HP HPE6-A78 Exam Practice Test Instant Access

Question 1

What is symmetric encryption?

AIt simultaneously creates ciphertext and a same-size MAC.

BIt any form of encryption mat ensures that thee ciphertext Is the same length as the plaintext.

CIt uses the same key to encrypt plaintext as to decrypt ciphertext.

DIt uses a Key that is double the size of the message which it encrypts.

Answer : C

Question 2

A company has an ArubaOS controller-based solution with a WPA3-Enterprise WLAN. which authenticates wireless clients to Aruba ClearPass Policy Manager (CPPM). The company has decided to use digital certificates for authentication A user's Windows domain computer has had certificates installed on it However, the Networks and Connections window shows that authentication has tailed for the user. The Mobility Controllers (MC's) RADIUS events show that it is receiving Access-Rejects for the authentication attempt.

What is one place that you can you look for deeper insight into why this authentication attempt is failing?

Athe reports generated by Aruba ClearPass Insight

Bthe RADIUS events within the CPPM Event Viewer

Cthe Alerts tab in the authentication record in CPPM Access Tracker

Dthe packets captured on the MC control plane destined to UDP 1812

Answer : C

Question 3

Refer to the exhibit.

How can you use the thumbprint?

AInstall this thumbprint on management stations to use as two-factor authentication along with manager usernames and passwords, this will ensure managers connect from valid stations

BCopy the thumbprint to other Aruba switches to establish a consistent SSH Key for all switches this will enable managers to connect to the switches securely with less effort

CWhen you first connect to the switch with SSH from a management station, make sure that the thumbprint matches to ensure that a man-in-t he-mid die (MITM) attack is not occurring

Dinstall this thumbprint on management stations the stations can then authenticate with the thumbprint instead of admins having to enter usernames and passwords.

Answer : C

Question 4

Your Aruba Mobility Master-based solution has detected a rogue AP Among other information the ArubaOS Detected Radios page lists this Information for the AP

SSID = PubllcWiFI

BSSID = a8M27 12 34:56

Match method = Exact match

Match type = Eth-GW-wired-Mac-Table

The security team asks you to explain why this AP is classified as a rogue. What should you explain?

AThe AP Is connected to your LAN because It is transmitting wireless traffic with your network's default gateway's MAC address as a source MAC Because it does not belong to the company, it is a rogue

BThe ap has a BSSID mat matches authorized client MAC addresses. This indicates that the AP is spoofing the MAC address to gam unauthorized access to your company's wireless services, so It is a rogue

CThe AP has been detected as launching a DoS attack against your company's default gateway. This qualities it as a rogue which needs to be contained with wireless association frames immediately

DThe AP is spoofing a routers MAC address as its BSSID. This indicates mat, even though WIP cannot determine whether the AP is connected to your LAN. it is a rogue.

Answer : D

Question 5

Refer to the exhibit.

A diem is connected to an ArubaOS Mobility Controller. The exhibit snows all Tour firewall rules that apply to this diem

What correctly describes how the controller treats HTTPS packets to these two IP addresses, both of which are on the other side of the firewall

10.1 10.10

203.0.13.5

AIt drops both of the packets

BIt permits the packet to 10.1.10.10 and drops the packet to 203 0.13.5

Cit permits both of the packets

DIt drops the packet to 10.1.10.10 and permits the packet to 203.0.13.5.

Answer : C

Question 6

From which solution can ClearPass Policy Manager (CPPM) receive detailed information about client device type OS and status?

AClearPass Onboard

BClearPass Access Tracker

CClearPass OnGuard

DClearPass Guest

Answer : C

Question 7

Refer to the exhibit.

This Aruba Mobility Controller (MC) should authenticate managers who access the Web Ul to ClearPass Policy Manager (CPPM) ClearPass admins have asked you to use RADIUS and explained that the MC should accept managers' roles in Aruba-Admin-Role VSAs

Which setting should you change to follow Aruba best security practices?

AChange the local user role to read-only

BClear the MSCHAP check box

CDisable local authentication

DChange the default role to 'guest-provisioning'

Answer : D

HPE6-A78 Aruba Certified Network Security Associate Exam Practice Test