Two wireless clients, client 1 and client 2, are connected to an ArubaOS Mobility Controller. Subnet
10.1.10.10/24 is a network of servers on the other side of the ArubaOS firewall. The exhibit shows all three firewall rules that apply to these clients.

Which traffic is permitted?

• A.an HTTPS request from client 1 to 10.1.10.10 and an HTTPS response from 10.1.10.10 to client 1
• B.an HTTPS request from client 1 to 10.1.10.10 and an HTTPS request from 10.1.10.11 to client 1
• C.an HTTPS request from 10.1.10.10 to client 1 and an HTTPS re-sponse from client 1 to 10.1.10.10
• D.an HTTPS request from client 1 to client 2 and an HTTPS request from client 2 to client 1

Comment: *

Name: *

Email: *

Verification: *

You have detected a Rogue AP using the Security Dashboard Which two actions should you take in responding to this event? (Select two)

• A.There is no need to locale the AP If you manually contain It.
• B.This is a serious security event, so you should always contain the AP immediately regardless of your company's specific policies.
• C.You should receive permission before containing an AP. as this action could have legal Implications.
• D.For forensic purposes, you should copy out logs with relevant information, such as the time mat the AP was detected and the AP's MAC address.
• E.There is no need to locate the AP If the Aruba solution is properly configured to automatically contain it.

Comment: *

Name: *

Email: *

Verification: *

You configure an ArubaOS-Switch to enforce 802.1X authentication with ClearPass Policy Manager (CPPM) denned as the RADIUS server Clients cannot authenticate You check Aruba ClearPass Access Tracker and cannot find a record of the authentication attempt.
What are two possible problems that have this symptom? (Select two)

• A.users are logging in with the wrong usernames and passwords or invalid certificates.
• B.Clients are configured to use a mismatched EAP method from the one In the CPPM service.
• C.The RADIUS shared secret does not match between the switch and CPPM.
• D.CPPM does not have a network device defined for the switch's IP address.
• E.Clients are not configured to trust the root CA certificate for CPPM's RADIUS/EAP certificate.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

This Aruba Mobility Controller (MC) should authenticate managers who access the Web Ul to ClearPass Policy Manager (CPPM) ClearPass admins have asked you to use RADIUS and explained that the MC should accept managers' roles in Aruba-Admin-Role VSAs Which setting should you change to follow Aruba best security practices?

• A.Disable local authentication
• B.Change the default role to "guest-provisioning"
• C.Change the local user role to read-only
• D.Clear the MSCHAP check box

Comment: *

Name: *

Email: *

Verification: *

You have a network with ArubaOS-Switches for which Aruba ClearPass Policy Manager (CPPM) is acting as a TACACS+ server to authenticate managers. CPPM assigns the admins a TACACS+ privilege level, either manager or operator. You are now adding ArubaOS-CX switches to the network. ClearPass admins want to use the same CPPM service and policies to authenticate managers on the new switches.
What should you explain?

• A.This approach cannot work because the ArubaOS-CX switches do not accept standard TACACS+ privilege levels.
• B.This approach cannot work because the ArubaOS-CX switches do not support TACACS+.
• C.This approach will work, but will need to be adjusted later if you want to assign managers to the default auditors group.
• D.This approach will work to assign admins to the default "administrators" group, but not to the default "operators" group.

Comment: *

Name: *

Email: *

Verification: *