Summer Sale - Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dpt65

HPE6-A73 Questions and Answers

Question # 6

A network administrator wants to centralize the management of AOS-CX switches by implementing NetEdit.

How should the administrator purchase and/or install the NetEdit solution?

A.

Install as a hardware appliance

B.

Installed on a supported version of RedHat Enterprise Linux

C.

Installed in a virtualized solution by using the Aruba-supplied OVA file

D.

Installed on a supported version of Debian Linux

Full Access
Question # 7

Examine the network exhibit:

The ACL configuration defined on Core-1 is as follows:

If telnet was being used, which device connection would be permitted and functional in both directions?

(Choose two.)

A.

Client 3 to Client 2

B.

Client 1 to Client 2

C.

Server 2 to Client 2

D.

Server 1 to Client 1

E.

Client 1 to Client 3

Full Access
Question # 8

An administrator of a large campus network needs a solution that will provide root cause analytics to quickly identify problems so that they can quickly be fixed.

Which AOS-CX switch feature should the administrator utilize to help with root cause analytics?

A.

NAE

B.

VoQ

C.

NetEdit

D.

VSX

Full Access
Question # 9

An administrator has configured the following on an AOS-CX switch:

What is the correct ACL rule configuration that would allow traffic from anywhere to reach the web ports on the

two specified servers?

A.

access-list ip server 10 permit tcp any web-servers group web-ports

B.

access-list ip server 10 permit tcp any object-group web-servers object-group web-ports

C.

access-list ip server 10 permit tcp any group web-servers group web-ports

D.

access-list ip server 10 permit tcp any web-servers web-ports

Full Access
Question # 10

Which concept is implemented using Aruba’s dynamic segmentation?

A.

Root of trust

B.

Device fingerprinting

C.

Zero Touch Provisioning

D.

Colorless port

Full Access
Question # 11

What is correct regarding the tunneling of user traffic between AOS-CX switches and Aruba Mobility

Controllers (MCs)?

A.

Uses IPSec to protect the management and data traffic

B.

Uses IPSec to protect the management traffic

C.

Supports only port-based tunneling

D.

Uses the same management protocol as Aruba APs

Full Access
Question # 12

MAC authentication is enabled on port 1/1/27 of an AOS-CX switch. The following MAC addresses are defined on the AAA server:

* 88:3a:30:97:b6:00

* 00:50:56:b1:fc:9b

Examine the AOS-CX switch output:

Based on this information, what is true concerning port 1/1/27?

A.

Device-mode is enabled with a client limit of 1.

B.

Device-mode is enabled with a client limit of 2.

C.

Client-mode is enabled with a client limit of 1.

D.

Client-mode is enabled with a client limit of 2.

Full Access
Question # 13

A company has a few servers in a secure, remote location storing highly-confidential documents connected to two AOS-CX 6400 switches configured in a VSX pair The AOS-CX switches perform access control with 802 1X and will be implementing user-based tunneling (UBT) so that Aruba gateway application inspection and stateful firewall policies can be applied to the traffic. The gateways are running version 84 and implement the AP, PEF, and RFP licenses

Which licensing is needed for the two AOS-CX switches?

A.

2 AP and 2 PEF licenses only

B.

1 AP license only

C.

2 AP, 2 PEF, and 2 RFP licenses only

D.

1 AP, 1 PEF, and 1 RFP licenses only

Full Access
Question # 14

Which protocol does NetEdit use to discover devices in a subnet during the discovery process?

A.

LLDP

B.

ARP

C.

DHCP

D.

ICMP

Full Access
Question # 15

Examine the configuration performed on newly deployed AOS-CX switches:

After performing this configuration, the administrator notices that the switch ports always remain in the EAP start state. What should the administrator do to fix this problem?

A.

Define the server group cppm

B.

Set the ports to client-mode

C.

Create and assign a local user role to the ports

D.

Enable change of authorization (CoA)

Full Access
Question # 16

Examine the attached diagram

Two AOS-CX switches are configured for VSX at the access layer, where servers attached to them. An SVI interface is configured for VLAN 10 and serves as the default gateway for VLAN 10. The ISL link between the switches fails, but the keepalive interface functions. Active gateway has been configured on the switches.

What is correct about access from the servers to the Core?

A.

Server 2 can successfully access the core layer via the keepalive link.

B.

Server 1 and Server 2 can communicate with each other via the core layer.

C.

Server 2 cannot access the core layer.

D.

Server 1 can access the core layer via both uplinks.

Full Access
Question # 17

Examine the following AOS-CX switch configuration:

Which access control entries would allow web traffic to the web servers 10.1.0.100 and 10.1.1.100?

A.

permit tcp servers eq 80

B.

permit tcp any 10.1.0.100 0.0.1.0 eq 80

C.

permit tcp any 10.1.0.100/10.1.1.100 eq 80

D.

permit tcp any 10.1.0.100/255.255.254.255 eq 80

Full Access
Question # 18

An administrator wants to implement dynamic segmentation policies. The network consists of AOS-CX and Aruba gateways.

Which type of forwarding should the administrator implement for users that already connect via wireless, but will also be connecting on Ethernet switch ports?

A.

User-based tunneling (UBT)

B.

Port-based tunneling (PBT)

C.

Switch-to-switch tunneling (SST)

D.

Local switching

Full Access