HP HPE6-A68 Exam Practice Test Instant Access

Question 1

Which database in the Policy Manager contains the device attributes derived by profiling?

AEndpoints Repository

BClient Repository

CLocal Users Repository

DOnboard Devices Repository

EGuest User Repository

Answer : A

Configure [Endpoints Repository] as Authorization Source. Endpoint profile attributes

derived by Profile are available through the '[Endpoint Repository]' authorization source.

These attributes can be used in role-mapping or enforcement policies to control network

access. Available attributes are:

Authorization:[Endpoints Repository]:MAC Vendor

Authorization:[Endpoints Repository]:Category

Authorization:[Endpoints Repository]:OS Family

Authorization:[Endpoints Repository]:Name

https://community.arubanetworks.com/aruba/attachments/aruba/ForoenEspanol/653/1/ClearPass%20Profiling%20TechNote.pdf

Question 2

Refer to the exhibit.

Based on the Policy configuration shown, which VLAN will be assigned when a user with ClearPass role Engineer authenticates to the network successfully on Saturday using connection protocol WEBAUTH?

AFull Access VLAN

BEmployee VLAN

CInternet VLAN

DDeny Access

Answer : B

Question 3

Refer to the exhibit.

Which types of records will the report shown display?

Aall RADIUS authentications from the 10.8.10.100 NAD to ClearPass

Ball failed RADIUS authentications through ClearPass

Conly Windows devices that have authenticated through the 10.8.10.100 NAD

Dall successful RADIUS authentications through ClearPass

Eall successful RADIUS authentications from the 10.8.10.100 NAD to ClearPass

Answer : A

Question 4

Refer to the exhibit.

Based on the Enforcement Profile configuration shown, which statement accurately describes what is sent?

AA limited access VLAN value is sent to the Network Access Device.

BAn unhealthy role value is sent to the Network Access Device.

CA message is sent to the Onguard Agent on the client device.

DA RADIUS CoA message is sent to bounce the client.

EA RADIUS access-accept message is sent to the Controller

Answer : C

The OnGuard Agent enforcement policy retrieves the posture token. If the token is HEALTHY it returns a healthy message to the agent and bounces the session. If the token is UNHEALTHY it returns an unhealthy message to the agent and bounces the session.

Question 5

Which licenses are included in the built-in Starter kit for ClearPass?

A10 ClearPass Guest licenses, 10 ClearPass Onguard licenses and 10 ClearPass Onboard licenses

B25 ClearPass Profiler licenses

C25 ClearPass Enterprise licenses

D10 ClearPass Enterprise licenses

E25 ClearPass Redundancy licenses

Answer : C

All CPPM's comes bundled with 25 Enterprise application licenses so you can test the functionality of the Applications as this license can be used for any of them.

Question 6

An organization implements dual SSID Onboarding. The administrator used the Onboard service template to create services for dual SSID Onboarding.

Which statement accurately describes the outcome?

AThe Onboard Provisioning service is triggered when the user connects to the provisioning SSID to Onboard their device.

BThe Onboard Authorization service is triggered when the user connects to the secure SSID.

CThe Onboard Authorization service is triggered during the Onboarding process.

DThe device connects to the secure SSID for provisioning.

EThe Onboard Authorization service is never triggered.

Answer : C

Question 7

An SNMP probe is sent from ClearPass to a network access device, but ClearPass is unable to obtain profiling information.

What are likely causes? (Select three.)

AOnly SNMP read has been configured but SNMP write is needed for profiling information.

BAn external firewall is blocking SNMP traffic.

CSNMP is not enabled on the NAD.

DSNMP community string in the ClearPass and NAD configuration is mismatched.

ESNMP probing is not supported between ClearPass and NADs.

Answer : B, C, D

Verify firewall port 162 (default) is open between AMP and the controller.

SNMP must be enabled on the NAD.

The community string that ClearPass is using to access the NAD might be wrong.

HP Aruba Certified Clearpass Professional 6.7 HPE6-A68 Exam Practice Test