{"id":90047,"date":"2024-10-17T02:31:47","date_gmt":"2024-10-17T02:31:47","guid":{"rendered":"https:\/\/www.dumpsbase.com\/freedumps\/?p=90047"},"modified":"2024-10-17T02:31:53","modified_gmt":"2024-10-17T02:31:53","slug":"new-hpe7-a02-exam-dumps-v8-02-best-study-materials-for-the-aruba-certified-network-security-professional-exam","status":"publish","type":"post","link":"https:\/\/www.dumpsbase.com\/freedumps\/new-hpe7-a02-exam-dumps-v8-02-best-study-materials-for-the-aruba-certified-network-security-professional-exam.html","title":{"rendered":"New HPE7-A02 Exam Dumps (V8.02) &#8211; Best Study Materials for the Aruba Certified Network Security Professional Exam"},"content":{"rendered":"\n<p>Are you seeking the best study materials to prepare for your Aruba Certified Network Security Professional Exam (HPE7-A02)? DumpsBase has released new HPE7-A02 exam dumps (V8.02) to help you pass the exam smoothly. The HPE7-A02 exam is for the HPE Aruba Networking Certified Professional &#8211; Network Security certification, testing your understanding of the intermediate security concepts, including implementing Zero Trust Security and protecting network threats, configuring HPE Aruba Networking infrastructure and ClearPass solutions, and more. The newest HPE7-A02 dumps include actual questions with accurate answers, covering all the HPE7-A02 exam topics. All these questions and answers are comprehensive and contain all the required information about the Aruba Certified Network Security Professional Exam to ensure your success in the HPE HPE7-A02 exam.<\/p>\n<h2><span style=\"background-color: #ffff00;\"><em>Read HPE7-A02 Free Dumps Below<\/em><\/span> &#8211; Check the New HPE7-A02 Dumps First<\/h2>\n<script>\n\t  window.fbAsyncInit = function() {\n\t    FB.init({\n\t      appId            : '622169541470367',\n\t      autoLogAppEvents : true,\n\t      xfbml            : true,\n\t      version          : 'v3.1'\n\t    });\n\t  };\n\t\n\t  (function(d, s, id){\n\t     var js, fjs = d.getElementsByTagName(s)[0];\n\t     if (d.getElementById(id)) {return;}\n\t     js = d.createElement(s); js.id = id;\n\t     js.src = \"https:\/\/connect.facebook.net\/en_US\/sdk.js\";\n\t     fjs.parentNode.insertBefore(js, fjs);\n\t   }(document, 'script', 'facebook-jssdk'));\n\t<\/script><script type=\"text\/javascript\" >\ndocument.addEventListener(\"DOMContentLoaded\", function(event) { \nif(!window.jQuery) alert(\"The important jQuery library is not properly loaded in your site. Your WordPress theme is probably missing the essential wp_head() call. You can switch to another theme and you will see that the plugin works fine and this notice disappears. If you are still not sure what to do you can contact us for help.\");\n});\n<\/script>  \n  \n<div  id=\"watupro_quiz\" class=\"quiz-area single-page-quiz\">\n<p id=\"submittingExam9133\" style=\"display:none;text-align:center;\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.dumpsbase.com\/freedumps\/wp-content\/plugins\/watupro\/img\/loading.gif\" width=\"16\" height=\"16\"><\/p>\n\n<div class=\"watupro-exam-description\" id=\"description-quiz-9133\"><\/div>\n\n<form action=\"\" method=\"post\" class=\"quiz-form\" id=\"quiz-9133\"  enctype=\"multipart\/form-data\" >\n<div class='watu-question ' id='question-1' style=';'><div id='questionWrap-1'  class='   watupro-question-id-359902'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>1. <\/span>Refer to the exhibit. <br \/>\r<br><br><img decoding=\"async\" width=422 height=438 id=\"\u56fe\u7247 4\" src=\"https:\/\/www.dumpsbase.com\/freedumps\/wp-content\/uploads\/2024\/10\/image001-23.jpg\"><br><br \/>\r<br>All of the switches in the exhibit are AOS-CX switches. <br \/>\r<br>What is the preferred configuration on Switch-2 for preventing rogue OSPF routers in this network?<\/div><input type='hidden' name='question_id[]' id='qID_1' value='359902' \/><input type='hidden' id='answerType359902' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359902[]' id='answer-id-1404097' class='answer   answerof-359902 ' value='1404097'   \/><label for='answer-id-1404097' id='answer-label-1404097' class=' answer'><span>Disable OSPF entirely on VLANs 10-19.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359902[]' id='answer-id-1404098' class='answer   answerof-359902 ' value='1404098'   \/><label for='answer-id-1404098' id='answer-label-1404098' class=' answer'><span>Configure OSPF authentication on VLANs 10-19 in password mode.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359902[]' id='answer-id-1404099' class='answer   answerof-359902 ' value='1404099'   \/><label for='answer-id-1404099' id='answer-label-1404099' class=' answer'><span>Configure OSPF authentication on Lag 1 in MD5 mode.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359902[]' id='answer-id-1404100' class='answer   answerof-359902 ' value='1404100'   \/><label for='answer-id-1404100' id='answer-label-1404100' class=' answer'><span>Configure passive-interface as the OSPF default and disable OSPF passive on Lag 1.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-2' style=';'><div id='questionWrap-2'  class='   watupro-question-id-359903'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>2. <\/span>Refer to Exhibit. <br \/>\r<br><br><img decoding=\"async\" width=649 height=387 id=\"\u56fe\u7247 3\" src=\"https:\/\/www.dumpsbase.com\/freedumps\/wp-content\/uploads\/2024\/10\/image002-22.jpg\"><br><br \/>\r<br>A company is using HPE Aruba Networking ClearPass Device Insight (CPDI) (the standalone application). In the CPDI interface, you go to the Generic Devices page and see the view shown in the exhibit. <br \/>\r<br>What correctly describes what you see?<\/div><input type='hidden' name='question_id[]' id='qID_2' value='359903' \/><input type='hidden' id='answerType359903' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359903[]' id='answer-id-1404101' class='answer   answerof-359903 ' value='1404101'   \/><label for='answer-id-1404101' id='answer-label-1404101' class=' answer'><span>Each cluster is a group of unclassified devices that CPDI's machine learning has discovered to have similar attributes.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359903[]' id='answer-id-1404102' class='answer   answerof-359903 ' value='1404102'   \/><label for='answer-id-1404102' id='answer-label-1404102' class=' answer'><span>Each cluster is a group of devices that match one of the tags configured by admins.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359903[]' id='answer-id-1404103' class='answer   answerof-359903 ' value='1404103'   \/><label for='answer-id-1404103' id='answer-label-1404103' class=' answer'><span>Each cluster is all the devices that have been assigned to the same category by one of CPDI's built-in system rules.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359903[]' id='answer-id-1404104' class='answer   answerof-359903 ' value='1404104'   \/><label for='answer-id-1404104' id='answer-label-1404104' class=' answer'><span>Each cluster is a group of devices that have been classified with user rules, but for which CPDI offers different recommendations.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-3' style=';'><div id='questionWrap-3'  class='   watupro-question-id-359904'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>3. <\/span>You have installed an HPE Aruba Networking Network Analytic Engine (NAE) script on an AOS-CX switch to monitor a particular function. <br \/>\r<br>Which additional step must you complete to start the monitoring?<\/div><input type='hidden' name='question_id[]' id='qID_3' value='359904' \/><input type='hidden' id='answerType359904' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359904[]' id='answer-id-1404105' class='answer   answerof-359904 ' value='1404105'   \/><label for='answer-id-1404105' id='answer-label-1404105' class=' answer'><span>Reboot the switch.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359904[]' id='answer-id-1404106' class='answer   answerof-359904 ' value='1404106'   \/><label for='answer-id-1404106' id='answer-label-1404106' class=' answer'><span>Enable NAE, which is disabled by default.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359904[]' id='answer-id-1404107' class='answer   answerof-359904 ' value='1404107'   \/><label for='answer-id-1404107' id='answer-label-1404107' class=' answer'><span>Edit the script to define monitor parameters.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359904[]' id='answer-id-1404108' class='answer   answerof-359904 ' value='1404108'   \/><label for='answer-id-1404108' id='answer-label-1404108' class=' answer'><span>Create an agent from the script.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-4' style=';'><div id='questionWrap-4'  class='   watupro-question-id-359905'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>4. <\/span>A company has HPE Aruba Networking gateways that implement gateway IDS\/IPS. Admins sometimes check the Security Dashboard, but they want a faster way to discover if a gateway starts detecting threats in traffic. <br \/>\r<br>What should they do?<\/div><input type='hidden' name='question_id[]' id='qID_4' value='359905' \/><input type='hidden' id='answerType359905' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359905[]' id='answer-id-1404109' class='answer   answerof-359905 ' value='1404109'   \/><label for='answer-id-1404109' id='answer-label-1404109' class=' answer'><span>Use Syslog to integrate the gateways with HPE Aruba Networking ClearPass Policy Manager (CPPM) event processing.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359905[]' id='answer-id-1404110' class='answer   answerof-359905 ' value='1404110'   \/><label for='answer-id-1404110' id='answer-label-1404110' class=' answer'><span>Integrate HPE Aruba Networking ClearPass Device Insight (CPDI) with Central and schedule hourly reports.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359905[]' id='answer-id-1404111' class='answer   answerof-359905 ' value='1404111'   \/><label for='answer-id-1404111' id='answer-label-1404111' class=' answer'><span>Set up email notifications using HPE Aruba Networking Central's global alert settings.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359905[]' id='answer-id-1404112' class='answer   answerof-359905 ' value='1404112'   \/><label for='answer-id-1404112' id='answer-label-1404112' class=' answer'><span>Set up Webhooks that are attached to the HPE Aruba Networking Central Threat Dashboard.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-5' style=';'><div id='questionWrap-5'  class='   watupro-question-id-359906'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>5. <\/span>A company uses HPE Aruba Networking ClearPass Policy Manager (CPPM) as a TACACS+ server to authenticate managers on its AOS-CX switches. You want to assign managers to groups on the AOS-CX switch by name. <br \/>\r<br>How do you configure this setting in a CPPM TACACS+ enforcement profile?<\/div><input type='hidden' name='question_id[]' id='qID_5' value='359906' \/><input type='hidden' id='answerType359906' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359906[]' id='answer-id-1404113' class='answer   answerof-359906 ' value='1404113'   \/><label for='answer-id-1404113' id='answer-label-1404113' class=' answer'><span>Add the Shell service and set autocmd to the group name.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359906[]' id='answer-id-1404114' class='answer   answerof-359906 ' value='1404114'   \/><label for='answer-id-1404114' id='answer-label-1404114' class=' answer'><span>Add the Shell service and set priv-Ivl to the group name.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359906[]' id='answer-id-1404115' class='answer   answerof-359906 ' value='1404115'   \/><label for='answer-id-1404115' id='answer-label-1404115' class=' answer'><span>Add the Aruba: Common service and set Aruba-Admin-Role to the group name.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359906[]' id='answer-id-1404116' class='answer   answerof-359906 ' value='1404116'   \/><label for='answer-id-1404116' id='answer-label-1404116' class=' answer'><span>Add the Aruba: Common service and set Aruba-Priv-Admin-User to the group name.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-6' style=';'><div id='questionWrap-6'  class='   watupro-question-id-359907'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>6. <\/span>What correctly describes an HPE Aruba Networking AP's Device (TPM) certificate?<\/div><input type='hidden' name='question_id[]' id='qID_6' value='359907' \/><input type='hidden' id='answerType359907' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359907[]' id='answer-id-1404117' class='answer   answerof-359907 ' value='1404117'   \/><label for='answer-id-1404117' id='answer-label-1404117' class=' answer'><span>It is signed by an HPE Aruba Networking CA and is trusted by many HPE Aruba Networking solutions.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359907[]' id='answer-id-1404118' class='answer   answerof-359907 ' value='1404118'   \/><label for='answer-id-1404118' id='answer-label-1404118' class=' answer'><span>It works well as a captive portal certificate for guest SSIDs.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359907[]' id='answer-id-1404119' class='answer   answerof-359907 ' value='1404119'   \/><label for='answer-id-1404119' id='answer-label-1404119' class=' answer'><span>It is a self-signed certificate that should not be used in production.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359907[]' id='answer-id-1404120' class='answer   answerof-359907 ' value='1404120'   \/><label for='answer-id-1404120' id='answer-label-1404120' class=' answer'><span>It is installed on APs after they connect to and are provisioned by HPE Aruba Networking Central.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-7' style=';'><div id='questionWrap-7'  class='   watupro-question-id-359908'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>7. <\/span>A company has an HPE Aruba Networking ClearPass cluster with several servers. <br \/>\r<br>ClearPass Policy Manager (CPPM) is set up to: <br \/>\r<br>. Update client attributes based on Syslog messages from third-party appliances <br \/>\r<br>. Have the clients reauthenticate and apply new profiles to the clients based on the updates <br \/>\r<br>To ensure that the correct profiles apply, what is one step you should take?<\/div><input type='hidden' name='question_id[]' id='qID_7' value='359908' \/><input type='hidden' id='answerType359908' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359908[]' id='answer-id-1404121' class='answer   answerof-359908 ' value='1404121'   \/><label for='answer-id-1404121' id='answer-label-1404121' class=' answer'><span>Configure a CoA action for all tag updates in the ClearPass Device Insight integration settings.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359908[]' id='answer-id-1404122' class='answer   answerof-359908 ' value='1404122'   \/><label for='answer-id-1404122' id='answer-label-1404122' class=' answer'><span>Tune the CoA delay on the ClearPass servers to a value of 5 seconds or greater.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359908[]' id='answer-id-1404123' class='answer   answerof-359908 ' value='1404123'   \/><label for='answer-id-1404123' id='answer-label-1404123' class=' answer'><span>Set the cluster's Endpoint Context Servers polling interval to a value of 5 seconds or less.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359908[]' id='answer-id-1404124' class='answer   answerof-359908 ' value='1404124'   \/><label for='answer-id-1404124' id='answer-label-1404124' class=' answer'><span>Configure the cluster to periodically clean up (delete) unknown endpoints.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-8' style=';'><div id='questionWrap-8'  class='   watupro-question-id-359909'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>8. <\/span>You are using OpenSSL to obtain a certificate signed by a Certification Authority (CA). <br \/>\r<br>You have entered this command: <br \/>\r<br>openssl req -new -out file1.pem -newkey rsa:3072 -keyout file2.pem <br \/>\r<br>Enter PEM pass phrase: ********** <br \/>\r<br>Verifying - Enter PEM pass phrase: ********** <br \/>\r<br>Country Name (2 letter code) [AU]:US <br \/>\r<br>State or Province Name (full name) [Some-State]: California <br \/>\r<br>Locality Name (eg, city) []: Sunnyvale <br \/>\r<br>Organization Name (eg, company) [Internet Widgits Pty Ltd]: example.com <br \/>\r<br>Organizational Unit Name (eg, section) []: Infrastructure <br \/>\r<br>Common Name (e.g. server FQDN or YOUR name) []: radius.example.com <br \/>\r<br>What is one guideline for continuing to obtain a certificate?<\/div><input type='hidden' name='question_id[]' id='qID_8' value='359909' \/><input type='hidden' id='answerType359909' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359909[]' id='answer-id-1404125' class='answer   answerof-359909 ' value='1404125'   \/><label for='answer-id-1404125' id='answer-label-1404125' class=' answer'><span>You should use a third-party tool to encrypt file2.pem before sending it and file1.pem to the C<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359909[]' id='answer-id-1404126' class='answer   answerof-359909 ' value='1404126'   \/><label for='answer-id-1404126' id='answer-label-1404126' class=' answer'><span>You should concatenate file1.pem and file2.pem into a single file, and submit that to the desired CA to sign.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359909[]' id='answer-id-1404127' class='answer   answerof-359909 ' value='1404127'   \/><label for='answer-id-1404127' id='answer-label-1404127' class=' answer'><span>You should submit file1.pem, but not file2.pem, to the desired CA to sign.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359909[]' id='answer-id-1404128' class='answer   answerof-359909 ' value='1404128'   \/><label for='answer-id-1404128' id='answer-label-1404128' class=' answer'><span>You should submit file2.pem, but not file1.pem, to the desired CA to sign.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-9' style=';'><div id='questionWrap-9'  class='   watupro-question-id-359910'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>9. <\/span>The security team needs you to show them information about MAC spoofing attempts detected by HPE Aruba Networking ClearPass Policy Manager (CPPM). <br \/>\r<br>What should you do?<\/div><input type='hidden' name='question_id[]' id='qID_9' value='359910' \/><input type='hidden' id='answerType359910' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359910[]' id='answer-id-1404129' class='answer   answerof-359910 ' value='1404129'   \/><label for='answer-id-1404129' id='answer-label-1404129' class=' answer'><span>Export the Access Tracker records on CPPM as an XML file.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359910[]' id='answer-id-1404130' class='answer   answerof-359910 ' value='1404130'   \/><label for='answer-id-1404130' id='answer-label-1404130' class=' answer'><span>Use ClearPass Insight to run an Active Endpoint Security report.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359910[]' id='answer-id-1404131' class='answer   answerof-359910 ' value='1404131'   \/><label for='answer-id-1404131' id='answer-label-1404131' class=' answer'><span>Integrate CPPM with ClearPass Device Insight (CPDI) and run a security report on CPD<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359910[]' id='answer-id-1404132' class='answer   answerof-359910 ' value='1404132'   \/><label for='answer-id-1404132' id='answer-label-1404132' class=' answer'><span>Show the security team the CPPM Endpoint Profiler dashboard.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-10' style=';'><div id='questionWrap-10'  class='   watupro-question-id-359911'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>10. <\/span>Which use case is fulfilled by applying a time range to a firewall rule on an AOS device?<\/div><input type='hidden' name='question_id[]' id='qID_10' value='359911' \/><input type='hidden' id='answerType359911' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359911[]' id='answer-id-1404133' class='answer   answerof-359911 ' value='1404133'   \/><label for='answer-id-1404133' id='answer-label-1404133' class=' answer'><span>Enforcing the rule only during the specified time range<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359911[]' id='answer-id-1404134' class='answer   answerof-359911 ' value='1404134'   \/><label for='answer-id-1404134' id='answer-label-1404134' class=' answer'><span>Tuning the session timeout for sessions established with this rule<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359911[]' id='answer-id-1404135' class='answer   answerof-359911 ' value='1404135'   \/><label for='answer-id-1404135' id='answer-label-1404135' class=' answer'><span>Locking clients that violate the rule for the specified time range<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359911[]' id='answer-id-1404136' class='answer   answerof-359911 ' value='1404136'   \/><label for='answer-id-1404136' id='answer-label-1404136' class=' answer'><span>Setting the time range over which hit counts for the rule are aggregated<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-11' style=';'><div id='questionWrap-11'  class='   watupro-question-id-359912'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>11. <\/span>A company is implementing a client-to-site VPN based on tunnel-mode IPsec. <br \/>\r<br>Which devices are responsible for the IPsec encapsulation?<\/div><input type='hidden' name='question_id[]' id='qID_11' value='359912' \/><input type='hidden' id='answerType359912' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359912[]' id='answer-id-1404137' class='answer   answerof-359912 ' value='1404137'   \/><label for='answer-id-1404137' id='answer-label-1404137' class=' answer'><span>Gateways at the remote clients' locations and devices accessed by the clients at the main site<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359912[]' id='answer-id-1404138' class='answer   answerof-359912 ' value='1404138'   \/><label for='answer-id-1404138' id='answer-label-1404138' class=' answer'><span>The remote clients and devices accessed by the clients at the main site<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359912[]' id='answer-id-1404139' class='answer   answerof-359912 ' value='1404139'   \/><label for='answer-id-1404139' id='answer-label-1404139' class=' answer'><span>The remote clients and a gateway at the main site<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359912[]' id='answer-id-1404140' class='answer   answerof-359912 ' value='1404140'   \/><label for='answer-id-1404140' id='answer-label-1404140' class=' answer'><span>Gateways at the remote clients' locations and a gateway at the main site<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-12' style=';'><div id='questionWrap-12'  class='   watupro-question-id-359913'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>12. <\/span>You need to set up HPE Aruba Networking ClearPass Policy Manager (CPPM) to provide certificate-based authentication of 802.1X supplicants. <br \/>\r<br>How should you upload the root CA certificate for the supplicants' certificates?<\/div><input type='hidden' name='question_id[]' id='qID_12' value='359913' \/><input type='hidden' id='answerType359913' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359913[]' id='answer-id-1404141' class='answer   answerof-359913 ' value='1404141'   \/><label for='answer-id-1404141' id='answer-label-1404141' class=' answer'><span>As a ClearPass Server certificate with the RADIUS\/EAP usage<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359913[]' id='answer-id-1404142' class='answer   answerof-359913 ' value='1404142'   \/><label for='answer-id-1404142' id='answer-label-1404142' class=' answer'><span>As a Trusted CA with the AD\/LDAP usage<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359913[]' id='answer-id-1404143' class='answer   answerof-359913 ' value='1404143'   \/><label for='answer-id-1404143' id='answer-label-1404143' class=' answer'><span>As a Trusted CA with the EAP usage<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359913[]' id='answer-id-1404144' class='answer   answerof-359913 ' value='1404144'   \/><label for='answer-id-1404144' id='answer-label-1404144' class=' answer'><span>As a ClearPass Server certificate with the Database usage<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-13' style=';'><div id='questionWrap-13'  class='   watupro-question-id-359914'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>13. <\/span>A company is using HPE Aruba Networking ClearPass Device Insight (CPDI) (the standalone application). You have identified a device, which is currently classified as one type, but you want to classify it as a custom type. You also want to classify all devices with similar attributes as this type, both already-discovered devices and new devices discovered later. <br \/>\r<br>What should you do?<\/div><input type='hidden' name='question_id[]' id='qID_13' value='359914' \/><input type='hidden' id='answerType359914' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359914[]' id='answer-id-1404145' class='answer   answerof-359914 ' value='1404145'   \/><label for='answer-id-1404145' id='answer-label-1404145' class=' answer'><span>Create a user tag from the Generic Devices page, select the desired attributes for the tag, and save the tag.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359914[]' id='answer-id-1404146' class='answer   answerof-359914 ' value='1404146'   \/><label for='answer-id-1404146' id='answer-label-1404146' class=' answer'><span>In the device details, select reclassify, create a user rule based on its attributes, and choose &quot;Save &amp; Reclassify.&quot;<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359914[]' id='answer-id-1404147' class='answer   answerof-359914 ' value='1404147'   \/><label for='answer-id-1404147' id='answer-label-1404147' class=' answer'><span>In the device details, select filter, create a user tag based on the device attributes, and save the tag.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359914[]' id='answer-id-1404148' class='answer   answerof-359914 ' value='1404148'   \/><label for='answer-id-1404148' id='answer-label-1404148' class=' answer'><span>Create a user rule from the Generic Devices page, select the desired attributes for the rule, and choose &quot;Save.&quot;<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-14' style=';'><div id='questionWrap-14'  class='   watupro-question-id-359915'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>14. <\/span>A company has wired VolP phones, which transmit tagged traffic and connect to AOS-CX switches. The company wants to tunnel the phones' traffic to an HPE <br \/>\r<br>Aruba Networking gateway for applying security policies. <br \/>\r<br>What is part of the correct configuration on the AOS-CX switches?<\/div><input type='hidden' name='question_id[]' id='qID_14' value='359915' \/><input type='hidden' id='answerType359915' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359915[]' id='answer-id-1404149' class='answer   answerof-359915 ' value='1404149'   \/><label for='answer-id-1404149' id='answer-label-1404149' class=' answer'><span>UBT mode set to VLAN extend<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359915[]' id='answer-id-1404150' class='answer   answerof-359915 ' value='1404150'   \/><label for='answer-id-1404150' id='answer-label-1404150' class=' answer'><span>A VXLAN VNI mapped to the VLAN assigned to the VolP phones<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359915[]' id='answer-id-1404151' class='answer   answerof-359915 ' value='1404151'   \/><label for='answer-id-1404151' id='answer-label-1404151' class=' answer'><span>VLANs assigned to the VolP phones configured on the switch uplinks<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359915[]' id='answer-id-1404152' class='answer   answerof-359915 ' value='1404152'   \/><label for='answer-id-1404152' id='answer-label-1404152' class=' answer'><span>A UBT reserved VLAN set to a VLAN dedicated for that purpose<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-15' style=';'><div id='questionWrap-15'  class='   watupro-question-id-359916'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>15. <\/span>You are establishing a cluster of HPE Aruba Networking ClearPass servers. (Assume that they are running version 6.9.). <br \/>\r<br>For which type of certificate it is recommended to install a CA-signed certificate on the Subscriber before it joins the cluster?<\/div><input type='hidden' name='question_id[]' id='qID_15' value='359916' \/><input type='hidden' id='answerType359916' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359916[]' id='answer-id-1404153' class='answer   answerof-359916 ' value='1404153'   \/><label for='answer-id-1404153' id='answer-label-1404153' class=' answer'><span>Database<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359916[]' id='answer-id-1404154' class='answer   answerof-359916 ' value='1404154'   \/><label for='answer-id-1404154' id='answer-label-1404154' class=' answer'><span>HTTPS<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359916[]' id='answer-id-1404155' class='answer   answerof-359916 ' value='1404155'   \/><label for='answer-id-1404155' id='answer-label-1404155' class=' answer'><span>RADIUS\/EAP<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359916[]' id='answer-id-1404156' class='answer   answerof-359916 ' value='1404156'   \/><label for='answer-id-1404156' id='answer-label-1404156' class=' answer'><span>RadSec<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-16' style=';'><div id='questionWrap-16'  class='   watupro-question-id-359917'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>16. <\/span>You need to create a rule in an HPE Aruba Networking ClearPass Policy Manager (CPPM) role mapping policy that references a ClearPass Device Insight Tag. <br \/>\r<br>Which Type (namespace) should you specify for the rule?<\/div><input type='hidden' name='question_id[]' id='qID_16' value='359917' \/><input type='hidden' id='answerType359917' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359917[]' id='answer-id-1404157' class='answer   answerof-359917 ' value='1404157'   \/><label for='answer-id-1404157' id='answer-label-1404157' class=' answer'><span>Application<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359917[]' id='answer-id-1404158' class='answer   answerof-359917 ' value='1404158'   \/><label for='answer-id-1404158' id='answer-label-1404158' class=' answer'><span>Tips<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359917[]' id='answer-id-1404159' class='answer   answerof-359917 ' value='1404159'   \/><label for='answer-id-1404159' id='answer-label-1404159' class=' answer'><span>Device<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359917[]' id='answer-id-1404160' class='answer   answerof-359917 ' value='1404160'   \/><label for='answer-id-1404160' id='answer-label-1404160' class=' answer'><span>Endpoint<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-17' style=';'><div id='questionWrap-17'  class='   watupro-question-id-359918'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>17. <\/span>A company wants HPE Aruba Networking ClearPass Policy Manager (CPPM) to respond to Syslog messages from its Palo Alto Next Generation Firewall (NGFW) by quarantining clients involved in security incidents. <br \/>\r<br>Which step must you complete to enable CPPM to process the Syslogs properly?<\/div><input type='hidden' name='question_id[]' id='qID_17' value='359918' \/><input type='hidden' id='answerType359918' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359918[]' id='answer-id-1404161' class='answer   answerof-359918 ' value='1404161'   \/><label for='answer-id-1404161' id='answer-label-1404161' class=' answer'><span>Configure the Palo Alto as a context server on CPP<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359918[]' id='answer-id-1404162' class='answer   answerof-359918 ' value='1404162'   \/><label for='answer-id-1404162' id='answer-label-1404162' class=' answer'><span>Install a Palo Alto Extension through ClearPass Guest.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359918[]' id='answer-id-1404163' class='answer   answerof-359918 ' value='1404163'   \/><label for='answer-id-1404163' id='answer-label-1404163' class=' answer'><span>Enable Insight and ingress event processing on the CPPM server.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359918[]' id='answer-id-1404164' class='answer   answerof-359918 ' value='1404164'   \/><label for='answer-id-1404164' id='answer-label-1404164' class=' answer'><span>Configure CPPM to trust the root CA certificate for the NGF<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-18' style=';'><div id='questionWrap-18'  class='   watupro-question-id-359919'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>18. <\/span>A company uses both HPE Aruba Networking ClearPass Policy Manager (CPPM) and HPE Aruba Networking ClearPass Device Insight (CPDI). <br \/>\r<br>What is one way integrating the two solutions can help the company implement Zero Trust Security?<\/div><input type='hidden' name='question_id[]' id='qID_18' value='359919' \/><input type='hidden' id='answerType359919' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359919[]' id='answer-id-1404165' class='answer   answerof-359919 ' value='1404165'   \/><label for='answer-id-1404165' id='answer-label-1404165' class=' answer'><span>CPPM can provide CPDI with custom device fingerprint definitions in order to enhance the company's total visibility.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359919[]' id='answer-id-1404166' class='answer   answerof-359919 ' value='1404166'   \/><label for='answer-id-1404166' id='answer-label-1404166' class=' answer'><span>CPDI can provide CPPM with extra information about users' identity; CPPM can then use that information to apply the correct identity-based enforcement.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359919[]' id='answer-id-1404167' class='answer   answerof-359919 ' value='1404167'   \/><label for='answer-id-1404167' id='answer-label-1404167' class=' answer'><span>CPPM can inform CPDI that it has assigned a particular Aruba-User-Role to a client; CPDI can then use that information to reclassify the client.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359919[]' id='answer-id-1404168' class='answer   answerof-359919 ' value='1404168'   \/><label for='answer-id-1404168' id='answer-label-1404168' class=' answer'><span>CPDI can use tags to inform CPPM that clients are using prohibited applications; CPPM can then tell the network infrastructure to quarantine those clients.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-19' style=';'><div id='questionWrap-19'  class='   watupro-question-id-359920'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>19. <\/span>A company has HPE Aruba Networking APs, which authenticate users to HPE Aruba Networking ClearPass Policy Manager (CPPM). <br \/>\r<br>What does HPE Aruba Networking recommend as the preferred method for assigning clients to a role on the AOS firewall?<\/div><input type='hidden' name='question_id[]' id='qID_19' value='359920' \/><input type='hidden' id='answerType359920' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359920[]' id='answer-id-1404169' class='answer   answerof-359920 ' value='1404169'   \/><label for='answer-id-1404169' id='answer-label-1404169' class=' answer'><span>Configure CPPM to assign the role using a RADIUS enforcement profile with a RADIUS: IETF Username attribute.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359920[]' id='answer-id-1404170' class='answer   answerof-359920 ' value='1404170'   \/><label for='answer-id-1404170' id='answer-label-1404170' class=' answer'><span>Configure CPPM to assign the role using a RADIUS enforcement profile with an Aruba-User-Role VS<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359920[]' id='answer-id-1404171' class='answer   answerof-359920 ' value='1404171'   \/><label for='answer-id-1404171' id='answer-label-1404171' class=' answer'><span>OCreate server rules on the APs to assign clients to roles based on RADIUS IETF attributes returned by CPP<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359920[]' id='answer-id-1404172' class='answer   answerof-359920 ' value='1404172'   \/><label for='answer-id-1404172' id='answer-label-1404172' class=' answer'><span>Create user rules on the APs to assign clients to roles based on a variety of criteria.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-20' style=';'><div id='questionWrap-20'  class='   watupro-question-id-359921'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>20. <\/span>A company has AOS-CX switches. The company wants to make it simpler and faster for admins to detect denial of service (DoS) attacks, such as ping or ARP floods, launched against the switches. <br \/>\r<br>What can you do to support this use case?<\/div><input type='hidden' name='question_id[]' id='qID_20' value='359921' \/><input type='hidden' id='answerType359921' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359921[]' id='answer-id-1404173' class='answer   answerof-359921 ' value='1404173'   \/><label for='answer-id-1404173' id='answer-label-1404173' class=' answer'><span>Deploy an NAE agent on the switches to monitor control plane policing (CoPP).<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359921[]' id='answer-id-1404174' class='answer   answerof-359921 ' value='1404174'   \/><label for='answer-id-1404174' id='answer-label-1404174' class=' answer'><span>Implement ARP inspection on all VLANs that support end-user devices.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359921[]' id='answer-id-1404175' class='answer   answerof-359921 ' value='1404175'   \/><label for='answer-id-1404175' id='answer-label-1404175' class=' answer'><span>Configure the switches to implement RADIUS accounting to HPE Aruba Networking ClearPass and enable HPE Aruba Networking ClearPass Insight.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359921[]' id='answer-id-1404176' class='answer   answerof-359921 ' value='1404176'   \/><label for='answer-id-1404176' id='answer-label-1404176' class=' answer'><span>Enabling debugging of security functions on the switches.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-21' style=';'><div id='questionWrap-21'  class='   watupro-question-id-359922'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>21. <\/span>A company has HPE Aruba Networking APs (AOS-10), which authenticate clients to HPE Aruba Networking ClearPass Policy Manager (CPPM). CPPM is set up to receive a variety of information about clients' profile and posture. New information can mean that CPPM should change a client's enforcement profile. <br \/>\r<br>What should you set up on the APs to help the solution function correctly?<\/div><input type='hidden' name='question_id[]' id='qID_21' value='359922' \/><input type='hidden' id='answerType359922' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359922[]' id='answer-id-1404177' class='answer   answerof-359922 ' value='1404177'   \/><label for='answer-id-1404177' id='answer-label-1404177' class=' answer'><span>In the security settings, configure dynamic denylisting.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359922[]' id='answer-id-1404178' class='answer   answerof-359922 ' value='1404178'   \/><label for='answer-id-1404178' id='answer-label-1404178' class=' answer'><span>In the RADIUS server settings for CPPM, enable Dynamic Authorization.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359922[]' id='answer-id-1404179' class='answer   answerof-359922 ' value='1404179'   \/><label for='answer-id-1404179' id='answer-label-1404179' class=' answer'><span>In the WLAN profiles, enable interim RADIUS accounting.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359922[]' id='answer-id-1404180' class='answer   answerof-359922 ' value='1404180'   \/><label for='answer-id-1404180' id='answer-label-1404180' class=' answer'><span>In the RADIUS server settings for CPPM, enable querying the authentication status.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-22' style=';'><div id='questionWrap-22'  class='   watupro-question-id-359923'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>22. <\/span>You are setting up an HPE Aruba Networking VIA solution for a company. You need to configure access control policies for applications and resources that remote clients can access when connected to the VPN. <br \/>\r<br>Where on the VPNC should you configure these policies?<\/div><input type='hidden' name='question_id[]' id='qID_22' value='359923' \/><input type='hidden' id='answerType359923' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359923[]' id='answer-id-1404181' class='answer   answerof-359923 ' value='1404181'   \/><label for='answer-id-1404181' id='answer-label-1404181' class=' answer'><span>In the tunneled network settings within the VIA Connection Profile<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359923[]' id='answer-id-1404182' class='answer   answerof-359923 ' value='1404182'   \/><label for='answer-id-1404182' id='answer-label-1404182' class=' answer'><span>In the cloud security settings using IPsec maps<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359923[]' id='answer-id-1404183' class='answer   answerof-359923 ' value='1404183'   \/><label for='answer-id-1404183' id='answer-label-1404183' class=' answer'><span>In the roles to which VIA clients are assigned after IKE authentication<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359923[]' id='answer-id-1404184' class='answer   answerof-359923 ' value='1404184'   \/><label for='answer-id-1404184' id='answer-label-1404184' class=' answer'><span>In the roles to which VIA clients are assigned after VIA Web authentication<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-23' style=';'><div id='questionWrap-23'  class='   watupro-question-id-359924'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>23. <\/span>A company uses HPE Aruba Networking ClearPass Policy Manager (CPPM) as a TACACS+ server to authenticate managers on its AOS-CX switches. The company wants CPPM to control which commands managers are allowed to enter. You see there is no field to enter these commands in ClearPass. <br \/>\r<br>How do you start configuring the command list on CPPM?<\/div><input type='hidden' name='question_id[]' id='qID_23' value='359924' \/><input type='hidden' id='answerType359924' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359924[]' id='answer-id-1404185' class='answer   answerof-359924 ' value='1404185'   \/><label for='answer-id-1404185' id='answer-label-1404185' class=' answer'><span>Add the Shell service to the managers' TACACS+ enforcement profiles.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359924[]' id='answer-id-1404186' class='answer   answerof-359924 ' value='1404186'   \/><label for='answer-id-1404186' id='answer-label-1404186' class=' answer'><span>Edit the TACACS+ settings in the AOS-CX switches' network device entries.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359924[]' id='answer-id-1404187' class='answer   answerof-359924 ' value='1404187'   \/><label for='answer-id-1404187' id='answer-label-1404187' class=' answer'><span>Create an enforcement policy with the TACACS+ type.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359924[]' id='answer-id-1404188' class='answer   answerof-359924 ' value='1404188'   \/><label for='answer-id-1404188' id='answer-label-1404188' class=' answer'><span>Edit the settings for CPPM's default TACACS+ admin roles.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-24' style=';'><div id='questionWrap-24'  class='   watupro-question-id-359925'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>24. <\/span>A company uses HPE Aruba Networking ClearPass Policy Manager (CPPM) and HPE Aruba Networking ClearPass Device Insight (CPDI) and has integrated the two. CPDI admins have created a tag. CPPM admins have created rules that use that tag in the wired 802.1X and wireless 802.1X services' enforcement policies. <br \/>\r<br>The company requires CPPM to apply the tag-based rules to a client directly after it learns that the client has that tag. <br \/>\r<br>What is one of the settings that you should verify on CPPM?<\/div><input type='hidden' name='question_id[]' id='qID_24' value='359925' \/><input type='hidden' id='answerType359925' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359925[]' id='answer-id-1404189' class='answer   answerof-359925 ' value='1404189'   \/><label for='answer-id-1404189' id='answer-label-1404189' class=' answer'><span>The &quot;Device Sync&quot; setting is set to 1 in the ClearPass Device Insight Integration settings.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359925[]' id='answer-id-1404190' class='answer   answerof-359925 ' value='1404190'   \/><label for='answer-id-1404190' id='answer-label-1404190' class=' answer'><span>Both 802.1X services have the &quot;Profile Endpoints&quot; option enabled and an appropriate CoA profile selected in the Profiler tab.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359925[]' id='answer-id-1404191' class='answer   answerof-359925 ' value='1404191'   \/><label for='answer-id-1404191' id='answer-label-1404191' class=' answer'><span>Both 802.1X services have the &quot;Use cached Role and Posture attributes from the previous sessions&quot; setting.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359925[]' id='answer-id-1404192' class='answer   answerof-359925 ' value='1404192'   \/><label for='answer-id-1404192' id='answer-label-1404192' class=' answer'><span>The &quot;Polling Interval&quot; is set to 1 in the ClearPass Device Insight Integration settings.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div class='watu-question ' id='question-25' style=';'><div id='questionWrap-25'  class='   watupro-question-id-359926'>\n\t\t\t<div class='question-content'><div><span class='watupro_num'>25. <\/span>A company has a variety of HPE Aruba Networking solutions, including an HPE Aruba Networking infrastructure and HPE Aruba Networking ClearPass Policy Manager (CPPM). The company passes traffic from the corporate LAN destined to the data center through a third-party SRX firewall. <br \/>\r<br>The company would like to further protect itself from internal threats. <br \/>\r<br>What is one solution that you can recommend?<\/div><input type='hidden' name='question_id[]' id='qID_25' value='359926' \/><input type='hidden' id='answerType359926' value='radio'><!-- end question-content--><\/div><div class='question-choices watupro-choices-columns '><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359926[]' id='answer-id-1404193' class='answer   answerof-359926 ' value='1404193'   \/><label for='answer-id-1404193' id='answer-label-1404193' class=' answer'><span>Have the third-party firewall send Syslogs to CPPM, which can work with network devices to lock internal attackers out of the network.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359926[]' id='answer-id-1404194' class='answer   answerof-359926 ' value='1404194'   \/><label for='answer-id-1404194' id='answer-label-1404194' class=' answer'><span>Use tunnel mode SSIDs and user-based tunneling (UBT) on AOS-CX switches to pass all internal traffic directly through the third-party firewall.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359926[]' id='answer-id-1404195' class='answer   answerof-359926 ' value='1404195'   \/><label for='answer-id-1404195' id='answer-label-1404195' class=' answer'><span>Add ClearPass Device Insight (CPDI) to the solution; integrate it with the third-party firewall to develop more complete device profiles.<\/span><\/label><\/div><div class='watupro-question-choice  ' dir='auto' ><input type='radio' name='answer-359926[]' id='answer-id-1404196' class='answer   answerof-359926 ' value='1404196'   \/><label for='answer-id-1404196' id='answer-label-1404196' class=' answer'><span>Configure CPPM to poll the third-party firewall for a broad array of information about internal clients, such as profile and posture.<\/span><\/label><\/div><!-- end question-choices--><\/div><!-- end questionWrap--><\/div><\/div><div style='display:none' id='question-26'>\n\t<div class='question-content'>\n\t\t<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.dumpsbase.com\/freedumps\/wp-content\/plugins\/watupro\/img\/loading.gif\" width=\"16\" height=\"16\" alt=\"Loading...\" title=\"Loading...\" \/>&nbsp;Loading...\t<\/div>\n<\/div>\n\n<br \/>\n\t\n\t\t\t<div class=\"watupro_buttons flex \" id=\"watuPROButtons9133\" >\n\t\t  <div id=\"prev-question\" style=\"display:none;\"><input type=\"button\" value=\"&lt; Previous\" onclick=\"WatuPRO.nextQuestion(event, 'previous');\"\/><\/div>\t\t  \t\t  \t\t   \n\t\t   \t  \t\t<div><input type=\"button\" name=\"action\" class=\"watupro-submit-button\" onclick=\"WatuPRO.submitResult(event)\" id=\"action-button\" value=\"View Results\"  \/>\n\t\t<\/div>\n\t\t<\/div>\n\t\t\n\t<input type=\"hidden\" name=\"quiz_id\" value=\"9133\" id=\"watuPROExamID\"\/>\n\t<input type=\"hidden\" name=\"start_time\" id=\"startTime\" value=\"2026-05-01 13:31:29\" \/>\n\t<input type=\"hidden\" name=\"start_timestamp\" id=\"startTimeStamp\" value=\"1777642289\" \/>\n\t<input type=\"hidden\" name=\"question_ids\" value=\"\" \/>\n\t<input type=\"hidden\" name=\"watupro_questions\" value=\"359902:1404097,1404098,1404099,1404100 | 359903:1404101,1404102,1404103,1404104 | 359904:1404105,1404106,1404107,1404108 | 359905:1404109,1404110,1404111,1404112 | 359906:1404113,1404114,1404115,1404116 | 359907:1404117,1404118,1404119,1404120 | 359908:1404121,1404122,1404123,1404124 | 359909:1404125,1404126,1404127,1404128 | 359910:1404129,1404130,1404131,1404132 | 359911:1404133,1404134,1404135,1404136 | 359912:1404137,1404138,1404139,1404140 | 359913:1404141,1404142,1404143,1404144 | 359914:1404145,1404146,1404147,1404148 | 359915:1404149,1404150,1404151,1404152 | 359916:1404153,1404154,1404155,1404156 | 359917:1404157,1404158,1404159,1404160 | 359918:1404161,1404162,1404163,1404164 | 359919:1404165,1404166,1404167,1404168 | 359920:1404169,1404170,1404171,1404172 | 359921:1404173,1404174,1404175,1404176 | 359922:1404177,1404178,1404179,1404180 | 359923:1404181,1404182,1404183,1404184 | 359924:1404185,1404186,1404187,1404188 | 359925:1404189,1404190,1404191,1404192 | 359926:1404193,1404194,1404195,1404196\" \/>\n\t<input type=\"hidden\" name=\"no_ajax\" value=\"0\">\t\t\t<\/form>\n\t<p>&nbsp;<\/p>\n<\/div>\n\n<script type=\"text\/javascript\">\n\/\/jQuery(document).ready(function(){\ndocument.addEventListener(\"DOMContentLoaded\", function(event) { \t\nvar question_ids = \"359902,359903,359904,359905,359906,359907,359908,359909,359910,359911,359912,359913,359914,359915,359916,359917,359918,359919,359920,359921,359922,359923,359924,359925,359926\";\nWatuPROSettings[9133] = {};\nWatuPRO.qArr = question_ids.split(',');\nWatuPRO.exam_id = 9133;\t    \nWatuPRO.post_id = 90047;\nWatuPRO.store_progress = 0;\nWatuPRO.curCatPage = 1;\nWatuPRO.requiredIDs=\"0\".split(\",\");\nWatuPRO.hAppID = \"0.26472900 1777642289\";\nvar url = \"https:\/\/www.dumpsbase.com\/freedumps\/wp-content\/plugins\/watupro\/show_exam.php\";\nWatuPRO.examMode = 1;\nWatuPRO.siteURL=\"https:\/\/www.dumpsbase.com\/freedumps\/wp-admin\/admin-ajax.php\";\nWatuPRO.emailIsNotRequired = 0;\nWatuPROIntel.init(9133);\nWatuPRO.inCategoryPages=1;});    \t \n<\/script>\n<p>\u00a0<\/p>\n\n\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[17749,17493],"tags":[17748,17747],"class_list":["post-90047","post","type-post","status-publish","format-standard","hentry","category-acp-network-security","category-hpe","tag-aruba-certified-network-security-professional-exam","tag-hpe7-a02-exam-dumps"],"_links":{"self":[{"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/posts\/90047","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/comments?post=90047"}],"version-history":[{"count":1,"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/posts\/90047\/revisions"}],"predecessor-version":[{"id":90051,"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/posts\/90047\/revisions\/90051"}],"wp:attachment":[{"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/media?parent=90047"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/categories?post=90047"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dumpsbase.com\/freedumps\/wp-json\/wp\/v2\/tags?post=90047"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}