HPE6-A15 Online Practice Questions and Answers
Refer to the exhibit.
Based on the Guest Role Mapping Policy shown, what is the purpose of the Role Mapping Policy?
A. to display a role name on the Self-registration receipt page
B. to send a firewall role back to the controller based on the Guest User's Role ID
C. to assign Controller roles to guests
D. to assign three roles of [Contractor], [Guest] and [Employee] to every guest user
E. to create additional account roles for guest administrators to assign to guest accounts
Refer to the exhibit.
A guest connects to the Guest SSID and authenticates successfully using the guest.php web login page.
Based on the MAC Caching service information shown, which statement about the guests' MAC address is accurate?
A. It will be visible in the Guest User Repository with Unknown Status
B. It will be deleted from the Endpoint table.
C. It will be visible in the Guest User Repository with Known Status.
D. It will be visible in the Endpoints table with Known Status.
E. It will be visible in the Endpoints table with Unknown Status.
An administrator enabled the Pre-auth check for their guest self-registration.
At what stage in the registration process in this check performed?
A. after the user clicks the login button and after the NAD sends an authentication request
B. after the user self-registers but before the user logs in
C. after the user clicks the login button but before the NAD sends an authentication request
D. when a user is re-authenticating to the network
E. before the user self-registers
A hotel chain deployed ClearPass Guest. When hotel guests connect to the Guest SSID, launch a web browser and enter the address www.google.com, they are unable to immediately see the web login page. What are the likely causes of this? (Select two.)
A. The ClearPass server has a trusted server certificate issued by Verisign.
B. The ClearPass server has an untrusted server certificate issued by the internal Microsoft Certificate server.
C. The ClearPass server does not recognize the client's certificate.
D. The DNS server is not replying with an IP address for www.google.com.
ClearPass and a wired switch are configured for 802.1x authentication with RADIUS CoA (RFC 3576) on UDP port 3799. This port has been blocked by a firewall between the wired switch and ClearPass. What will be the outcome of this state?
A. RADIUS Authentications will fail because the wired switch will not be able to reach the ClearPass server.
B. During RADIUS Authentication, certificate exchange between the wired switch and ClearPass will fail.
C. RADIUS Authentications will timeout because the wired switch will not be able to reach the ClearPass server.
D. RADIUS Authentication will succeed, but Post-Authentication Disconnect-Requests from ClearPass to the wired switch will not be delivered.
E. RADIUS Authentication will succeed, but RADIUS Access-Accept messages from ClearPass to the wired switch for Change of Role will not be delivered.
Refer to the exhibit.
What information can be drawn from the audit row detail shown? (Select two.)
A. radius01 was deleted from the list of authentication sources.
B. The policy service was moved to position number 4.
C. radius01 was moved to position number 4.
D. The policy service was moved to position number 3.
E. raduis01 was added as an authentication source.
Refer to the exhibit.
An administrator configured a service and tested authentication, but was unable to complete authentication successfully. The administrator performs a Search using insight and the information displays as shown. What is a possible reason for the ErrorCode `Failed to classify request to service' shown?
A. The user failed authentication die to an incorrect password.
B. ClearPass could not match the authentication request to a service, but the user passed authentication.
C. ClearPass service authentication sources were not configured correctly.
D. The NAD did not send the authentication request.
E. ClearPass service rules were not configured correctly.
Refer to the exhibit.
What can be concluded from the Access Tracker output shown?
A. The client used incorrect credentials to authenticate to the network.
B. ClearPass does not have a service enabled for MAC authentication.
C. The client MAC address is not present in the Endpoints table in the CrearPass database.
D. The RADIUS client on the Windows server failed to categorize the service correctly.
E. The client wireless profile is incorrectly setup.
Which use cases will require a ClearPass Guest application license? (Select two.)
A. Guest device fingerprinting
B. Guest endpoint health assessment
C. Sponsor based guest user access
D. Guest user self-registration for access
E. Guest personal device onboarding
What is the purpose of ClearPass Onboard?
A. to provide MAC authentication for devices that don't support 802.1x
B. to run health checks on end user devices
C. to provision personal devices to securely connect to the network
D. to configure self-registration pages for guest users
E. to provide guest access for visitors to connect to the network