HPE6-A82 Online Practice Questions and Answers

Sponsorship has been enabled on the guest network. A guest user connects and completes the self-registration form indicating a valid sponsor. The guest then clicks submit.

What is the current state of the guest account?

A. The guest account is created in an enabled state with the "Log In" button functional.

B. The guest account is created in disabled state, the "Log In" button will appear only after the sponsor approval process is completed.

C. The guest account is created in a disabled state with the "Log In" button grayed out.

D. The guest account is not yet created and remains in a disabled state. There is not "Log In" button yet displayed.

What is the significance of using the [Allow ALL MAC AUTH] as an Authentication Method for Guests?

A. Client attempts will fail without an additional Authentication method applied.

B. All clients with unknown endpoints will be granted guest access regardless of authorization.

C. All clients with known endpoints will be granted guest access regardless of authorization.

D. This removes the reliance on the known or unknown status for MAC authentication.

What is true regarding Posturing and Profiling?

A. Profiling describes categorizing the user based on their department while Posturing validates the user as authenticated.

B. Profiling is the act of identifying the endpoint type while Posturing is assigning a status as to the health of the endpoint.

C. Posturing and Profiling are role assignments in ClearPass used internally to map to enforcement policies.

D. Both Posturing and Profiling describe the same thing; what is the health of the client endpoint?

Refer to the exhibit.

A user connects to an Aruba Access Point wireless SSID named "Secure-Corporate" and performs an 802.1X authentication with ClearPass as the authentication server.

Based on this service configuration, which service will be triggered?

A. No service will be triggered

B. Service Three

C. Service Two

D. Service One

Which configuration options are necessary to add a Network Access Device into the ClearPass Policy Manager? (Choose two.)

A. HTTPS certificate

B. ClearPass Admin Password

C. CLI Console Password

D. NAD IP Address

E. Shared Secret

What are "known" endpoints in ClearPass?

A. "Known" endpoints have be fingerprinted to determine their operating system and manufacturer.

B. These are endpoints whose beacons have been detected but have never completed authentication.

C. The label "Known" indicates rogue endpoints labeled as "friendly" or "ignore".

D. "Known" endpoints can be authenticated based on MAC address to bypass the captive portal login.

What happens when a client successfully authenticates but does not match any Enforcement Policy rules?

A. A RADIUS reject is returned for the client.

B. A RADIUS Accept is returned with no Enforcement Profile applied.

C. A RADIUS Accept is returned, and the default Enforcement Profile is applied.

D. A RADIUS Accept is returned, and the default rule is applied to the device.

When using Guest Authentication with MAC Caching service template, which statements are true? (Choose two.)

A. The guest authentication is provided better security than without using MAC caching.

B. The endpoint status of the client will be treated as "known" the first time the client associates to the network.

C. Which wireless SSID and wireless controller must be indicated when configuring the template.

D. The client will be required to re-enter their credentials even if still within the MAC-Auth Expiry term.

When joining ClearPass to an Active Directory (AD) domain, what information is required? (Choose two.)

A. Fully Qualified Domain Name (FQDN) of the AD Domain Controller.

B. ClearPass Policy Manager (CPPM) enterprise credentials.

C. Domain Administrator credentials with at least read access.

D. Cache Timeout value set to at least 10 hours.

E. Domain User credentials with read-write access.

Which Authorization Source support device profile enforcement?

A. OnGuard Repository

B. Local user Repository

C. Guest User Repository

D. Endpoint Repository