Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home HP HPE6-A15

HP HPE6-A15 Exam Practice Questions (P. 5)

  • Full Access (105 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
A hotel chain deployed ClearPass Guest. When hotel guests connect to the Guest SSID, launch a web browser and enter the address www.google.com, they are unable to immediately see the web login page.
What are the likely causes of this? (Select two.)
  1. A
    The ClearPass server has a trusted server certificate issued by Verisign.
  2. B
    The ClearPass server has an untrusted server certificate issued by the internal Microsoft Certificate server.
  3. C
    The ClearPass server does not recognize the client’s certificate.
  4. D
    The DNS server is not replying with an IP address for www.google.com.

Correct Answer:
BD
You would need a publicly signed certificate.
References: http://community.arubanetworks.com/t5/Security/Clearpass-Guest-certificate-error-for-guest-visitors/td-p/221992

Question #22
Refer to the exhibit.


An Enforcement Profile has been created in the Policy Manager as shown.
Which action will ClearPass take based on the Enforcement Profile?
  1. A
    it will count down 600 seconds and send a RADIUS CoA message to the NAD to end the user’s session after this time is up
  2. B
    it will send the Session-Timeout attribute in the RADIUS Access-Request packet to the NAD and the NAD will end the user’s session after 600 seconds
  3. C
    it will count down 600 seconds and send a RADIUS CoA message to the user to end the user’s session after this time is up
  4. D
    it will send the Session-Timeout attribute in the RADIUS Access-Request packet to the user and the user’s session will be terminated after 600 seconds

Correct Answer:
D
Session Timeout (in seconds) - Configure the agent session timeout interval to re-evaluate the system health again. OnGuard triggers auto-remediation using this value to enable or disable AV-RTP status check on endpoint. Agent re-authentication is determined based on session-time out value. You can specify the session timeout interval from 60 600 seconds. Setting the lower value for session timeout interval results numerous authentication requests in Access Tracker page. The default value is 0.
References: http://www.arubanetworks.com/techdocs/ClearPass/Aruba_CPPMOnlineHelp/Content/CPPM_UserGuide/Enforce/EPAgent_Enforcement.htm

Question #23
Refer to the exhibit.


Based on the information shown, what is the purpose of using [Time Source] for authorization?
  1. A
    to check whether the MAC address status is unknown in the endpoints table
  2. B
    to check whether the MAC address is in the MAC Caching repository
  3. C
    to check how long it has been since the last web login authentication
  4. D
    to check whether the MAC address status is known in the endpoint table.

Correct Answer:
D

Question #24
A customer with an Aruba Controller wants it to work with ClearPass Guest.
How should the customer configure ClearPass as an authentication server in the controller so that guests are able to authenticate successfully?
  1. A
    Add ClearPass as a RADIUS CoA server.
  2. B
    Add ClearPass as a RADIUS authentication server.
  3. C
    Add ClearPass as a TACACS+ authentication server.
  4. D
    Add ClearPass as an HTTPS authentication server.

Correct Answer:
B
5. Configuring the Aruba Controller
5.1 Add Clearpass as RADIUS Server
Navigate to Configuration > SECURITY > Authentication > Servers
Click on RADIUS Server and enter the Name of your Clearpass Server: myClearpass

Click Add -
Click on myClearpass in the Server List
Etc.
References: https://community.arubanetworks.com/t5/Security/Step-by-Step-Controller-CPPM-6-5-Captive-Portal-authentication/td-p/229740

Question #25
Refer to the exhibit.


Based on the Enforcement Policy configuration shown, when a user with Role Remote Worker connects to the network and the posture token assigned is quarantine, which Enforcement Profile will be applied?
  1. A
    RestrictedACL
  2. B
    Remote Employee ACL
  3. C
    [Deny Access Profile]
  4. D
    EMPLOYEE_VLAN
  5. E
    HR VLAN

Correct Answer:
B
The first rule will match, and the Remote Employee ACL will be used.

Previous Questions Next Questions

All Pages