HPE Networking ClearPass v1.0

Page:    1 / 4   
Exam contains 50 questions
Expand All

An organization wants to enforce role-based access policies across their entire network to ensure that users have appropriate access privileges regardless of their connection point.
How does ClearPass facilitate this requirement?

  • A. By providing detailed audit logs of all network activity
  • B. By offering customizable user authentication methods
  • C. By allowing the creation of individual user roles with associated privileges that applies anywhere on the network


Answer : C

A company is deploying new Cisco switches and wants to use SNMP enforcement for VLAN assignments. What requirement must be met for SNMP enforcement to work correctly in this scenario?

  • A. Downloadable enforcement must be enabled for all devices.
  • B. Vendor-specific attributes must be used for enforcement.
  • C. SNMP services must be enabled on the Cisco switches.


Answer : C

An organization needs to configure a secure 802.1X wired service in ClearPass to manage access on their network. They want to ensure that different device types have different security profiles.
Which feature of ClearPass should they use to achieve this?

  • A. Enforcement profiles with profiling
  • B. Port security with MAC address tracking
  • C. MAC Authentication without profiling


Answer : A

When configuring the role settings by Mobility Gateway in ClearPass, a network engineer notices that the elements required for the role are reusable.
What is the primary benefit of this reusability feature?

  • A. It provides automatic updates to all roles when one role is changed.
  • B. It enables the use of default system settings without customization.
  • C. It allows the engineer to create and apply a single definition to multiple roles, saving time and reducing errors.


Answer : C

What is the main risk associated with evaluating posture in role mappings instead of enforcement rules?

  • A. Potential conflicts between role mappings and enforcement rules.
  • B. Increased processing time for posture evaluation.
  • C. Evaluating against cached attributes instead of the most current attributes.


Answer : C

A company wants to ensure that only healthy devices can access its network. ClearPass enforces this policy. Which component of the enforcement process evaluates the collected data and matches it to predefined rules?

  • A. Enforcement Profile Actions
  • B. Enforcement Policy Rules
  • C. Service Selection


Answer : B

A company wants to ensure that all BYOD devices undergo a health check before gaining full access to the network. They plan to use ClearPass OnGuard for this purpose.
Given that they have a guest network where devices initially connect to an open guest SSID before full authentication, which agent should they use?

  • A. The dissolvable agent, because it does not require the client to have an IP address before performing health checks.
  • B. The dissolvable agent, because it can perform health checks via a captive portal without requiring pre-installed software.
  • C. The persistent agent, because it can operate independently of the network connection type.


Answer : B

An IT manager needs to ensure that a user who has lost their smartphone can onboard a new device while blocking access to the old one.
What steps should the IT manager follow to meet this need using ClearPass Onboard?

  • A. Revoke the certificate of the old device, delete all metadata, and onboard the new device.
  • B. Block access to the old device, revoke its certificate, and issue a new certificate to the new device.
  • C. Delete the user account, create a new account for the user, and onboard the new device.


Answer : B

A network administrator needs to revoke a certificate for a lost device to ensure it no longer has network access. They navigate to the Certificate Authorities section in ClearPass Onboard.
What next step should they take to ensure the certificate is properly revoked and the device is blocked?

  • A. Select the certificate authority, edit the retention policy to store only metadata, and then revoke the certificate.
  • B. Select the certificate authority, view the issued certificates, and revoke the specific certificate associated with the lost device.
  • C. Select the certificate authority, view the trust chain, and manually revoke the certificate from the list.


Answer : B

An organization wants to ensure that all devices accessing their network meet specific security criteria. They decide to use ClearPass OnGuard to monitor and enforce compliance. During the deployment, the IT team needs to understand how ClearPass evaluates the security status of clients.
Which aspect of ClearPass OnGuard provides this functionality?

  • A. Network access control
  • B. Health Checks
  • C. Security policies


Answer : B

An IT administrator notices that a client endpoint has failed a health check and wants to send a notification that will not only inform the user but also force the client to re-authenticate.
Which action should the administrator take?

  • A. Send a message to disable the network interface.
  • B. Send a notification to disable the network interface.
  • C. Send a notification with an action to restart the session.


Answer : C

A network administrator is troubleshooting an issue where endpoints are not receiving updated enforcement decisions after a second authentication. What is the most likely configuration change needed?

  • A. Disable the "Use Cached Results" on enforcement tab.
  • B. Disable endpoint re-authentication.
  • C. Increase the frequency of the posture checks.


Answer : A

When managing network access through ClearPass, an administrator notices that client status changes are causing repeated disconnections and re-authentications. The administrator wants to prevent the service from making the same enforcement decision without considering newly gathered information.
What action should the administrator take?

  • A. Enable automatic endpoint reconciliation.
  • B. Increase the timeout period for client re-authentication.
  • C. Select the option ‘Use Cached Results’ on the enforcement tab.


Answer : A

A company’s IT department is tasked with ensuring data replication across multiple ClearPass servers while maintaining redundancy and failover capabilities. They need to perform license management operations for the cluster.
Where should these license management operations be performed to ensure they are properly applied across the cluster?

  • A. On the server with the active Insights database
  • B. On the publisher
  • C. On a dedicated license server


Answer : B

A company needs to add a new field to an existing form and wants it to appear before a specific field already on the form.
What is the correct sequence of actions to meet this need?

  • A. Select the existing field in the forms editor and choose the ‘Insert Before’ option.
  • B. Use the Customize Form Field workspace to drag and drop the new field before the existing one.
  • C. Select the existing field in the forms editor and choose the ‘Insert After’ option.


Answer : A

Page:    1 / 4   
Exam contains 50 questions
Expand All

Talk to us!

Have any questions or issues ? Please dont hesitate to contact us

[email protected]

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy | Amazon Exams | Cisco Exams | CompTIA Exams | Databricks Exams | Fortinet Exams | Google Exams | Microsoft Exams | VMware Exams