HPE6-A67 Online Practice Questions and Answers

Which actions are necessary to set up a ClearPass guest captive portal web login page to execute with no errors? (Choose three.)

A. Configure the vendor settings in the Network Access Device to match the web login page.

B. Install a public issued HTTPS certificate in ClearPass Policy Manager.

C. Install a public issued HTTPS certificate in the Network Access Device.

D. Configure the vendor settings in the Web Login Page to match the Network Access Device.

E. Install an enterprise issued HTTPS certificate in the Network Access Device.

F. Configure the external web-auth URL on the Network Access Device for HTTP.

When a role mapping policy should be used in an 802.1x service with Active Directory as the authentication source?

A. When you want to send roles from the AD user to enforcement policies directly from AD attributes.

B. When you want to send Aruba firewall roles back to the Aruba Network Access Drive.

C. When you want to translate and combine AD attributes into ClearPass roles.

D. When you want to enable attributes as roles directly without combining multiple attributes

What is a RADIUS Change of Authorization?

A. It allows ClearPass to change the user role for the client without disconnecting.

B. It allows ClearPass to transmit messages to the NAD/NAS to modify a user's session status.

C. It forces the client to re-authenticate upon roaming to an access point.

D. It is a mechanism that allows ClearPass to assign a new VLAN to a wired user.

When using an Active Directory authentication source, you must configure a Bind DN. Which two statements are true about Bind DN? (Choose two.)

A. The Bind DN needs to be a Service Account Type.

B. The Bind DN must be an Administrator Account.

C. ClearPass Uses the Bind DN to search the Directory.

D. ClearPass Uses the Bind DN to update User Attributes.

E. The Bind DN needs Read/Write access to the Directory.

When a NAD sends an authentication request to ClearPass for a Guest Web Login with Username and Password, which methods can it use? (Choose three.)

A. CHAP璕ADIUS Request

B. EAP PEAP ?RADIUS Request

C. MSCHAP ?RADIUS Request

D. HTTP ?WebAuth Request

E. PAP ?RADIUS Request

When a client performs EAP-TLS authentication, what is required? (Choose two.)

A. Root Certificate Authority

B. User Credentials

C. RADIUS Server Certificate

D. RADIUS Shared Secret

E. TLS Client Certificate

A guest user connects to an Open Guest SSID on a wireless network and is redirected to a web login page

on ClearPass.

How is the authentication performed?

A. The controller will capture the credentials as they are passed to ClearPass by the Web Login page.

B. ClearPass instructs the wireless controller to fetch the credentials from the Web Login Page.

C. The User submits the credentials, and ClearPass instructs the browser to post the credentials to the wireless controller.

D. When the user submits the credentials, ClearPass will capture the credentials and post them to the wireless controller.

When enforcement action is used in ClearPass to bounce a client?

A. Webpage redirect

B. ACL

C. VLAN attribute

D. RADIUS VSA

E. RADIUS CoA

What is the purpose of using a role mapping policy in an 802.1x service with Active Directory as the authentication source?

A. to translate and combine AD attributes into ClearPass roles

B. to send roles from ClearPass to theAD user to update a user's group membership

C. to enable attributes as roles directly without needing role mapping rules

D. to send Aruba firewall roles back to the Aruba Network Access Device

E. to send details of a user's connection to the AD user to store in its database

What Information is needed to add ClearPass to an Active Directory Domain? (Select two.)

A. domain user credentials

B. CPPM enterprise credentials

C. Administrator FQDN

D. domain controller FQDN

E. Administrator user credentials