HP hpe6-a82 practice test

Which actions are necessary to set up a ClearPass guest captive portal web login page to execute
with no errors? (Select two)

• A. Configure the vendor settings in the Web Login page to match the Network Access Device (NAD).
• B. Install a publicly signed HTTPS certificate in ClearPass and the Network Access Device (NAD).
• C. Install an enterprise Certificate Authority (CA) signed HTTPS certificate in the Network Access Device (NAD).
• D. Install an enterprise Certificate Authority (CA) signed HTTPS certificate in ClearPass and the Network D18912E1457D5D1DDCBD40AB3BF70D5D Access Device (NAD).
• E. Configure the vendor settings in the Network Access Device (NAD) to match the web login page.

Refer to the diagram.

When creating a new ClearPass Service, the [Time Source] has been added as an authorization
source. What time source is ClearPass referencing?

• A. the ClearPass server where insight Master has been enabled
• B. the local time setting found on the authenticating client machine
• C. the NTP (Network Time Protocol) source indicated in the Cluster settings
• D. the local clock of the ClearPass server doing the authentication

Which ClearPass fingerprint collectors are valid for active profiling of endpoints? (Select two.)

• A. DHCP fingerprinting
• B. IF-MAP
• C. SNMP
• D. HTTP user agents
• E. NMAP

Refer to the Endpoint in the screenshot.

What are possible ways that it was profiled? (Select two)

• A. Cisco Device Sensor
• B. Exchange Plugging agent
• C. 3rd part MDM
• D. DNS fingerprinting
• E. NAD ARP listening handler

When ClearPass is communicating with external context servers, which connection protocol is
typically used?

• A. YAML
• B. SOAP and XML
• C. REST APIs over HTTPS
• D. FTP over SSH

What services are recommended to be allowed by the pre-authenticated role assigned to the Client
during the Captive Portal process? (Choose three.)

• A. DHCP options 43 and 150
• B. RADIUS to ClearPass
• C. HTTPS to ClearPass
• D. HTTPS to the Internet
• E. DHCP address assignment
• F. DNS resolution

ClearPass receives fingerprinting profile data for a client device that is based on MAC OUl. NMAP.
DHCP, and OnGuard Which fingerprint or fingerprints are used?

• A. All fingerprints are applied
• B. The last fingerprint gathered
• C. NMAP because it is actively obtained
• D. OnGuard because it is application based

Which items can be obtained from device profiling'? (Select three )

• A. Device Category
• B. Device Family
• C. Device Health
• D. Device Type
• E. Device Location

Refer to the exhibit.

What are two consequences of the Cache Timeout being set to 36000 seconds? (Select two.)

• A. ClearPass will cache all user and machine attributes from AD every 10 hours in anticipation of one of those users or machines attempting to authenticate.
• B. Less traffic is required between ClearPass and the AD server when re-authenticating within a 10 hour period.
• C. The Cache Timeout is designed to reduce the amount of traffic between ClearPass and the AD server by caching user credentials for a 10 hour period.
• D. A user changing departments may not see their Department attribute change in AD reflected while authenticating until the Cache Timeout period has ended.
• E. On a failed authentication attempt, ClearPass will consider any subsequent attempts within 10 hours as total failed attempts before blacklisting the client.

Which option support DHCP profiling for devices in a network?

• A. enabling DHCP relay on our network access devices so DHCP requests are forwarded to ClearPass
• B. enabling the DHCP server to profile endpoints and forward meta-data to ClearPass
• C. DHCP profiling is enabled on ClearPass by default configuration of the network access devices is not necessary
• D. configuring ClearPass as a DHCP relay for the client