HP HPE6-A68 Exam Practice Test Instant Access

Question 1

Refer to the exhibit.

A guest connects to the Guest SSID and authenticates successfully using the guest.php web login page.

Based on the MAC Caching service information shown, which statement about the guests' MAC address is accurate?

AIt will be visible in the Guest User Repository with Unknown Status

BIt will be deleted from the Endpoint table.

CIt will be visible in the Guest User Repository with Known Status.

DIt will be visible in the Endpoints table with Known Status.

EIt will be visible in the Endpoints table with Unknown Status.

Answer : D

Question 2

Refer to the exhibit.

Based on the Enforcement Policy configuration shown, when a user with Role Remote Worker connects to the network and the posture token assigned is quarantine, which Enforcement Profile will be applied?

ARestrictedACL

BRemote Employee ACL

C[Deny Access Profile]

DEMPLOYEE_VLAN

EHR VLAN

Answer : B

The first rule will match, and the Remote Employee ACL will be used.

Question 3

What is the certificate format PKCS #7, or .p7b, used for?

ACertificate Signing Request

BBinary encoded X.509 certificate

CBinary encoded X.509 certificate with public key

DCertificate with an encrypted private key

ECertificate chain

Answer : E

The PKCS#7 or P7B format is usually stored in Base64 ASCII format and has a file extension of .p7b or .p7c. P7B certificates contain '-----BEGIN PKCS7-----' and '-----END PKCS7-----' statements. A P7B file only contains certificates and chain certificates, not the private key. Several platforms support P7B files including Microsoft Windows and Java Tomcat.

Question 4

Refer to the exhibit.

Based on the configuration of the Enforcement Profiles in the Onboard Authorization service shown, which Onboarding action will occur?

AThe device will be disconnected from the network after Onboarding so that an EAP-TLS authentication is not performed.

BThe device will be disconnected from and reconnected to the network after Onboarding is completed.

CThe device's onboard authorization request will be denied.

DThe device will be disconnected after post-Onboarding EAP-TLS authentication, so a second EAP-TLS authentication is performed.

EAfter logging in on the Onboard web login page, the device will be disconnected form and reconnected to the network before Onboard begins.

Answer : B

Question 5

A customer would like to deploy ClearPass with these requirements:

between 2000 to 3000 corporate users need to authenticate daily using EAP-TLS

should allow for up to 1000 employee devices to be Onboarded

should allow up to 100 guest users each day to authenticate using the web login feature

What is the license mix that customer will need to purchase?

ACP-HW-2k, 1000 Onboard, 100 Guest

BCP-HW-500, 1000 Onboard, 100 Guest

CCP-HW-5k, 2500 Enterprise

DCP-HW-5k, 1000 Enterprise

ECP-HW-5k, 100 Onboard, 100 Guest

Answer : C

Question 6

What is the purpose of the Audit Viewer in the Monitoring section of ClearPass Policy Manager?

Ato audit client authentications

Bto display changes made to the ClearPass configuration

Cto display the entire configuration of the ClearPass Policy Manager

Dto audit the network for PCI compliance

Eto display system events like high CPU usage.

Answer : B

Question 7

Which checks are made with Onguard posture evaluation in ClearPass? (Select three.)

ARegistry keys

BEAP TLS certificate validity

CClient role check

DPeer-to-peer application checks

EOperating System version

Answer : A, D, E

HPE6-A68 Aruba Certified Clearpass Professional 6.7 Exam Practice Test