HP HPE6-A68 Exam Practice Test Instant Access

Question 1

Refer to the exhibit.

An administrator logs in to the Guest module in ClearPass and 'Manage Accounts' displays as shown.

When a user with username donald@disney.com attempts to access the Web Login page, what will be the outcome?

AThe user will be able to log in and authenticate successfully but will then be immediate disconnected.

BThe user will be able to log in for the next 4.9. days, but then will no longer be able to log in.

CThe user will not be able to log in and authenticate.

DThe user will be able to log in and authenticate successfully, but will then get a quarantine role.

EThe user will not be able to access the Web Login page.

Answer : C

Question 2

In which ways can ClearPass derive client roles during policy service processing? (Select two.)

AFrom the attributes configured in Active Directory

BFrom the server derivation rule in the Aruba Controller server group for the client

CFrom the Aruba Network Access Device

DFrom the attributes configured in a Network Access Device

EThrough a role mapping policy

Answer : A, E

Question 3

Refer to the exhibit.

Based on the Aruba TACACS+ dictionary shown, how is the Aruba-Role attribute used?

AThe Aruba-Admin-Role on the controller is applies to users using TACACS+ to login to the Policy Manager

BTo assign different privileges to clients during 802.1X authentication

CTo assign different privileges to administrators logging into an Aruba NAD

DIt is used by ClearPass to assign TIPS roles to clients during 802.1X authentication

ETo assign different privileges to administrators logging into ClearPass

Answer : C

Question 4

Refer to the exhibit.

Based on the Translation Rule configuration shown, what will be the outcome?

AAn AD user from group Administrators will be assigned the operator profile of IT Administrators.

BAll ClearPass Policy Manager admin users who are members of the Administrators AD group will be assigned the TACACS profile of IT Administrators.

CAll active directory users will be assigned the operator profile of IT Administrators.

DA user from AD group MatchAdmin will be assigned the operator profile of IT Administrators.

Answer : A

Question 5

A customer would like to deploy ClearPass with these requirements:

-2000 devices need to be Onboarded

-2000 corporate devices need to run posture checks daily

-500 guest users need to authenticate each day using the web login feature

What is the license mix that customer will need to purchase?

ACP-HW-5k, 2500 ClearPass Enterprise

BCP-HW-25k, 4500 ClearPass Enterprise

CCP-HW-500, 2500 ClearPass Enterprise

DCP-HW-25k, 4000 ClearPass Enterprise

ECP-HW-5k, 4500 ClearPass Enterprise

Answer : B

Question 6

Refer to the exhibit.

Based on the Enforcement Policy configuration shown, when a user with Role Engineer connects to the network and the posture token assigned is Unknown, which Enforcement Profile will be applied?

AEMPLOYEE_VLAN

BRestrictedACL

CDeny Access Profile

DHR VLAN

ERemote Employee ACL

Answer : C

Question 7

Why is a terminate session enforcement profile used during posture checks with 802.1x authentication?

ATo send a RADIUS CoA message from the ClearPass server to the client

BTo disconnect the user for 30 seconds when they are in an unhealthy posture state

CTo blacklist the user when they are in an unhealthy posture state

DTo force the user to re-authenticate and run through the service flow again

ETo remediate the client applications and firewall do that updates can be installed

Answer : A

HPE6-A68 Aruba Certified Clearpass Professional 6.7 Exam Practice Test