New Year Special Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: mxmas70

Home > HP > HP Certification > HPE7-A01

HPE7-A01 Aruba Certified Campus Access Professional Exam Question and Answers

Question # 4

Which statement best describes QoS?

A.

Determining which traffic passes specified quality metrics

B.

Scoring traffic based on the quality of the contents

C.

Identifying specific traffic for special treatment

D.

Identifying the quality of the connection

Full Access
Question # 5

A customer is using Aruba Cloud Guest, but visitors keep complaining that the captive portal page keeps coming up after devices go to sleep Which solution should be enabled to deal with this issue?

A.

MAC Caching under the splash page

B.

MAC Caching under the user-role

C.

Wireless Caching under the splash page

D.

MAC Caching under the WLAN

Full Access
Question # 6

What are two advantages of splitting a larger OSPF area into a number of smaller areas? (Select two )

A.

It extends the LSDB

B.

It increases stability

C.

it simplifies the configuration.

D.

It reduces processing overhead.

E.

It reduces the total number of LSAs

Full Access
Question # 7

Your customer has asked you to assign a switch management role for a new user The customer requires the user role to only have Web Ul access to the System > Log page and only have access to the GET method for REST API for the /logs/event resource

Which default AOS-CX user role meets these requirements?

A.

administrators

B.

auditors

C.

sysops

D.

operators

Full Access
Question # 8

What is a primary benefit of BSS coloring?

A.

BSS color tags improve performance by allowing clients on the same channel to share airtime.

B.

BSS color tags are applied to client devices and can reduce the threshold for interference

C.

BSS color tags are applied to Wi-Fi channels and can reduce the threshold for interference

D.

BSS color tags improve security by identifying rogue APs and removing them from the network.

Full Access
Question # 9

What is enabled by LLDP-MED? (Select two.)

A.

Voice VLANs can be automatically configured for VoIP phones

B.

APs can request power as needed from PoE-enabled switch ports

C.

iSCSl client devices can request to have flow control enabled

D.

GVRP VLAN information can be used to dynamically add VLANs to a trunk

E.

iSCSl client devices can set the required MTU setting for the port.

Full Access
Question # 10

A new network design is being considered to minimize client latency in a high-density environment. The design needs to do this by eliminating contention overhead by dedicating subcarriers to clients.

Which technology is the best match for this use case?

A.

OFDMA

B.

MU-MIMO

C.

QWMM

D.

Channel Bonding

Full Access
Question # 11

Which statements are true about VSX LAG? (Select two.)

A.

The total number of configured links may not exceed 8 for the pair or 4 per switch

B.

Outgoing traffic is switched to a port based on a hashing algorithm which may be either switch in the pair

C.

LAG traffic is passed over VSX ISL links only while upgrading firmware on the switch pair

D.

Outgoing traffic is preferentially switched to local members of the LAG.

E.

Up to 255 VSX lags can be configured on all 83xx and 84xx model switches.

Full Access
Question # 12

How is Multicast Transmission Optimization implemented in an HPE Aruba wireless network?

A.

"The optimal rate for sending multicast frames is based on the highest broadcast rate across all associated clients

B.

When this option is enabled the minimum default rate for multicast traffic is set to 12 Mbps for 5 GHz

C.

The optimal rate for sending multicast frames is based on the lowest broadcast rate across all associated clients.

D.

The optimal rate for sending multicast frames is based on the lowest unicast rate across all associated clients.

Full Access
Question # 13

A customer is looking Tor a wireless authentication solution for all of their loT devices that meet the following requirements

- The wireless traffic between the IoT devices and the Access Points must be encrypted

- Unique passphrase per device

- Use fingerprint information to perform role-based access

Which solutions will address the customer's requirements? (Select two.)

A.

MPSK and an internal RADIUS server

B.

MPSK Local with MAC Authentication

C.

ClearPass Policy Manager

D.

MPSK Local with EAP-TLS

E.

Local User Derivation Rules

Full Access
Question # 14

A company deployed Dynamic Segmentation with their CX switches and Gateways After performing a security audit on their network, they discovered that the tunnels built between the CX switch and the Aruba Gateway are not encrypted. The company is concerned that bad actors could try to insert spoofed messages on the Gateway to disrupt communications or obtain information about the network.

Which action must the administrator perform to address this situation?

A.

Enable Secure Mode Enhanced

B.

Enable Enhanced security

C.

Enable Enhanced PAPI security

D.

Enable GRE security

Full Access
Question # 15

How do you allow a new VLAN 100 between VSX pair inter-switch-link 256 for port 1/45 and 2/45?

A.

vlan trunk allowed 100 for ports 1/45 and 1/46

B.

vlan trunk add 100 in LAG256

C.

vlan trunk allowed 100 in LAG256

D.

vlan trunk add 100 in MLAG256

Full Access
Question # 16

Which feature supported by SNMPv3 provides an advantage over SNMPv2c?

A.

Transport mapping

B.

Community strings

C.

GetBulk

D.

Encryption

Full Access
Question # 17

Describe the difference between Class of Service (CoS) and Differentiated Services Code Point (DSCP).

A.

CoS has much finer granularity than DSCP

B.

CoS is only contained in VLAN Tag fields DSCP is in the IP Header and preserved throughout the IP packet flow

C.

They are similar and can be used interchangeably.

D.

CoS is only used to determine CLASS of traffic DSCP is only used to differentiate between different Classes.

Full Access
Question # 18

A customer wants to provide wired security as close to the source as possible The wired security must meet the following requirements:

-allow ping from the IT management VLAN to the user VLAN

-deny ping sourcing from the user VLAN to the IT management VLAN

The customer is using Aruba CX 6300s

What is the correct way to implement these requirements?

A.

Apply an outbound ACL on the user VLAN allowing temp echo-reply traffic toward the IT management VLAN

B.

Apply an inbound ACL on the user VLAN allowing icmp echo-reply traffic toward the IT management VLAN

C.

Apply an inbound ACL on the user VLAN denying icmp echo traffic toward the IT management VLAN

D.

Apply an outbound ACL on the user VLAN denying icmp echo traffic toward the IT management VLAN

Full Access
Question # 19

A customer is using a legacy application that communicates at layer-2. The customer would like to keep this application working to a remote site connected via layer-3 All legacy devices are connected to a dedicated Aruba CX 6200 switch at each site.

What technology on the Aruba CX 6200 could be used to meet this requirement?

A.

Inclusive Multicast Ethernet Tag (IMET)

B.

Ethernet over IP (EolP)

C.

Generic Routing Encapsulation (GRE)

D.

Static VXLAN

Full Access
Question # 20

Which feature allows the device to remain operational when a remote link failure occurs between a Gateway cluster and a RADIUS server that is either in the cloud or a datacenter?

A.

MAC caching

B.

MAC Authentication

C.

Authentication survivability

D.

Opportunistic key caching

Full Access
Question # 21

The customer needs a network hardware refresh to replace an aging Aruba 5406R core switch pair using spanning tree configuration with Aruba CX 8360-32YC switches What is the benefit of VSX clustering with the new solution?

A.

stacked data-plane

B.

faster MSTP converge processing

C.

dual Aruba AP LAN port connectivity for PoE redundancy

D.

dual control plane provides better resiliency

Full Access
Question # 22

Two AOS-CX switches are configured with VSX at the the Access-Aggregation layer where servers attach to them An SVI interface is configured for VLAN 10 and serves as the default gateway for VLAN 10. The ISL link between the switches fails, but the keepalive interface functions. Active gateway has been configured on the VSX switches.

What is correct about access from the servers to the Core? (Select two.)

A.

Server 1 can access the core layer via the keepalrve link

B.

Server 2 can access the core layer via the keepalive link

C.

Server 2 cannot access the core layer.

D.

Server 1 can access the core layer via both uplinks

E.

Server 1 and Server 2 can communicate with each other via the core layer

F.

Server 1 can access the core layer on only one uplink

Full Access
Question # 23

Due to a shipping error, five (5) Aruba AP-515S and one (1) Aruba CX 6300 were sent directly to your new branch office You have configured a new group persona for the new branch office devices in Central, but you do not know their MAC addresses or serial numbers The office manager is instructed via text message on their smartphone to onboard all the new hardware into Aruba Central

What application must the office manager use on their phone to complete this task?

A.

Aruba Onboard App

B.

Aruba Central App

C.

Aruba CX Mobile App

D.

Aruba installer App

Full Access
Question # 24

What is an OSPF transit network?

A.

a network that uses tunnels to connect two areas

B.

a special network that connects two different areas

C.

a network on which a router discovers at least one neighbor

D.

a network that connects to a different routing protocol

Full Access
Question # 25

With the Aruba CX switch configuration, what is the first-hop protocol feature that is used for VSX L3 gateway as per Aruba recommendation?

A.

Active Gateway

B.

Active-Active VRRP

C.

SVI with vsx-sync

D.

VRRP

Full Access
Question # 26

You are are doing tests in your lab and with the following equipment specifications:

• AP1 has a radio that generates a 16 dBm signal.

• AP2 has a radio that generates a 13 dBm signal.

• AP1 has an antenna with a gain of 8 dBi.

• AP2 has an antenna with a gain of 12 dBi. The antenna cable for AP1 has a 4 dB loss. The antenna cable for AP2 has a 3 dB loss.

What would be the calculated Equivalent Isotropic Radiated Power (EIRP) for AP1?

A.

-9 dBm

B.

20 dBm

C.

40 dBm

D.

15 dBm

Full Access
Question # 27

Refer to Exhibit:

A company has deployed 200 AP-635 access points. To take advantage of the 6 GHz band, the administrator has attempted to configure a new WPA3-OWE SSID in Central but is not working as expected.

What would be the correct action to fix the issue?

A.

Change the SSID to WPA3-Enterprise (CNSA).

B.

Change the SSID to WPA3-Personal.

C.

Change the SSID to WPA3-Enhanced Open.

D.

Change the SSID to WPA3-Enterprise (CCM).

Full Access
Question # 28

Refer to the image.

Your customer is complaining of weak Wi-Fi coverage in their office. They mention that the office on the other side of the hall has much better signal What is the likely cause of this issue7

A.

The AP is a remote access point.

B.

The AP is using a directional antenna.

C.

The AP is an outdoor access point.

D.

The AP is configured in Mesh mode

Full Access
Question # 29

Refer to the exhibit.

With Core-1. what is the default value for config-revision?

A.

0

B.

1

C.

1-0

D.

0. 0

Full Access
Question # 30

When setting up an Aruba CX VSX pair, which information does the Inter-Switch Link Protocol configuration use in the configuration created?

A.

hello interval is disabled by default

B.

hello interval is based on the value set by dead interval

C.

hello interval 100ms by default

D.

hello interval is 1s by default

Full Access
Question # 31

You are troubleshooting an issue with a pair of Aruba CX 8360 switches configured with VSX Each switch has multiple VRFs. You need to find the IP address of a particular client device with a known MAC address You run the "show arp" command on the primary switch in the pair but do not find a matching entry for the client MAC address.

The client device is connected to an Aruba CX 6100 switch by VSX LAG.

Which action can be used to find the IP address successfully?

A)

B)

C)

D)

A.

Option A

B.

Option B

C.

Option C

D.

Option D

Full Access
Question # 32

A company recently deployed new Aruba Access Points at different branch offices Wireless 802.1X authentication will be against a RADIUS server in the cloud. The security team is concerned that the traffic between the AP and the RADIUS server will be exposed.

What is the appropriate solution for this scenario?

A.

Enable EAP-TLS on all wireless devices

B.

Configure RadSec on the AP and Aruba Central.

C.

Enable EAP-TTLS on all wireless devices.

D.

Configure RadSec on the AP and the RADIUS server

Full Access
Question # 33

Using Aruba best practices what should be enabled for visitor networks where encryption is needed but authentication is not required?

A.

Wi-Fi Protected Access 3 Enterprise

B.

Opportunistic Wireless Encryption

C.

Wired Equivalent Privacy

D.

Open Network Access

Full Access
Question # 34

you need to have different routing-table requirements With Aruba CX 6300 VSF configuration.

Assuming the correct layer-2 VLAN already exists, how would you create a new SVI for a separate routing table?

A.

create a new VLAN, and attach the VRF to it.

B.

Create a new routing table, and attach VLANS to it

C.

Create a new SVI and use attach command.

D.

Create a new VLAN. and attach the routing table to it

Full Access
Question # 35

Which component is used by the Aruba Network Analytics Engine (NAE)?

A.

JSON-based scripts

B.

Lisp-based agents

C.

Ruby-based scripts

D.

Current State Database

Full Access