ExamGecko
Search Search Login
Home Home / HP / HPE6-A71

HP HPE6-A71 Practice Test - Questions Answers, Page 9

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator wants to use AirWave to manage the configuration policy settings of a set of ArubaOS-Switches. Where should the administrator perform this action?
Refer to the exhibit. An AP is connected to a cluster of controllers. An AAA server provides all authentication and authorization functions for wireless users. A wireless user connects to an AP, and Active User Anchor Controller (A-UAC) and Standby UAC (S- UAC) tunnels are built from the AP to the respective controllers in the cluster. Why would an administrator create four VRRP groups with four Virtual IP (VIP) addresses in the cluster?
An administrator configures the MultiZone feature for a company network, where a mobility cluster is the primary zone and a standalone controller in the company's DMZ represents a secondary data zone. The administrator configures two AP Groups and respective VAPs for the zones on the Mobility Master (MM) in the primary zone. When the APs boot up and establish connections to both zones, the administrator notices that no data connections are established to the data zone. What must the administrator do to fix this problem?
An administrator wants to dynamically upgrade AppRF on Aruba Mobility Controllers (MC) in a cluster. The administrator does not want to reboot the system at the time of the upgrade. What should the administrator use for this upgrade?
Refer to the exhibit. An administrator configures policies to allow RAPs to connect to the corporate office and remote users to access resources. Which function does the VPN address pool serve in this situation?
Refer to the exhibit. The branch office RAP shown in the exhibit provides secure wireless employee access. Because of security concerns, the company's security policy does not allow wireless guest access. Some customers that visit the Branch office need Internet access. A RAP's Ethernet Port 3 is used for wired guest access and Port2 is used for wired employee access. When employees connect to Port2, they are authenticated successfully and split-tunnel policy allows them access to both corporate and Internet resources from the Branch office. Guest users, however, cannot access Internet resources on Port 3. How can the administrator provide guest users Internet access?
Which forwarding mode is used for a WLAN if a RAP needs to decrypt all user traffic and forward it locally?
An administrator implements the Aruba AitGroup feature to accommodate the Apple Bonjour service. In this implementation, which protocol advertises devices such as printers, computers, and their services?
An administrator manages an AirWave Management Platform (AMP). The AMP server receives many SNMP traps from managed devices, but no alerts are generated on the AMP for certain critical traps. Which rule should the administrator create to cause the AMP server to generate an alert based on receipt of a critical SNMP trap from an Aruba Mobility Controller (MC)?
Where would an administrator define the split-tunneling mode for a RAP located at a branch office?

Question 81

Report
Export
Collapse

An administrator configures a port on a RAP through the association of an AAA profile with 802.1X authentication to a RAP Ethernet port. This port connects to a switch with user desktops attached.

The administrator notices that when users connect wirelessly to the RAP, a user role correctly restricts their traffic. But, when users connect with their wired desktops, they have full access to corporate resources.

What must the administrator do to restrict desktop usage based on the users' role assignment?

A.
Apply a server-derived role privacy to the RAP port.
A.
Apply a server-derived role privacy to the RAP port.
Answers
B.
Identify the RAP port as untrusted.
B.
Identify the RAP port as untrusted.
Answers
C.
Implement ACLs on the RAP port.
C.
Implement ACLs on the RAP port.
Answers
D.
Implement per-user tunnel node on the RAP.
D.
Implement per-user tunnel node on the RAP.
Answers
Suggested answer: B

Question 82

Report
Export
Collapse

Which Aruba Mobility Controller (MC) administrative role should an administrator assign to a receptionist so that they can create and manage guest accounts?

A.
guest-provisioning
A.
guest-provisioning
Answers
B.
receptionist
B.
receptionist
Answers
C.
guest-operator
C.
guest-operator
Answers
D.
network-operations
D.
network-operations
Answers
Suggested answer: A

Explanation:

References:

Question 83

Report
Export
Collapse

Refer to the exhibit. An administrator implements an L2 cluster of Aruba Mobility Controllers (MCs) as shown in the exhibit. An external RADUIS AAA server authenticates clients associated with the Active User Anchor Controller (A-UAC), where the NAS IP address sent from Controller B is 10.254.1.2.

By default, what happens to the user's session when it is handed over to the Standby UAC (S-UAC) after a failover?

A.
The user's session remains active and RADIUS messages can still be processed between the S-UAC and AAA server.
A.
The user's session remains active and RADIUS messages can still be processed between the S-UAC and AAA server.
Answers
B.
The user's session remains active, but the AAA server cannot implement RADIUS Change of Authorization (CoA).
B.
The user's session remains active, but the AAA server cannot implement RADIUS Change of Authorization (CoA).
Answers
C.
The user's session is disconnected and has to reconnect, and no record of this process is stored on the AAA server.
C.
The user's session is disconnected and has to reconnect, and no record of this process is stored on the AAA server.
Answers
D.
The user's session is disconnected and has to reconnect, but the S-UAC automatically updates the NAS-IP address on the AAA server to record the event.
D.
The user's session is disconnected and has to reconnect, but the S-UAC automatically updates the NAS-IP address on the AAA server to record the event.
Answers
Suggested answer: B

Explanation:

"The Authorization module authenticates clients on the A-UAC and sets the A-UAC IP address as the NAS-IP. External RADIUS servers set the NAS-IP as the A-UAC IP in the client database (Figure 6-17).

This NAS-IP is used later to change client states or attributes.

However, when the client moves to a new UAC, the authentication server is not updated. This means that transactions initiated by the authorization server will fail.

To resolve this issue, you should configure each cluster member to use the Virtual Router Redundancy Protocol (VRRP), as described below. This enables interaction between the cluster and the authorization server. "

Question 84

Report
Export
Collapse

An administrator configures an ArubaOS-Switch for per-user tunneled node. Which protocols does the switch use to establish and maintain a connection with the Aruba Mobility Controller (MC)?

(Select two.)

A.
GRE
A.
GRE
Answers
B.
SSL
B.
SSL
Answers
C.
PAPI
C.
PAPI
Answers
D.
IPSec
D.
IPSec
Answers
Suggested answer: A, C

Question 85

Report
Export
Collapse

Which RAP WLAN operation mode should an administrator configure if the SSID should only be advertised if controller connectivity is lost?

A.
Standard
A.
Standard
Answers
B.
Persistent
B.
Persistent
Answers
C.
Backup
C.
Backup
Answers
D.
Always
D.
Always
Answers
Suggested answer: C

Explanation:

References:

Question 86

Report
Export
Collapse

Refer to the exhibit.

Two Aruba Mobility Controllers (MC) are managed by a Mobility Master (MM) in a non-cluster deployment as shown in the exhibit.

The C1 controller is connected to AP1 and AP2.

The C2 controller is connected to AP3 and AP4.

VLAN mobility is enabled in the VAPs of both AP Groups.

Both C1 and C2 support the same VLANs.

User1's wireless device supports BSS Fast Transitioning and is currently connected to AP1.

What happens if User1 roams across the network and the user's device associates to AP3?

A.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and reobtain a new IP address.
A.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and reobtain a new IP address.
Answers
B.
User1's traffic is terminated on the C2 controller, and they will not have to re-authenticate but will need to obtain a new IP address.
B.
User1's traffic is terminated on the C2 controller, and they will not have to re-authenticate but will need to obtain a new IP address.
Answers
C.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and can keep their original IP address.
C.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and can keep their original IP address.
Answers
D.
User1's traffic is tunneled to the C1 controller, where they will not have to re-authenticate and can keep their original IP address.
D.
User1's traffic is tunneled to the C1 controller, where they will not have to re-authenticate and can keep their original IP address.
Answers
Suggested answer: D

Question 87

Report
Export
Collapse

Refer to the exhibit.

What can an administrator determine from this Aruba device output?

A.
A switch is connected to a standalone Mobility Controller.
A.
A switch is connected to a standalone Mobility Controller.
Answers
B.
An AP is connected to a Mobility Controller in a cluster.
B.
An AP is connected to a Mobility Controller in a cluster.
Answers
C.
An AP is connected to a standalone Mobility Controller.
C.
An AP is connected to a standalone Mobility Controller.
Answers
D.
A switch is connected to a Mobility Controller in a cluster.
D.
A switch is connected to a Mobility Controller in a cluster.
Answers
Suggested answer: D

Question 88

Report
Export
Collapse

Where would an administrator define the split-tunneling mode for a RAP located at a branch office?

A.
the Firewall policy on the RAP
A.
the Firewall policy on the RAP
Answers
B.
the AAA policy on the controller
B.
the AAA policy on the controller
Answers
C.
the Firewall policy on the controller
C.
the Firewall policy on the controller
Answers
D.
the VAP profile on the controller
D.
the VAP profile on the controller
Answers
Suggested answer: D

Explanation:

References: the WLAN was created to use the tunnel-forwarding mode. To configure the WLAN to use split-tunnel mode, you must edit the WLAN profile.

Question 89

Report
Export
Collapse

Refer to the exhibit.

A user uses a wireless client for a wireless session. Based on the output shown in the exhibit for the selected Aruba AP, what is the possible problem with this user's wireless session?

A.
The user is configured for PEAP, but the WLAN profile implemented EAP-TLS.
A.
The user is configured for PEAP, but the WLAN profile implemented EAP-TLS.
Answers
B.
The AP has reached the limit for number of users connected to the radio.
B.
The AP has reached the limit for number of users connected to the radio.
Answers
C.
The user misconfigured the Windows Managed Network Settings profile.
C.
The user misconfigured the Windows Managed Network Settings profile.
Answers
D.
The user is associated with a failed 802.1X/EAP authentication
D.
The user is associated with a failed 802.1X/EAP authentication
Answers
Suggested answer: D

Question 90

Report
Export
Collapse

An administrator supports an Aruba wireless solution that uses ClearPass to implement server role assignment. A user reports that they are not able to access the correct department resources. The administrator determines from the connected controller that the user is associated to the login user profile instead of the department user profile.

What should the administrator examine on the ClearPass server to determine the Aruba VSA User Role value that ClearPass returns to the controller?

A.
Accounting
A.
Accounting
Answers
B.
Event Viewer
B.
Event Viewer
Answers
C.
Audit Viewer
C.
Audit Viewer
Answers
D.
Access Tracker
D.
Access Tracker
Answers
Suggested answer: D
Total 171 questions
Go to page: of 18
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms