Filters
Question type
Study Flashcards

A bank would like to deploy ClearPass Guest with web login authentication so that their customers can self-register on the network to get network access when they have meetings with bank employees. However, they're concerned about security. What is true? (Choose three.)


A) If HTTPS is used for the web login page, after authentication is completed guest Internet traffic will all be encrypted as well.
B) During web login authentication, if HTTPS is used for the web login page, guest credentials will be encrypted.
C) After authentication, an IPSEC VPN on the guest's client be used to encrypt Internet traffic.
D) HTTPS should never be used for Web Login Page authentication.
E) If HTTPS is used for the web login page, after authentication is completed some guest Internet traffic may be unencrypted.

F) B) and D)
G) C) and E)

Correct Answer

verifed

verified

Which authorization servers are supported by ClearPass? (Choose two.)


A) Active Directory
B) Cisco Controller
C) Aruba Controller
D) LDAP server
E) Aruba Mobility Access Switch

F) C) and E)
G) B) and E)

Correct Answer

verifed

verified

What are Operator Profiles used for?


A) To map AD attributes to admin privilege levels in ClearPass Guest.
B) To enforce role based access control for ClearPass Guest Admin users.
C) To enforce role based access control for Aruba Controllers.
D) To assign ClearPass roles to guest users.
E) To enforce role based access control for ClearPass Policy Manager users.

F) B) and E)
G) A) and B)

Correct Answer

verifed

verified

Refer to the exhibit. Refer to the exhibit. Based on the Translation Rule configuration shown, what will be the outcome? A) An AD user from AD group MatchAdmin will be assigned the operator profile of IT Administrators. B) A user from AD group MatchAdmin will be assigned the operator profile of IT Administrators. C) All active directory users will be assigned the operator profile of IT Administrators. D) All ClearPass Policy Manager admin users who are members of the Administrators AD group will be assigned the TACACS profile of IT Administrators. Based on the Translation Rule configuration shown, what will be the outcome?


A) An AD user from AD group MatchAdmin will be assigned the operator profile of IT Administrators.
B) A user from AD group MatchAdmin will be assigned the operator profile of IT Administrators.
C) All active directory users will be assigned the operator profile of IT Administrators.
D) All ClearPass Policy Manager admin users who are members of the Administrators AD group will be assigned the TACACS profile of IT Administrators.

E) None of the above
F) A) and B)

Correct Answer

verifed

verified

Refer to the exhibit. Refer to the exhibit. An AD user's department attribute value is configured as QA . The user authenticates from a laptop running MAC OS X. Which role is assigned to the user in ClearPass? A) HR Local B) Remote Employee C) [Guest] D) iOS Device E) Executive An AD user's department attribute value is configured as "QA". The user authenticates from a laptop running MAC OS X. Which role is assigned to the user in ClearPass?


A) HR Local
B) Remote Employee
C) [Guest]
D) iOS Device
E) Executive

F) A) and B)
G) C) and D)

Correct Answer

verifed

verified

Which needs to be validated for a successful EAP-TLS authentication? (Choose two.)


A) WPA2-PSK
B) Username and Password
C) Client Certificate
D) Server Certificate
E) Pre-shared key

F) C) and E)
G) C) and D)

Correct Answer

verifed

verified

Refer to the exhibit. Refer to the exhibit. Which statement accurately describes the cp82 ClearPass node? (Choose two.) A) It stays as a Subscriber when the Publisher fails. B) It becomes the Publisher when the primary Publisher fails. C) It operates as a Publisher in a separate cluster when the Publisher is active. D) It operates as a Publisher in the same cluster as the primary Publisher when the primary is active. E) It operates as a Subscriber when the Publisher is active. Which statement accurately describes the cp82 ClearPass node? (Choose two.)


A) It stays as a Subscriber when the Publisher fails.
B) It becomes the Publisher when the primary Publisher fails.
C) It operates as a Publisher in a separate cluster when the Publisher is active.
D) It operates as a Publisher in the same cluster as the primary Publisher when the primary is active.
E) It operates as a Subscriber when the Publisher is active.

F) A) and B)
G) A) and E)

Correct Answer

verifed

verified

A University wants to deploy ClearPass with the Guest module. They have two types of users that need to use web login authentication. The first type of users are students whose accounts are in Active Directory server. The second type of user are friends of students who need to self-register to access the network. How should the service be setup in the Policy Manager for this Network?


A) Either the Guest User Repository or Active Directory server should be the single authentication source.
B) Guest User Repository as the authentication source, and Guest User Repository and Active Directory server as authentication sources.
C) Guest User Repository as the authentication source and the Active Directory server as authentication source.
D) Active Directory server as authentication source and the Guest User Repository as the authentication source.
E) Guest User Repository and Active Directory server both as authentication sources.

F) C) and E)
G) A) and E)

Correct Answer

verifed

verified

An SNMP probe is sent from ClearPass to a network access device but ClearPass is unable to get profiling information. What could be a valid cause? (Choose three.)


A) Mismatching SNMP community string in the ClearPass and NAD configuration.
B) Only SNMP read has been configured but SNMP write is needed for profiling information.
C) SNMP is not enabled on the NAD.
D) An external firewall is blocking SNMP traffic.
E) SNMP probing is not supported between ClearPass and NADs.

F) A) and B)
G) A) and C)

Correct Answer

verifed

verified

What can ClearPass use to assign roles to the client during policy service processing? (Choose two.)


A) Through a role mapping policy.
B) From the attributes configures in a Network Access Device.
C) From the server derivation rule in the Aruba Controller server group for the client.
D) From the attributes configured in Active Directory.
E) Roles can be derived from the Aruba Network Access Device.

F) A) and C)
G) A) and B)

Correct Answer

verifed

verified

What is the purpose of the Audit Viewer in the Monitoring section of ClearPass Policy Manager?


A) To display the entire configuration of the ClearPass Policy Manager.
B) To audit the network for PCI compliance.
C) To display system events like high CPU usage.
D) To audit client authentications.
E) To display changes made to the ClearPass configuration.

F) A) and B)
G) A) and D)

Correct Answer

verifed

verified

What does the Posture Token QUARANTINE imply?


A) The client is compliant. However, there is an update available to remediate the client to HEALTHY state.
B) The posture of the client is unknown.
C) The client is infected and is a threat to other systems in the network.
D) The client is out of compliance, but has HEALTHY state.
E) The client is out of compliance.

F) None of the above
G) A) and B)

Correct Answer

verifed

verified

Refer to the exhibit. Refer to the exhibit. Based on the Policy configuration shown, which VLAN will be assigned when a user with a ClearPass role Engineer authenticates to the network successfully on Saturday using connection protocol WEBAUTH? A) Full Access VLAN B) Deny Access C) Employee Vlan D) Internet VLAN Based on the Policy configuration shown, which VLAN will be assigned when a user with a ClearPass role Engineer authenticates to the network successfully on Saturday using connection protocol WEBAUTH?


A) Full Access VLAN
B) Deny Access
C) Employee Vlan
D) Internet VLAN

E) A) and C)
F) A) and B)

Correct Answer

verifed

verified

Refer to the exhibit. Refer to the exhibit. A Web Login Page is configured in ClearPass Guest as shown. What is the purpose of the Pre-Auth Check? A) To -re-authenticate users when they're roaming from one NAD to another. B) To authenticate users before they launch the Web Login Page. C) To replace the need for the NAD to send an authentication request to ClearPass. D) To authenticate users after the NAD sends an authentication request to ClearPass. E) To authenticate users before the client sends the credentials to the NAD. A Web Login Page is configured in ClearPass Guest as shown. What is the purpose of the Pre-Auth Check?


A) To -re-authenticate users when they're roaming from one NAD to another.
B) To authenticate users before they launch the Web Login Page.
C) To replace the need for the NAD to send an authentication request to ClearPass.
D) To authenticate users after the NAD sends an authentication request to ClearPass.
E) To authenticate users before the client sends the credentials to the NAD.

F) A) and D)
G) C) and E)

Correct Answer

verifed

verified

Showing 21 - 34 of 34

Related Exams

Exam 1

Designing Multi-Site HPE Storage Solutions

148 Questions

Exam 2

HPE Storage Solutions

94 Questions

Exam 3

Configuring HPE GreenLake Solutions

95 Questions

Exam 4

Architecting Advanced HPE Server Solutions

92 Questions

Exam 5

Designing HPE Server Solutions

83 Questions

Exam 6

Delta - Designing HPE Server Solutions

123 Questions

Exam 7

Designing HPE Hybrid IT Solutions

80 Questions

Exam 8

Implementing HPE Composable Infrastructure Solutions

25 Questions

Exam 9

Designing HPE Software-Defined Infrastructure Solutions

43 Questions

Exam 10

Building HPE Hybrid IT Solutions

71 Questions

Exam 11

Designing HPE Nimble Solutions

78 Questions

Exam 12

Using HPE OneView

54 Questions

Exam 13

Selling Aruba Products and Solutions

36 Questions

Exam 14

Designing Aruba Solutions

14 Questions

Exam 16

Aruba Certified ClearPass Professional (ACCP) V6.7

40 Questions

Exam 17

Aruba Certified Mobility Associate Exam

72 Questions

Exam 18

Aruba Certified Mobility Professional Exam

23 Questions

Exam 19

Aruba Certified Switching Associate

98 Questions

Exam 20

Aruba Certified Switching Professional

34 Questions

Exam 21

Aruba Certified Mobility Expert Written Exam

32 Questions

Exam 22

HPE Sales Certified - Aruba Products and Solutions

36 Questions

Show Answer