HP HPE6-A73 Exam Practice Test Instant Access

Question 1

A network administrator is tasked to set up BGP in the company's network. The administrator is defining an eBGP peering between an AOS-CX switch and a directly-connected service provider. The administrator has configured the following on the AOS-CX switch:

However, when using the "show bgp all summary" command, the state does not display "Established" for the eBGP peer. What must the administrator configure to fix this issue?

Arouter bgp 64500 neighbor 192.168.1.1 ebgp-multihop

Brouter bgp 64500 enable

Crouter bgp 64500 address-family ipv4 unicast neighbor 192.168.1.1 activate

Drouter bgp 64500 neighbor 192.168.1.1 update-source loopback0

Answer : C

Question 2

A company requires access by all users, guests, and employees to be authenticated. Employees will be

authenticated using 802.1X, whereas guests will be authenticated using captive portal. Which type of

authentication must be configured on an AOS-CX switch ports where both guests and employees connect?

ABoth 802.1X and captive portal

B802.1X only

CBoth 802.1X and MAC-Auth

D802.1X, captive portal, and MAC-Auth

Answer : C

Employees use 802.1x

The Aruba guest solution uses MAC-auth.

The Portal is not configured on the switch port.

Question 3

What must a network administrator implement in order to run an NAE script on an AOS-CX switch?

ADeployment

BSchedule

CPlan

DAgent

Answer : D

Question 4

Examine the network exhibit.

A company has a guest implementation for wireless and wired access. Wireless access is implemented

through a third-party vendor. The company is concerned about wired guest traffic traversing the same network as the employee traffic. The network administrator has established a GRE tunnel between AOS-CX switches where guests are connected to a routing switch in the DMZ.

Which feature should the administrator implement to ensure that the guest traffic is tunneled to the DMZ while the employee traffic is forwarded using OSPF?

AOSPF route maps using the ''set metric'' command

BPolicy-based routing (PBR)

CUser-based tunneling (UBT)

DClassifier policies

Answer : B

Guest traffic can be routed with PBR to use GRE tunnels that terminate in the DMZ.

Question 5

An administrator wants to leverage always-on PoE on AOS-CX switches. Which statement is correct regarding this feature?

AProvides up to 60W of power per port

BSupports all AOS-CX switches

CProvides surge protection for PoE and non-PoE ports

DRequires NetEdit to implement

Answer : A

Question 6

An administrator is implementing a downloadable user role solution involving AOS-CX switches. The AAA

solution and the AOS-CX switches can successfully authenticate users; however, the role information fails to

download to the switches. What policy should be added to an intermediate firewall to allow the downloadable

role function to succeed?

AAllow TCP 443

BAllow UDP 1811

CAllow UDP 8211

DAllow TCP 22

Answer : A

pg 681 from the Aruba guide - 'When using DUR, the ClearPass HPE-CPPM-Role VSA is used in combination with HTTPS to transfer the role to the switch.' UDP 8211 (PAPI) is related to dynamic segmentation and the communication to the MC not DUR.

Question 7

A network administrator is implementing a configuration plan in NetEdit. The administrator used NetEdit to push the configuration plan to the switch. Which option in the NetEdit planning section should the administrator select to save the configuration running on the switch to the startup-config?

AEDIT

BVALIDATE

CCOMMIT

DDEPLOY

Answer : C

HPE6-A73 Aruba Certified Switching Professional Exam Practice Test