HP HPE6-A79 Quiz 1 Topic 1 Questions 1-5

Question: 1

Refer to the exhibits.

Exhibit 1

q1_HPE6-A79

Exhibit 2

q1_HPE6-A79

A network administrator integrates a current Mobility Master (MM) - Mobility Controller (MC) deployment with a RADIUS server to authenticate a wireless user, the network administrator realizes that the client machine is not failing into the it_department role, as shown the exhibits.

Which configuration is required to map the users into the proper role, based on standard attributes returned by the RADIUS server in the Access Accept message?

Aaaa server-group Corp-Network
set role condition Filter-Id equals it-role set-value it_department

Baaa server-group Corp-employee
set role condition Filter-Id value-of

Caaa server-group Corp-employee
set role condition Filter-Id equals it-role set-value it_department

Daaa server-group ClearPass
set role condition Filter-Id equals it_department set-value it-role

Eaaa server-group Corp-Network
set role condition Filter-Id equals it_department set-value it-role

Show Answer

Question: 2

A network administrator assists with the migration of a WLAN from a third-party vendor to Aruba in different locations throughout the country. In order to manage the solution from a central point, the network administrator decides to deploy redundant Mobility Masters (MMs) in a datacenter that are reachable through the Internet.

Since not all locations own public IP addresses, the security team is not able to configure strict firewall polices at the datacenter without disrupting some MM to Mobility Controller (MC) communications. They are also concerned about exposing the MMs to unauthorized inbound connection attempts.

What should the network administrator do to ensure the solution is functional and secure?

ADeploy an MC at the datacenter as a VPN concentrator.

BBlock all inbound connections, and instruct the MM to initiate the connection to the MCs.

CBlock all ports to the MMs except UDP 500 and 4500.

DInstall a PEFV license, and configure firewall policies that protect the MM.

Show Answer

Question: 3

A network administrator has deployed an Airwave Management Platform (AMP) server and integrated it with a Mobility Master (MM) -- Mobility Controller (MC) based WLAN. The AMP server already has all Aruba Mobility devices including Access Points (APs) in the ''UP'' devices list.

What are two actions the administrator can execute upon the APs under ''Airwave>Devices>Monitor''? (Choose two.)

AOpen the WebUI of the MC where the AP terminates.

BRe-provision the Access Point.

CDisable and change the mode of the AP's radios.

DInvoke MC's show commands for that Access Point.

ERun Spectrum Analysis locally.

Show Answer

Question: 4

Refer to the exhibits.

q4_HPE6-A79

A network administrator has fully deployed a WPA3 based WLAN with 802.1X authentication. Later he defined corp-employee as the default user-role for the 802.1X authentication method in the aaa profile. When testing the setup he realizes the client gets the ''guest'' role.

What is the reason ''corp-employee'' user role was not assigned?

AThe administrator forgot to map a dotlx profile to the corp-employee aaa profile.

BThe administrator forgot to enable PEFNG feature set on the Mobility Master.

CMC 1 has not received the configuration from the mobility master yet.

DThe Mobility Master lacks MM-VA licenses; therefore, it shares partial configuration only.

Show Answer

Question: 5

A network administrator is in charge of a Mobility Master (MM) -- Mobility Controller (MC) based network security. Recently the Air Monitors detected a Rogue AP in the network and the administrator wants to enable ''Tarpit'' based wireless containment.

What profile must the administrator enable ''tarpit'' wireless containment on?

AIDS Unauthorized device profile

BIDS profile

CIDS General profile

DIDS DOS profile

Show Answer

HP HPE6-A79 Quiz:1 Topic:1 Questions:1-5