AP names, AP groups, and AP Fully Qualified Location Names (FQLNs)
Reference: http://www.arubanetworks.com/techdocs/ArubaOS_81_Web_Help/Content/ArubaFrameStyles/ AirGroup/AirGroup_Features.htm
Question: 80
An administrator supports a RAP at a branch office. A user’s device that is attached to the Ethernet port is assigned an 802.1X AAA policy and is configured for tunneled node.
How is the user’s traffic transmitted to the corporate office?
A . It is not encapsulated by GRE and not protected with IPSec. B . It is encapsulated by GRE and protected with IPSec.
C . It is not encapsulated by GRE but is protected with IPSec. D . It is encapsulated by GRE and not protected with IPSec.