ExamGecko
Search Search Login
Home Home / HP / HPE7-A01
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which component is used by the Aruba Network Analytics Engine (NAE)?
Which standard supported by some Aruba APs can enable a customer to accurately locate wireless client devices within a few meters?
Your customer currently has Iwo (2) 5406 modular switches with MSTP configured as their core switches. You are proposing a new solution. What would you explain regarding the Aruba CX VSX switch pair when the Primary VSX node is replaced and the system MAC is replaced?
For an Aruba AOS10 AP in mixed mode, which factors can be used to determine the forwarding role assigned to a client? (Select two.)
For the Aruba CX 6400 switch, what does virtual output queueing (VOQ) implement that is different from most typical campus switches?
You need to drop excessive broadcast traffic on an ingress port or an ArubaOS-CX switch. What is the best feature to use for this task?
A customer just upgraded aggregation layer switches and noticed traffic dropping for 120 seconds after the aggregation layer came online again. What is the best way to avoid having this traffic dropped given the topology below?
You are doing tests in your lab and with the following equipment specifications: * AP1 has a radio that generates a 20 dBm signal * AP2 has a radio that generates a 8 dBm signal * AP1 has an antenna with a gain of 7 dBI. * AP2 has an antenna with a gain of 12 dBI. * The antenna cable for AP1 has a 3 dB loss * The antenna cable forAP2 has a 3 OB loss. What would be the calculated Equivalent Isotropic Radiated Power (EIRP) for AP1?
When configuring UBT on a switch what will happen when a gateway role is not specified?
Which statements regarding 0SPFv2 route redistribution are true for Aruba OS CX switches? (Select two.)

Question 68 - HPE7-A01 discussion

Report
Export

A company recently deployed new Aruba Access Points at different branch offices Wireless 802.1X authentication will be against a RADIUS server in the cloud. The security team is concerned that the traffic between the AP and the RADIUS server will be exposed.

What is the appropriate solution for this scenario?

A.
Enable EAP-TLS on all wireless devices
Answers
A.
Enable EAP-TLS on all wireless devices
B.
Configure RadSec on the AP and Aruba Central.
Answers
B.
Configure RadSec on the AP and Aruba Central.
C.
Enable EAP-TTLS on all wireless devices.
Answers
C.
Enable EAP-TTLS on all wireless devices.
D.
Configure RadSec on the AP and the RADIUS server
Answers
D.
Configure RadSec on the AP and the RADIUS server
Suggested answer: D

Explanation:

This is the appropriate solution for this scenario where wireless 802.1X authentication will be against a RADIUS server in the cloud and the security team is concerned that the traffic between the AP and the RADIUS server will be exposed. RadSec, also known as RADIUS over TLS, is a protocol that provides encryption and authentication for RADIUS traffic over TCP and TLS. RadSec can be configured on both the AP and the RADIUS server to establish a secure tunnel for exchanging RADIUS packets. The other options are incorrect because they either do not provide encryption or authentication for RADIUS traffic or do not involve RadSec.

Reference: https://www.securew2.com/blog/what-is-radsec/ https://www.cloudradius.com/radsec-vs-radius/

×End Practice TestAre you sure you want to end the test?YesNo

Show Answer
asked 16/09/2024
Oeurn Chan
28 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms