HPE7-A02 Practice Exam Questions and Answers

A.  

In the security settings, configure dynamic denylisting.

B.  

In the RADIUS server settings for CPPM, enable Dynamic Authorization.

C.  

In the WLAN profiles, enable interim RADIUS accounting.

D.  

In the RADIUS server settings for CPPM, enable querying the authentication status.

A.  

At the global level, create default IPsec policies for the SD-WAN Orchestrator to use.

B.  

In BGWs' groups, select the VPNCs to which to connect in a DC preference list.

C.  

In VPNCs' groups, establish VPN pools to control which branches connect to which VPNCs.

D.  

In BGWs' and VPNCs' groups, create default IKE policies for the SD-WAN Orchestrator to use.

A.  

Each cluster is a group of unclassified devices that CPDI's machine learning has discovered to have similar attributes.

B.  

Each cluster is a group of devices that match one of the tags configured by admins.

C.  

Each cluster is all the devices that have been assigned to the same category by one of CPDI's built-in system rules.

D.  

Each cluster is a group of devices that have been classified with user rules, but for which CPDI offers different recommendations.

A.  

Choose to decode UDP port 5555 packets as ARUBA_ERM and set the Aruba ERM Type to 0.

B.  

Edit preferences for IEEE 802.11 and chose to ignore the Protection bit with IV.

C.  

Apply the following display filter: wlan.fc.type == 1.

D.  

Edit the Enabled Protocols and make sure that 802.11, GRE, and Aruba_ERM are enabled.

A.  

Each VLAN in the network assigned on at least one AP's or AM's port

B.  

A Foundation with Security license for each of the APs

C.  

One AM deployed for every one AP deployed

D.  

A manual radio profile that enables non-regulatory channels

A.  

Reboot the switch.

B.  

Enable NAE, which is disabled by default.

C.  

Edit the script to define monitor parameters.

D.  

Create an agent from the script.

A.  

Gateways at the remote clients' locations and devices accessed by the clients at the main site

B.  

The remote clients and devices accessed by the clients at the main site

C.  

The remote clients and a gateway at the main site

D.  

Gateways at the remote clients' locations and a gateway at the main site

A.  

Configure the Palo Alto as a context server on CPPM.

B.  

Install a Palo Alto Extension through ClearPass Guest.

C.  

Enable Insight and ingress event processing on the CPPM server.

D.  

Configure CPPM to trust the root CA certificate for the NGFW.

A.  

Configure CPPM to assign the role using a RADIUS enforcement profile with a RADIUS:IETF Username attribute.

B.  

Configure CPPM to assign the role using a RADIUS enforcement profile with an Aruba-User-Role VS

A.  

C.  

OCreate server rules on the APs to assign clients to roles based on RADIUS IETF attributes returned by CPPM.

D.  

Create user rules on the APs to assign clients to roles based on a variety of criteria.

A.  

Gateway zone set to "3000" with no gateway role set

B.  

Gateway zone set to "vni-3000" with no gateway role set

C.  

Access VLAN set to the VLAN mapped to VNI 3000

D.  

Access VLAN ID set to "3000"