ExamGecko
Login
Home / HP / HPE6-A71 / List of questions
Ask Question

HP HPE6-A71 Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report Export Collapse

An administrator configures a port on a RAP through the association of an AAA profile with 802.1X authentication to a RAP Ethernet port. This port connects to a switch with user desktops attached.

The administrator notices that when users connect wirelessly to the RAP, a user role correctly restricts their traffic. But, when users connect with their wired desktops, they have full access to corporate resources.

What must the administrator do to restrict desktop usage based on the users' role assignment?

Apply a server-derived role privacy to the RAP port.
Apply a server-derived role privacy to the RAP port.
Identify the RAP port as untrusted.
Identify the RAP port as untrusted.
Implement ACLs on the RAP port.
Implement ACLs on the RAP port.
Implement per-user tunnel node on the RAP.
Implement per-user tunnel node on the RAP.
Suggested answer: B
asked 16/09/2024
Han Valk
50 questions

Question 82

Report Export Collapse

Which Aruba Mobility Controller (MC) administrative role should an administrator assign to a receptionist so that they can create and manage guest accounts?

guest-provisioning
guest-provisioning
receptionist
receptionist
guest-operator
guest-operator
network-operations
network-operations
Suggested answer: A
Explanation:

References:

asked 16/09/2024
Valerio Lorenzani
46 questions

Question 83

Report Export Collapse

Refer to the exhibit. An administrator implements an L2 cluster of Aruba Mobility Controllers (MCs) as shown in the exhibit. An external RADUIS AAA server authenticates clients associated with the Active User Anchor Controller (A-UAC), where the NAS IP address sent from Controller B is 10.254.1.2.

HP HPE6-A71 image Question 83 14393 09162024180649000000

By default, what happens to the user's session when it is handed over to the Standby UAC (S-UAC) after a failover?

The user's session remains active and RADIUS messages can still be processed between the S-UAC and AAA server.
The user's session remains active and RADIUS messages can still be processed between the S-UAC and AAA server.
The user's session remains active, but the AAA server cannot implement RADIUS Change of Authorization (CoA).
The user's session remains active, but the AAA server cannot implement RADIUS Change of Authorization (CoA).
The user's session is disconnected and has to reconnect, and no record of this process is stored on the AAA server.
The user's session is disconnected and has to reconnect, and no record of this process is stored on the AAA server.
The user's session is disconnected and has to reconnect, but the S-UAC automatically updates the NAS-IP address on the AAA server to record the event.
The user's session is disconnected and has to reconnect, but the S-UAC automatically updates the NAS-IP address on the AAA server to record the event.
Suggested answer: B
Explanation:

"The Authorization module authenticates clients on the A-UAC and sets the A-UAC IP address as the NAS-IP. External RADIUS servers set the NAS-IP as the A-UAC IP in the client database (Figure 6-17).

This NAS-IP is used later to change client states or attributes.

However, when the client moves to a new UAC, the authentication server is not updated. This means that transactions initiated by the authorization server will fail.

To resolve this issue, you should configure each cluster member to use the Virtual Router Redundancy Protocol (VRRP), as described below. This enables interaction between the cluster and the authorization server. "

asked 16/09/2024
Vasil Ishmatov
49 questions

Question 84

Report Export Collapse

An administrator configures an ArubaOS-Switch for per-user tunneled node. Which protocols does the switch use to establish and maintain a connection with the Aruba Mobility Controller (MC)?

(Select two.)

GRE
GRE
SSL
SSL
PAPI
PAPI
IPSec
IPSec
Suggested answer: A, C
asked 16/09/2024
Mian Mudasir Bari
50 questions

Question 85

Report Export Collapse

Which RAP WLAN operation mode should an administrator configure if the SSID should only be advertised if controller connectivity is lost?

Standard
Standard
Persistent
Persistent
Backup
Backup
Always
Always
Suggested answer: C
Explanation:

References:

asked 16/09/2024
Leandro Ruwer
50 questions

Question 86

Report Export Collapse

Refer to the exhibit.

HP HPE6-A71 image Question 86 14396 09162024180649000000

Two Aruba Mobility Controllers (MC) are managed by a Mobility Master (MM) in a non-cluster deployment as shown in the exhibit.

The C1 controller is connected to AP1 and AP2.

The C2 controller is connected to AP3 and AP4.

VLAN mobility is enabled in the VAPs of both AP Groups.

Both C1 and C2 support the same VLANs.

User1's wireless device supports BSS Fast Transitioning and is currently connected to AP1.

What happens if User1 roams across the network and the user's device associates to AP3?

User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and reobtain a new IP address.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and reobtain a new IP address.
User1's traffic is terminated on the C2 controller, and they will not have to re-authenticate but will need to obtain a new IP address.
User1's traffic is terminated on the C2 controller, and they will not have to re-authenticate but will need to obtain a new IP address.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and can keep their original IP address.
User1's traffic is terminated on the C2 controller, and they will have to re-authenticate and can keep their original IP address.
User1's traffic is tunneled to the C1 controller, where they will not have to re-authenticate and can keep their original IP address.
User1's traffic is tunneled to the C1 controller, where they will not have to re-authenticate and can keep their original IP address.
Suggested answer: D
asked 16/09/2024
Eric Swisher
43 questions

Question 87

Report Export Collapse

Refer to the exhibit.

HP HPE6-A71 image Question 87 14397 09162024180649000000

What can an administrator determine from this Aruba device output?

A switch is connected to a standalone Mobility Controller.
A switch is connected to a standalone Mobility Controller.
An AP is connected to a Mobility Controller in a cluster.
An AP is connected to a Mobility Controller in a cluster.
An AP is connected to a standalone Mobility Controller.
An AP is connected to a standalone Mobility Controller.
A switch is connected to a Mobility Controller in a cluster.
A switch is connected to a Mobility Controller in a cluster.
Suggested answer: D
asked 16/09/2024
Vasuki Pramod Kara
33 questions

Question 88

Report Export Collapse

Where would an administrator define the split-tunneling mode for a RAP located at a branch office?

the Firewall policy on the RAP
the Firewall policy on the RAP
the AAA policy on the controller
the AAA policy on the controller
the Firewall policy on the controller
the Firewall policy on the controller
the VAP profile on the controller
the VAP profile on the controller
Suggested answer: D
Explanation:

References: the WLAN was created to use the tunnel-forwarding mode. To configure the WLAN to use split-tunnel mode, you must edit the WLAN profile.

asked 16/09/2024
doaa elshazly
52 questions

Question 89

Report Export Collapse

Refer to the exhibit.

HP HPE6-A71 image Question 89 14399 09162024180649000000

A user uses a wireless client for a wireless session. Based on the output shown in the exhibit for the selected Aruba AP, what is the possible problem with this user's wireless session?

The user is configured for PEAP, but the WLAN profile implemented EAP-TLS.
The user is configured for PEAP, but the WLAN profile implemented EAP-TLS.
The AP has reached the limit for number of users connected to the radio.
The AP has reached the limit for number of users connected to the radio.
The user misconfigured the Windows Managed Network Settings profile.
The user misconfigured the Windows Managed Network Settings profile.
The user is associated with a failed 802.1X/EAP authentication
The user is associated with a failed 802.1X/EAP authentication
Suggested answer: D
asked 16/09/2024
Haider Nassiry
48 questions

Question 90

Report Export Collapse

An administrator supports an Aruba wireless solution that uses ClearPass to implement server role assignment. A user reports that they are not able to access the correct department resources. The administrator determines from the connected controller that the user is associated to the login user profile instead of the department user profile.

What should the administrator examine on the ClearPass server to determine the Aruba VSA User Role value that ClearPass returns to the controller?

Accounting
Accounting
Event Viewer
Event Viewer
Audit Viewer
Audit Viewer
Access Tracker
Access Tracker
Suggested answer: D
asked 16/09/2024
Muath Ahmed Saleh AlShuwaer
44 questions
Total 171 questions
Go to page: of 18
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. An administrator implements AP licensing on a Mobility Master (MM). Network engineers at CampusA want to deploy an additional 100 APs. Currently all of the AP licenses in CampusA and CampusB are allocated, but only 200 of the AP licenses in CampusC are allocated. Each campus is responsible to purchase its own AP licenses. There are 900 AP licenses deployed in the global pool. There are three dedicated pools. From the global pool, 300 AP licenses are assigned to each dedicated pool. What can the administrator do to add capacity for CampusA in alignment with campus policies?
An administrator mistakenly configures the wrong VLAN setting on a managed controller's interface. This causes the controller to lose management access to the Mobility Master (MM). Which mechanism will then attempt to restore the previous working configuration on the managed controller?
Refer to the exhibit. An administrator wants to verify the operation of MultiZone in a network. The administrator uses the command show ap debug multizone to generate the output shown in the exhibit. Based on the output, which statement is true?
An administrator moves an AP from one campus to another. However, at the second campus, the moved AP does not connect to a controller and download an AP Group configuration. Which process should the administrator perform to reset the AP to the initial state?
An administrator migrates Aruba Mobility Controllers (MCs) from ArubaOS.6x to ArubaOS.8. x. In the 6.x. configuration, the administrator configures GRE tunnels on the local controllers to a controller in the DMZ to keep guest traffic off the corporate network. The problem with the solution is that is creates suboptimal routing paths. Which feature should the administrator implement to solve this problem?
Refer to the exhibit. An administrator configures a policy for an AP Group. Port 3 of a RAP is a trunk that connects to a switch at a branch office. VLAN 1 is untagged and VLANs 10 (for data) and 11 (for voice) are tagged. The administrator applies an ACL inbound on Port 3 of the RAP. How does this configuration affect traffic on Port 3?
An administrator wants to use AirWave to manage the configuration policy settings of a set of ArubaOS-Switches. Where should the administrator perform this action?
An administrator wants to determine if an IPSec session is established. In order to tunnel and protect the GRE data traffic between a RAP and an Aruba Mobility Controller (MC). Which MC command provides this information?
Refer to the exhibits. Exhibit 1: WLAN VAP configuration Exhibit 2: Microsoft NPS server configuration Exhibit 3: Server group configuration for the VAP. An employee authenticates with the username employee and the correct password. However, once the user authenticates, an administrator notices that the employee is assigned the authenticated role and not the desired employee role. What should the administrator do to solve this problem?
An administrator wants to temporarily deny login access who fail 802.1x authentication functions three or more times. Which process will the administrator need to configure?