HP HPE6-A81 Exam Questions Instant Access

Question 1

Refer to the exhibit.

What could be causing the error message received on the OnGuard client?

AThe Service Selection Rules for the service are not configured correctly

BThe Health-Check service does not have Posture Compliance option enabled

CThe client's OnGuard Agent has not been configured with the correct Policy Manager Zone.

DThere is a firewall policy not allowing the OnGuard Agent to connect to ClearPass

Answer : A

Question 2

Refer to the exhibit.

A customer has incomplete information for endpoints in the Endpoint Repository. In order to make accurate decisions about what types of devices are connecting to the network. ClearPass is enabled to process the device information from IF-MAP interface, but no updates are received. What can the customer do to update those endpoints using IF-MAP?

AConfigure ClearPass Management IP in the DHCP Helper address

BConfigure IF-MAP on all networking devices to send additional information to ClearPass

CConfigure IF-MAP only on Aruba Mobility Controller, providing ClearPass username and password

DConfigure the authentication service to Audit the endpoints using, the embedded Nmap Server

Answer : A

Question 3

Refer to the exhibit.

Your customer has configured the 802.1 X service enforcement conditions with the Endpoint profiling dat

a. When the client connects to the network. ClearPass successfully profiles the client but the client always receives an incorrect enforcement profile The configurations in the Aruba controller are completed correctly What is the cause of the issue?

AAn additional authorization source should be configured for profiling to work.

BThe enforcement policy rules evaluation algorithm is not configured correctly.

CThe option, use cached roles and posture from previous sessions should be enabled.

DThe enforcement policy conditions configured with profiling data are not correct

Answer : C

Question 4

What is used to validate the EAP Certificate? (Select two.)

AKey usage

BDate

CServer Identity

DSAN entries

ECommon Name

Answer : A, D

Question 5

Refer to the exhibit.

You have integrated the Cisco switch with ClearPass to do MAC-Auth for Cisco IP Phones. The phones connect to the network successfully but when you try to change the status of the device from the access tracker, you see only the ArubaOS Radius terminate session options and not the Cisco vendor terminate session options. What will you check to fix this issue?

AVerify if the ClearPass supports RADIUS Dynamic Authorization for the Cisco IP Phones doing MAC.AUTH.

BVerify if the Cisco IP Phone is actively connected to the switch to get the Cisco CoA options from ClearPass.

CVerify if the Enable RADIUS Dynamic Authorization option is checked for the Cisco switch added under the network devices.

DVerify that Cisco is chosen as the vendor name while adding the Cisco Switch under network devices.

Answer : D

Question 6

A Customer has these requirements:

* 2.000 loT endpoints that use MAC authentication

* 6.000 endpoints using a mix of username/password and certificate (Corporate/BYOD) based authentication

* 1.000 guest endpoints at peak usage that use guest self-registration

* 1500 BYOD devices estimated as 3 devices per User (500 users)

* 2.500 endpoints that have OnGuard installed and connect on a daily basis

What licenses should be installed to meet customer requirements?

A11.500 Access. 1.500 Onboard. 2.500 OnGuard

B13.000 Access. 1.500 Onboard. 2.500 OnGuard

C9.000 Access. 500 Onboard. 2.500 OnGuard

D11.500 Access. 500 Onboard. 2.500 OnGuard

Answer : A

Question 7

Refer to the exhibit.

A customer with multiple Aruba Controllers has just installed a new certificate for "'.customerdomain.com- on all Aruba Controllers While testing the existing guest Self-Registration page the customer noticed that the logins are failing While troubleshooting they are finding no entries in the Event Viewer or Access Tracker for the tests Suspecting that the Aruba Controllers may not be properly posting the credentials from the guest browser, they open the NAS Vendor Settings for the Guest Self-Registration Page.

HP Aruba Certified ClearPass Expert Written HPE6-A81 Exam Questions