HP HPE6-A81 Exam Practice Test Instant Access

Question 1

Refer to the exhibit.

A customer with multiple Aruba Controllers has just installed a new certificate for "'.customerdomain.com- on all Aruba Controllers While testing the existing guest Self-Registration page the customer noticed that the logins are failing While troubleshooting they are finding no entries in the Event Viewer or Access Tracker for the tests Suspecting that the Aruba Controllers may not be properly posting the credentials from the guest browser, they open the NAS Vendor Settings for the Guest Self-Registration Page.

AAdd PTR records on the DNS server for 'securelogin arubanetworks.com'.

BChange the 'Secure Login' field to 'Use Vendor Default'.

CChange the 'IP Address field to' securelogin.customerdomain.com

DChange the 'IP Address field to 'captiveportal-login.customerdomain.com'.

Answer : D

Question 2

What is used to validate the EAP Certificate? (Select two.)

AKey usage

BDate

CServer Identity

DSAN entries

ECommon Name

Answer : A, D

Question 3

Refer to the exhibit.

You have configured an Onboard portal for single SSID provision. During testing you notice that the QuickConnect Application did not display the "Connect" button, only the finish button. To get connected the test user had to manually connect to the secure-HS-5007 SSID but was prompted for a username and password. Using the screenshots as a reference, how would you fix this issue?

ACheck the network settings for the correct SSID name spelling.

BInstall a public signed HTTPS web server certificate on the ClearPass server

CChange the network settings to use EAP-TLS for the authentication protocol.

DConfigure the SSID to support both EAP-PEAP and EAP-TLS authentication method

Answer : B

Question 4

When building an SNMP-based enforcement profile what option can you assign to the user as actions? (Select three).

AEnforce a VLAN ID for the client

ASet a session timeout for the client

BEnforce Firewall policies

CSend captive portal web re-direct URL

DClearPass Downloadable Role

EReset the connection after the settings has been pushed

Answer : A, A, B, D

Question 5

Refer to the exhibit.

Your customer has configured the 802.1 X service enforcement conditions with the Endpoint profiling dat

a. When the client connects to the network. ClearPass successfully profiles the client but the client always receives an incorrect enforcement profile The configurations in the Aruba controller are completed correctly What is the cause of the issue?

AAn additional authorization source should be configured for profiling to work.

BThe enforcement policy rules evaluation algorithm is not configured correctly.

CThe option, use cached roles and posture from previous sessions should be enabled.

DThe enforcement policy conditions configured with profiling data are not correct

Answer : C

Question 6

Refer to the exhibit.

The users connecting to a wireless SSIO "secure-HS-5007" were being processed by an incorrect 802.1 X service created for VIP access and the user gets deny access. The customer has sent you the screenshot to get your support to resolve the issue What changes will you suggest to fix it?

ATo the HS_Building 802.1 X service, add another service rule condition with VIP access Aruba-Essid-Name and leave it in same position

BIn the HS_Building 802.1X service, remove the service rule condition with Aruba controller location name and leave it in same position

CDelete the HSBuilding 802 IX service, odd VIP access Aruba-Essid-Name as fourth condition to WSBuilding Aruba 802 1X service

DIn the HSBuilding 802. IXservice. change the Authentication method for AMCAuth for VIP access and leave it in same position

Answer : B

Question 7

A customer would like to allow only the AD users with the "Manager" title from the "HO" location to Onboard their personal devices. Any other AD users should not be authorized to pass beyond the initial device provisioning page. Which Onboard service will you use to implement this requirement?

AOnboard Authorization service

BOnboard Pre-Auth service

COnboard Provisioning service

DOnboard CP login service

Answer : D

HPE6-A81 Aruba Certified ClearPass Expert Written Exam Practice Test