A company has HPE Aruba Networking APs running AOS-10 and managed by HPE Aruba Networking Central. The company also has AOS-CX switches. The security team wants you to capture traffic from a particular wireless client. You should capture this client's traffic over a 15-minute time period and then send the traffic to them in a PCAP file. What should you do?

• A.Access the CLI for the client's AP. Set up a mirroring session between its radio and a management station running Wireshark.
• B.Go to the client's AP in HPE Aruba Networking Central. Use the "Security" page to run a packet capture.
• C.Go to that client in HPE Aruba Networking Central. Use the "Live Events" page to run a packet capture.
• D.Access the CLI for the client's AP's switch. Set up a mirroring session between the AP's port and a management station running Wireshark.

Comment: *

Name: *

Email: *

Verification: *

Your company wants to implement Tunneled EAP (TEAP).
How can you set up HPE Aruba Networking ClearPass Policy Manager (CPPM) to enforce certificated-based authentication for clients using TEAP?

• A.For the service using TEAP, set the authentication source to an internal database.
• B.Select a service certificate when you specify TEAP as a service's authentication method.
• C.Create an authentication method named "TEAP" with the type set to EAP-TLS.
• D.Select an EAP-TLS-type authentication method for the TEAP method's inner method.

Comment: *

Name: *

Email: *

Verification: *

What is a benefit of Online Certificate Status Protocol (OCSP)?

• A.It lets a device query whether a single certificate is revoked or not.
• B.It lets a device dynamically renew its certificate before the certificate expires.
• C.It lets a device download all the serial numbers for certificates revoked by a CA at once.
• D.It lets a device determine whether to trust a certificate without needing any root certificates installed.

Comment: *

Name: *

Email: *

Verification: *

A company lacks visibility into the many different types of user and loT devices deployed in its internal network, making it hard for the security team to address those devices.
Which HPE Aruba Networking solution should you recommend to resolve this issue?

• A.HPE Aruba Networking Mobility Conductor
• B.HPE Aruba Networking ClearPass OnBoard
• C.HPE Aruba Networking ClearPass Device Insight (CPDI)
• D.HPE Aruba Networking Network Analytics Engine (NAE)

Comment: *

Name: *

Email: *

Verification: *

What correctly describes an HPE Aruba Networking AP's Device (TPM) certificate?

• A.It is signed by an HPE Aruba Networking CA and is trusted by many HPE Aruba Networking solutions.
• B.It works well as a captive portal certificate for guest SSIDs.
• C.It is a self-signed certificate that should not be used in production.
• D.It is installed on APs after they connect to and are provisioned by HPE Aruba Networking Central.

Comment: *

Name: *

Email: *

Verification: *