ExamGecko
Search Search Login
Home Home / HP / HPE6-A68

HP HPE6-A68 Practice Test - Questions Answers, Page 7

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A customer wants all guests who access a company's guest network to have their accounts approved by the receptionist, before they are given access to the network. How should the network administrator set this up in ClearPass? (Select two.)
Which statement is true about the configuration of a generic LDAP server as an External Authentication server in ClearPass? (Choose three.)
A bank would like to deploy ClearPass Guest with web login authentication so that their customers can selfregister on the network to get network access when they have meetings with bank employees. However, they're concerned about security. What is true? (Choose three.)
Refer to the exhibit. Based on the Aruba TACACS+ dictionary shown, how is the Aruba-Role attribute used?
What must be configured to enable RADIUS authentication with ClearPass on a network access device (NAD)? (Select two.)
Which authentication protocols can be used for authenticating Windows clients that are Onboarded? (Select two.)
Which licenses are included in the built-in Starter kit for ClearPass?
Refer to the exhibit. An Enforcement Profile has been created in the Policy Manager as shown. Which action will ClearPass take based on this Enforcement Profile?
Refer to the exhibit. In the Aruba RADIUS dictionary shown, what is the purpose of the RADIUS attributes? In the Aruba RADIUS dictionary shown, what is the purpose of the RADIUS attributes?
Refer to the exhibit. Based on the Authentication sources configuration shown, which statement accurately describes the outcome if the user is not found?

Question 61

Report
Export
Collapse

Refer to the exhibit.

Under which circumstances will ClearPass select the Policy Service named 'Test device group'?

A.
when the NAD belongs to an Airware device group HQ
A.
when the NAD belongs to an Airware device group HQ
Answers
B.
when the ClearPass IP address is part of the device group HQ
B.
when the ClearPass IP address is part of the device group HQ
Answers
C.
when the Aruba access point that the client is associated to is part of the device group HQ
C.
when the Aruba access point that the client is associated to is part of the device group HQ
Answers
D.
when an end user IP address is part of the device group HQ
D.
when an end user IP address is part of the device group HQ
Answers
E.
when the IP address of the NAD is part of the device group HQ
E.
when the IP address of the NAD is part of the device group HQ
Answers
Suggested answer: E

Question 62

Report
Export
Collapse

Refer to the exhibit.

An AD user's department attribute value is configured as "Product Management". The user connects on Monday to a NAD that belongs to the Device Group HQ.

Which role is assigned to the user in ClearPass?

A.
HR Local
A.
HR Local
Answers
B.
[Guest]
B.
[Guest]
Answers
C.
[Employee]
C.
[Employee]
Answers
D.
Linux User
D.
Linux User
Answers
E.
Executive
E.
Executive
Answers
Suggested answer: E

Explanation:

The conditions of the Executive Role is met.

Question 63

Report
Export
Collapse

Refer to the exhibit.

The ClearPass Event Viewer displays an error when a user authenticates with EAP-TLS to ClearPass through an Aruba Controller Wireless Network.

What is the cause of this error?

A.
The controller's shared secret used during the certificate exchange is incorrect.
A.
The controller's shared secret used during the certificate exchange is incorrect.
Answers
B.
The NAS source interface IP is incorrect.
B.
The NAS source interface IP is incorrect.
Answers
C.
The client sent an incorrect shared secret for the 802.1X authentication.
C.
The client sent an incorrect shared secret for the 802.1X authentication.
Answers
D.
The controller used an incorrect shared secret for the RADIUS authentication.
D.
The controller used an incorrect shared secret for the RADIUS authentication.
Answers
E.
The client's shared secret used during the certificate exchange is incorrect.
E.
The client's shared secret used during the certificate exchange is incorrect.
Answers
Suggested answer: D

Question 64

Report
Export
Collapse

Which types of files are stored in the Local Shared Folders database in ClearPass? (Select two.)

A.
Software image
A.
Software image
Answers
B.
Backup files
B.
Backup files
Answers
C.
Log files
C.
Log files
Answers
D.
Device fingerprint dictionaries
D.
Device fingerprint dictionaries
Answers
E.
Posture dictionaries
E.
Posture dictionaries
Answers
Suggested answer: B, C

Question 65

Report
Export
Collapse

Refer to the exhibit.

What information can be drawn from the audit row detail shown? (Select two.)

A.
radius01 was deleted from the list of authentication sources.
A.
radius01 was deleted from the list of authentication sources.
Answers
B.
The policy service was moved to position number 4.
B.
The policy service was moved to position number 4.
Answers
C.
radius01 was moved to position number 4.
C.
radius01 was moved to position number 4.
Answers
D.
The policy service was moved to position number 3.
D.
The policy service was moved to position number 3.
Answers
E.
raduis01 was added as an authentication source.
E.
raduis01 was added as an authentication source.
Answers
Suggested answer: A, B

Question 66

Report
Export
Collapse

Under which circumstances is it necessary to use an SNMP based Enforcement profile to send a VLAN?

A.
when a VLAN must be assigned to a wired user on an Aruba Mobility Controller
A.
when a VLAN must be assigned to a wired user on an Aruba Mobility Controller
Answers
B.
when a VLAN must be assigned to a wireless user on an Aruba Mobility Controller
B.
when a VLAN must be assigned to a wireless user on an Aruba Mobility Controller
Answers
C.
when a VLAN must be assigned to a wired user on a third party wired switch that does not support RADIUS return attributes
C.
when a VLAN must be assigned to a wired user on a third party wired switch that does not support RADIUS return attributes
Answers
D.
when a VLAN must be assigned to a wired user on an Aruba Mobility Access Switch
D.
when a VLAN must be assigned to a wired user on an Aruba Mobility Access Switch
Answers
E.
when a VLAN must be assigned to a wired user on a third party wired switch that does not support RADIUS accounting
E.
when a VLAN must be assigned to a wired user on a third party wired switch that does not support RADIUS accounting
Answers
Suggested answer: C

Question 67

Report
Export
Collapse

What must be configured to enable RADIUS authentication with ClearPass on a network access device (NAD)? (Select two.)

A.
the ClearPass server must have the network device added as a valid NAD
A.
the ClearPass server must have the network device added as a valid NAD
Answers
B.
the ClearPass server certificate must be installed on the NAD
B.
the ClearPass server certificate must be installed on the NAD
Answers
C.
a matching shared secret must be configured on both the ClearPass server and NAD
C.
a matching shared secret must be configured on both the ClearPass server and NAD
Answers
D.
an NTP server needs to be set up on the NAD
D.
an NTP server needs to be set up on the NAD
Answers
E.
a bind username and bind password must be provided
E.
a bind username and bind password must be provided
Answers
Suggested answer: A, C

Question 68

Report
Export
Collapse

Refer to the exhibit.

An administrator configured a service and tested authentication, but was unable to complete authentication successfully. The administrator performs a Search using insight and the information displays as shown.

What is a possible reason for the ErrorCode 'Failed to classify request to service' shown?

A.
The user failed authentication due to an incorrect password.
A.
The user failed authentication due to an incorrect password.
Answers
B.
ClearPass could not match the authentication request to a service, but the user passed authentication.
B.
ClearPass could not match the authentication request to a service, but the user passed authentication.
Answers
C.
ClearPass service authentication sources were not configured correctly.
C.
ClearPass service authentication sources were not configured correctly.
Answers
D.
The NAD did not send the authentication request.
D.
The NAD did not send the authentication request.
Answers
E.
ClearPass service rules were not configured correctly.
E.
ClearPass service rules were not configured correctly.
Answers
Suggested answer: E

Question 69

Report
Export
Collapse

What is the purpose of RADIUS CoA (RFC 3576)?

A.
to force the client to re-authenticate upon roaming to a new Controller
A.
to force the client to re-authenticate upon roaming to a new Controller
Answers
B.
to apply firewall policies based on authentication credentials
B.
to apply firewall policies based on authentication credentials
Answers
C.
to validate a host MAC address against a whitelist or a blacklist
C.
to validate a host MAC address against a whitelist or a blacklist
Answers
D.
to authenticate users or devices before granting them access to a network
D.
to authenticate users or devices before granting them access to a network
Answers
E.
to transmit messages to the NAD/NAS to modify a user's session status
E.
to transmit messages to the NAD/NAS to modify a user's session status
Answers
Suggested answer: E

Explanation:

CoA messages modify session authorization attributes such as data filters.

Reference: https://tools.ietf.org/html/rfc3576

Question 70

Report
Export
Collapse

Refer to the exhibit.

Which statement accurately reflects the status of the Policy Simulation test figure shown?

A.
The test verifies that a client with username test1 can authenticate using EAP-PEAP.
A.
The test verifies that a client with username test1 can authenticate using EAP-PEAP.
Answers
B.
Role mapping simulation verifies if the remote lab AD has the ClearPass server certificate.
B.
Role mapping simulation verifies if the remote lab AD has the ClearPass server certificate.
Answers
C.
Role mapping simulation verifies that the client certificate is valid during EAP-TLS authentication.
C.
Role mapping simulation verifies that the client certificate is valid during EAP-TLS authentication.
Answers
D.
The simulation test result shows the firewall roles assigned to the client by the Aruba Controller.
D.
The simulation test result shows the firewall roles assigned to the client by the Aruba Controller.
Answers
E.
The roles assigned in the results tab are based on rules matched in the AD Role Mapping Policy.
E.
The roles assigned in the results tab are based on rules matched in the AD Role Mapping Policy.
Answers
Suggested answer: E
Total 116 questions
Go to page: of 12
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms