HP HPE6-A68 Aruba Certified ClearPass Professional (ACCP) V6.7 Exam Practice Test

Enforcement Policy

Posture token derivation

Role Mapping

Endpoint Profiler

Chained simulation

10 ClearPass Guest licenses, 10 ClearPass Onguard licenses and 10 ClearPass Onboard licenses

25 ClearPass Profiler licenses

25 ClearPass Enterprise licenses

10 ClearPass Enterprise licenses

25 ClearPass Redundancy licenses

Username and Password

Pre-shared key

WPA2-PSK

Server Certificate

Client Certificate

when the NAD belongs to an Airware device group HQ

when the ClearPass IP address is part of the device group HQ

when the Aruba access point that the client is associated to is part of the device group HQ

when an end user IP address is part of the device group HQ

when the IP address of the NAD is part of the device group HQ

The client used incorrect credentials to authenticate to the network.

ClearPass does not have a service enabled for MAC authentication.

The client MAC address is not present in the Endpoints table in the CrearPass database.

The RADIUS client on the Windows server failed to categorize the service correctly.

The client wireless profile is incorrectly setup.

1 Policy Manager license, 1 Onboard License

2 Policy Manager licenses, 1 Onguard License

1 Policy Manager license, 1 Profile License

2 Policy Manager licenses, 2 Onguard licenses

1 Policy Manager license, 1 Onguard License

RestrictedACL

Remote Employee ACL

[Deny Access Profile]

EMPLOYEE_VLAN

HR VLAN

The device will be disconnected from the network after Onboarding so that an EAP-TLS authentication is not performed.

The device will be disconnected from and reconnected to the network after Onboarding is completed.

The device’s onboard authorization request will be denied.

The device will be disconnected after post-Onboarding EAP-TLS authentication, so a second EAP-TLS authentication is performed.

After logging in on the Onboard web login page, the device will be disconnected form and reconnected to the network before Onboard begins.

During dual SSID onboarding, when the client connects to the Guest network

During EAP-PEAP authentication in single SSID onboarding

During post-Onboard EAP-TLS authentication, when the client verifies the server certificate

During Onboard Web Login Pre-Auth, when the client loads the Onboarding web page

During post-Onboard EAP-TLS authentication, when the server verifies the client certificate

The Onboard Provisioning service is triggered when the user connects to the provisioning SSID to Onboard their device.

The Onboard Authorization service is triggered when the user connects to the secure SSID.

The Onboard Authorization service is triggered during the Onboarding process.

The device connects to the secure SSID for provisioning.

The Onboard Authorization service is never triggered.

ClearPass will count down 600 seconds and send a RADIUS CoA message to the user to end the user’s session after this time is up.

ClearPass will send the Session-Timeout attribute in the RADIUS Access-Accept packet to the NAD and the NAD will end the user’s session after 600 seconds.

ClearPass will count down 600 seconds and send a RADIUS CoA message to the NAD to end the user’s session after this time is up.

ClearPass will send the Session-Timeout attribute in the RADIUS Access-Request packet to the NAD and the NAD will end the user’s session after 600 seconds.

ClearPass will send the Session-Timeout attribute in the RADIUS Access-Accept packet to the User and the user’s session will be terminated after 600 seconds.

to force the client to re-authenticate upon roaming to a new Controller

to apply firewall policies based on authentication credentials

to validate a host MAC address against a whitelist or a blacklist

to authenticate users or devices before granting them access to a network

to transmit messages to the NAD/NAS to modify a user’s session status

Certificate Signing Request

Binary encoded X.509 certificate

Binary encoded X.509 certificate with public key

Certificate with an encrypted private key

Certificate chain

Configuration of the Enforcement Policy.

An error in the role mapping policy.

Failure to select an appropriate authentication method for the authentication request.

Implementation of a firewall policy on ClearPass.

Failure to find an appropriate service to process the authentication request.

The user cannot Onboard any devices.

It limits the total number of devices that can be provisioned by ClearPass.

It limits the total number of Onboarded devices connected to the network.

It limits the number of devices that a single user can Onboard.

It limits the number of devices that a single user can connect to the network.

Mobile device Management is the result of Onboarding.

Third party Mobile Device Management solutions can be integrated with ClearPass.

Mobile Device Management is the authentication that happens before Onboarding.

Mobile Device Management is an application container that is used to provision work applications.

Mobile Device Management is used to control device functions post-Onboarding.

Image update

System upgrade

Upgrade image

Reboot

Upgrade software