Question No. 1

What is a Key feature of me ArubaOS firewall?

AThe firewall is stateful which means that n can track client sessions and automatically allow return traffic for permitted sessions

BThe firewall Includes application layer gateways (ALGs). which it uses to filter Web traffic based on the reputation of the destination web site.

CThe firewall examines all traffic at Layer 2 through Layer 4 and uses source IP addresses as the primary way to determine how to control traffic.

DThe firewall is designed to fitter traffic primarily based on wireless 802.11 headers, making it ideal for mobility environments

Show Answer

Correct Answer: B

Question No. 2

From which solution can ClearPass Policy Manager (CPPM) receive detailed information about client device type OS and status?

AClearPass Onboard

BClearPass Access Tracker

CClearPass OnGuard

DClearPass Guest

Show Answer

Correct Answer: C

Question No. 3

What is a reason to set up a packet capture on an Aruba Mobility Controller (MC)?

AThe company wants to use ClearPass Policy Manager (CPPM) to profile devices and needs to receive HTTP User-Agent strings from the MC.

BThe security team believes that a wireless endpoint connected to the MC is launching an attack and wants to examine the traffic more closely.

CYou want the MC to analyze wireless clients' traffic at a lower level, so that the ArubaOS firewall can control the traffic I based on application.

DYou want the MC to analyze wireless clients' traffic at a lower level, so that the ArubaOS firewall can control Web traffic based on the destination URL.

Show Answer

Correct Answer: C

Question No. 4

You need to deploy an Aruba instant AP where users can physically reach It. What are two recommended options for enhancing security for management access to the AP? (Select two )

ADisable Its console ports

BPlace a Tamper Evident Label (TELS) over its console port

CDisable the Web Ul.

DConfigure WPA3-Enterpnse security on the AP

Einstall a CA-signed certificate

Show Answer

Correct Answer: B, E

Question No. 5

What is a vulnerability of an unauthenticated Dime-Heliman exchange?

AA hacker can replace the public values exchanged by the legitimate peers and launch an MITM attack.

BA brute force attack can relatively quickly derive Diffie-Hellman private values if they are able to obtain public values

CDiffie-Hellman with elliptic curve values is no longer considered secure in modem networks, based on NIST recommendations.

DParticipants must agree on a passphrase in advance, which can limit the usefulness of Diffie- Hell man in practical contexts.

Show Answer

Correct Answer: A

Free HP HPE6-A78 Exam Actual Questions

The questions for HPE6-A78 were last updated On Nov 5, 2024