Question No. 1

Refer to the exhibit.

An AD user's department attribute value is configured as ''QA''. The user authenticates from a laptop running MAC OS X.

Which role is assigned to the user in ClearPass?

AHR Local

BRemote Employee

C[Guest]

DExecutive

EIOS Device

Show Answer

Correct Answer: C

None of the Listed Role Name conditions are met.

Question No. 2

Refer to the exhibit.

Based on the Attribute configuration shown, which statement accurately describes the status of attribute values?

AOnly the attribute values of department and memberOf can be used in role mapping policies.

BThe attribute values of department, title, memberOf, telephoneNumber, and mail are directly applied as ClearPass.

COnly the attribute value of company can be used in role mapping policies, not the other attributes.

DThe attribute values of department and memberOf are directly applied as ClearPass roles.

EOnly the attribute values of title, telephoneNumber, and mail can be used in role mapping policies.

Show Answer

Correct Answer: D

Question No. 3

Which components can use Active Directory authorization attributes for the decision-making process? (Select two.)

AProfiling policy

BCertificate validation policy

CRole Mapping policy

DEnforcement policy

EPosture policy

Show Answer

Correct Answer: C, D

C: Role Mappings Page - Rules Editor Page Parameters

D: Enforcement Policy Attributes tab Parameters

http://www.arubanetworks.com/techdocs/ClearPass/Aruba_CPPMOnlineHelp/Content/CPPM_UserGuide/identity/RoleMappingPolicies.html

http://www.arubanetworks.com/techdocs/ClearPass/Aruba_CPPMOnlineHelp/Content/CPPM_UserGuide/PolicySim/PS_Enforcement_Policy.htm

Question No. 4

Refer to the exhibit.

Based on the Authentication sources configuration shown, which statement accurately describes the outcome if the user is not found?

AIf the user is not found in the remotelab AD but is present in the local user repository, a reject message is sent back to the NAD.

BIf the user is not found in the local user repository but is present in the remotelab AD, a reject message is sent back to the NAD.

CIf the user is not found in the local user repository a reject message is sent back to the NAD.

DIf the user is not found in the local user repository and remotelab AD, a reject message is sent back to the NAD.

EIf the user is not found in the local user repository a timeout message is sent back to the NAD.

Show Answer

Correct Answer: D

Policy Manager looks for the device or user by executing the first filter associated with the authentication source.

After the device or user is found, Policy Manager then authenticates this entity against this authentication

source. The flow is outlined below:

* On successful authentication, Policy Manager moves on to the next stage of policy evaluation, which

collects role mapping attributes from the authorization sources.

* Where no authentication source is specified (for example, for unmanageable devices), Policy Manager

passes the request to the next configured policy component for this service.

* If Policy Manager does not find the connecting entity in any of the configured authentication sources, it

rejects the request.

https://community.arubanetworks.com/aruba/attachments/aruba/SoftwareUserReferenceGuides/52/1/ClearPass%20Policy%20Manager%206.5%20User%20Guide.pdf

Question No. 5

Which authorization servers are supported by ClearPass? (Select two.)

AAruba Controller

BLDAP server

CCisco Controller

DActive Directory

EAruba Mobility Access Switch

Show Answer

Correct Answer: B, D

Authentication Sources can be one or more instances of the following examples:

* Active Directory

* LDAP Directory

* SQL DB

* Token Server

* Policy Manager local DB

https://community.arubanetworks.com/aruba/attachments/aruba/SoftwareUserReferenceGuides/52/1/ClearPass%20Policy%20Manager%206.5%20User%20Guide.pdf

Free HP HPE6-A68 Exam Actual Questions

The questions for HPE6-A68 were last updated On Apr 28, 2024