HP HPE6-A78 - HPE Network Security Associate Exam
Page: 1 / 12
Total 60 questions
Question #1 (Topic: Exam A)
An organization has HPE Aruba Networking infrastructure, including AOS-CX switches and an AOS-8 mobility infrastructure with Mobility Controllers (MCs) and APs. Clients receive certificates from ClearPass Onboard. The infrastructure devices authenticate clients to ClearPass Policy Manager (CPPM). The company wants to start profiling clients to take their device type into account in their access rights.
What is a role that ClearPass Onboard should play in this plan?
What is a role that ClearPass Onboard should play in this plan?
A. sharing information with the profiler
B. determining the correct access level for clients
C. assigning clients to their device categories
D. enforcing access control decisions
Answer: A
Question #2 (Topic: Exam A)
A user attempts to connect to an SSID configured on an AOS-8 mobility architecture with Mobility Controllers (MCs) and APs. The SSID enforces WPA3-Enterprise security and uses HPE Aruba Networking ClearPass Policy Manager (CPPM) as the authentication server. The WLAN has initial role, logon, and 802.1 X default role, guest.
A user attempts to connect to the SSID, and CPPM sends an Access-Accept with an Aruba-User-Role VSA of "contractor," which exists on the MC.
What does the MC do?
A user attempts to connect to the SSID, and CPPM sends an Access-Accept with an Aruba-User-Role VSA of "contractor," which exists on the MC.
What does the MC do?
A. Applies the rules in the contractor role and guest role
B. Applies the rules in the contractor role and the logon role
C. Applies the rules in the contractor role
D. Applies the rules in the logon role, then guest role, and the contractor role
Answer: C
Question #3 (Topic: Exam A)
You have a network with AOS-CX switches for which HPE Aruba Networking ClearPass Policy Manager (CPPM) acts as the TACACS + server. When an admin authenticates, CPPM sends a response with:
* Aruba-Admin-Role = auditors
* TACACS+ privilege level = 1
What happens to the user?
* Aruba-Admin-Role = auditors
* TACACS+ privilege level = 1
What happens to the user?
A. The user receives auditors access.
B. The user receives administrators access.
C. The user receives no access.
D. The user receives operators access.
Answer: A
Question #4 (Topic: Exam A)
What is one benefit of enabling Enhanced Secure mode on an AOS-CX switch?
A. All interfaces have 802.1X authentication enabled on them by default.
B. A self-signed certificate is automatically added to the switch trusted platform module (TPM).
C. Users are prevented from accessing the switch software shell.
D. A default access list is applied to the switch’s control plane.
Answer: D
Question #5 (Topic: Exam A)
A client is connected to a Mobility Controller (MC). These firewall rules apply to this client’s role:
ipv4 any any svc-dhcp permit
ipv4 user 10.1.5.20 svc-dns permit
ipv4 user 10.1.1.0 255.255.255.0 https permit
ipv4 user 10.1.0.0 255.255.0.0 https deny_opt
ipv4 user any any permit
What correctly describes how the controller treats HTTPS packets to these two IP addresses, both of which are on the other side of the firewall:
10.1.20.1
10.1.5.20
ipv4 any any svc-dhcp permit
ipv4 user 10.1.5.20 svc-dns permit
ipv4 user 10.1.1.0 255.255.255.0 https permit
ipv4 user 10.1.0.0 255.255.0.0 https deny_opt
ipv4 user any any permit
What correctly describes how the controller treats HTTPS packets to these two IP addresses, both of which are on the other side of the firewall:
10.1.20.1
10.1.5.20
A. Both packets are permitted.
B. Both packets are denied.
C. The first packet is denied, and the second is permitted.
D. The first packet is permitted, and the second is denied.
Answer: C
