Question No. 1

What is a Key feature of me ArubaOS firewall?

AThe firewall is stateful which means that n can track client sessions and automatically allow return traffic for permitted sessions

BThe firewall Includes application layer gateways (ALGs). which it uses to filter Web traffic based on the reputation of the destination web site.

CThe firewall examines all traffic at Layer 2 through Layer 4 and uses source IP addresses as the primary way to determine how to control traffic.

DThe firewall is designed to fitter traffic primarily based on wireless 802.11 headers, making it ideal for mobility environments

Show Answer

Correct Answer: B

Question No. 2

An ArubaOS-CX switch enforces 802.1X on a port. No fan-through options or port-access roles are configured on the port The 802 1X supplicant on a connected client has not yet completed authentication

Which type of traffic does the authenticator accept from the client?

AEAP only

BDHCP, DNS and RADIUS only

CRADIUS only

DDHCP, DNS, and EAP only

Show Answer

Correct Answer: A

Question No. 3

You have an Aruba Mobility Controller (MC). for which you are already using Aruba ClearPass Policy Manager (CPPM) to authenticate access to the Web Ul with usernames and passwords You now want to enable managers to use certificates to log in to the Web Ul CPPM will continue to act as the external server to check the names in managers' certificates and tell the MC the managers' correct rote

in addition to enabling certificate authentication. what is a step that you should complete on the MC?

AVerify that the MC has the correct certificates, and add RadSec to the RADIUS server configuration for CPPM

Binstall all of the managers' certificates on the MC as OCSP Responder certificates

CVerify that the MC trusts CPPM's HTTPS certificate by uploading a trusted CA certificate Also, configure a CPPM username and password on the MC

DCreate a local admin account mat uses certificates in the account, specify the correct trusted CA certificate and external authentication

Show Answer

Correct Answer: A

Question No. 4

What role does the Aruba ClearPass Device Insight Analyzer play in the Device Insight architecture?

AIt resides in the cloud and manages licensing and configuration for Collectors

BIt resides on-prem and provides the span port to which traffic is mirrored for deep analytics.

CIt resides on-prem and is responsible for running active SNMP and Nmap scans

DIt resides In the cloud and applies machine learning and supervised crowdsourcing to metadata sent by Collectors

Show Answer

Correct Answer: D

Question No. 5

Refer to the exhibit.

This Aruba Mobility Controller (MC) should authenticate managers who access the Web Ul to ClearPass Policy Manager (CPPM) ClearPass admins have asked you to use RADIUS and explained that the MC should accept managers' roles in Aruba-Admin-Role VSAs

Which setting should you change to follow Aruba best security practices?

AChange the local user role to read-only

BClear the MSCHAP check box

CDisable local authentication

DChange the default role to 'guest-provisioning'

Show Answer

Correct Answer: D

Free HP HPE6-A78 Exam Actual Questions

The questions for HPE6-A78 were last updated On Dec 16, 2024