Term
An aruba AP 70 is capable of supporting which of the following network types? (choose all that apply)
A) 802.11n
B) 802.11w
C) 802.11b
D) 802.11a |
|
Definition
|
|
Term
In the startup wizard, the ports configuration screen allows you to do which of the following? (choose all that apply)
A) Identity trunk ports
B) Identify the native VLAN for a port
C) Enable VLANs
D) Configure port channels |
|
Definition
A) Identity trunk ports
B) Identify the native VLAN for a port
C) Enable VLANs |
|
|
Term
Web-based captive portal can be authenticated by the following types of databases (choose all that apply).
A) Kerberos
B) Internal
C) RADIUS
D) PEAP |
|
Definition
|
|
Term
In a Layer 3 deployment, what role does the Aruba controller act as?
A) A hub
B) A client
C) A VPN server
D) A router |
|
Definition
|
|
Term
When adding licenses in the startup wizard license screen, a reboot is required at which point?
A) Before any other configuration can take place
B) Only if the Policy Enforcement Firewall license is installed
C) After each license is installed
D) Not required until you have completed the configuration wizard |
|
Definition
| D) Not required until you have completed the configuration wizard |
|
|
Term
Which is the strongest encryption type?
A) TKIP
B) MSCHAPv2
C) AES
D) WEP |
|
Definition
|
|
Term
How many roles should be created on a controller?
A) As many as necessary
B) One less than the number of firewall policies
C) The same number as SSIDs
D) The same number as firewall policies |
|
Definition
|
|
Term
Match each component of the AP boot process to the appropriate step
A) AP transfters OS from controller
B) AP builds GRE tunnel to the controller
C) AP determins IP address of the controller
D) AP Radio is enabled |
|
Definition
C) AP determins IP address of the controller
A) AP transfters OS from controller
B) AP builds GRE tunnel to the controller
D) AP Radio is enabled
|
|
|
Term
In the startup wizard on the VLAN configuration screen, if you assing all ports to a single VLAN, which of the following is true?
A) That trunk is automatically turned into a trunk port
B) You cannot assign all VLANs to a single port
C) The native VLAN is automatically set to VLAN 1
D) All ports are removed from all other VLAN interfaces. |
|
Definition
| D) All ports are removed from all other VLAN interfaces. |
|
|
Term
Which of the following is not available for configuration in the statup wizard?
A) Administrator and enable passwords
B) RF plan
C) WPA-PSK encryption
D) Native VLANs on a per port basis |
|
Definition
|
|
Term
When a local controller is selected as the controller's operation mode in the startup wizard, which is no longer configurable?
A) WLANs
B) Controller country code
C) Licenses
D) VLANs and IP addressing |
|
Definition
|
|
Term
Which of the following is not available for configuration via startup wizard?
A) Controller name
B) VLAN IP
C) Country code
D) Loopback IP |
|
Definition
|
|
Term
A Remote AP uses which type of secure tunnel to communicate with a controller:
A) NAT-T
B) IPsec
C) PPTP
D) GRE |
|
Definition
|
|
Term
Which of the following is true of an Aruba Mobility Controller acting as a Layer 2 switch? (Select all that apply)
A) The Mobility Controller is the client's default router
B) The Mobility Controller acts as a bridge
C) All stations must use the same VLAN
D) Uplink ports on the Mobility Controller can use 802.1q tagging |
|
Definition
A) The Mobility Controller is the client's default router
D) Uplink ports on the Mobility Controller can use 802.1q tagging |
|
|
Term
In a Campus AP deployment, what is the difference between a Direct and an Overlay deployment?
(lots of text here...) |
|
Definition
| C) In a direct deployment, APs are directly connected to the controller while in an overlay deployment APs are connected to Layer 2 or Layer 3 devices. |
|
|
Term
Which of the following is true about configuring a server group?
A) Server rules are used to send information to the configured servers
B) A server group can have more than one server
C) If the internal database is used in the server group, then no external servers can be added
D) If multiple servers are assigned to the server group, all except the first will be ignored. |
|
Definition
| B) A server group can have more than one server |
|
|
Term
Which of these is not a valid license type?
A) RFProtect
B) Application Security
C) Base OS
D) PEF-NG |
|
Definition
|
|
Term
What are the four views available in VisualRF Plan?
A) User View
B) Controller View
C) Access Point View
D) Floor Plan View
E) Network, Campus and Building View |
|
Definition
A) User View
C) Access Point View
D) Floor Plan View
E) Network, Campus and Building View |
|
|
Term
Clients connecting to a Remote AP at a branch office can get an IP address through which of the following methods (Select all that apply)
A) DHCP server connected to the Remote AP's controller
B) DHCP server at a branch office
C) DHCP server inside the remote AP
D) All of the above |
|
Definition
|
|
Term
Which of the following deployment types is NOT a valid option when using the AP Wizard?
A)
Campus
B)
Mesh
C)
Roaming
D) Remote Mesh |
|
Definition
|
|
Term
Which of the following information is gathered by APs during scanning periods? (Select all that apply)
A) MAC addresses of neighboring APs
B) Security threats in the surroundings
C) Type of non-802.11 interference detected
D) Interfering Clients connected to other APs |
|
Definition
A) MAC addresses of neighboring APs
C) Type of non-802.11 interference detected
D) Interfering Clients connected to other APs |
|
|
Term
Which of the following needs to be done prior to attempting to use the GUI quick setup of a factory defaulted Aruba S3500 Mobility Access Switch?
A) Set the S3500 IP address to the 172.16.0.0 range
B) Quick-Setup needs to be enabled on the LCD Panel
C) Connect the S3500 to the network for DHCP
D) Set the laptop IP address to the 192.168.0.0 range |
|
Definition
| B) Quick-Setup needs to be enabled on the LCD Panel |
|
|
Term
When would you use the Reject action in a firewall policy?
A) To let hackers know which ports are open on your firewall
B) To let your users know they they are in violation of corporate policies
C) To tell down stream routers to use a more appropriate router
D) To aid in troubleshooting firewall policy configuration
|
|
Definition
| B) To let your users know they they are in violation of corporate policies |
|
|
Term
802.11n APs operate in which bands? (select all that apply)
A) 900 MHz
B) 2.4 Ghz
C) 4.9 GHz
D) 5 GHz |
|
Definition
|
|
Term
In Extensible Authentication Protocol (EAP) terminology the client station is called the
A) Station
B) Authenticated Client
C) Supplicant
D) End node |
|
Definition
|
|
Term
FQLN can be set for an AP: (select all that apply)
A) At the factory
B) During provisioning
C) Using the FQLN mapper tool
D) By DHCP when an address is requested |
|
Definition
| C) Using the FQLN mapper tool |
|
|
Term
Guest access can be provided securely by combining the following components of an Aruba system: (select all that apply)
A) Use restrictive firewall policies to limit the guest user’s access to internal resources
B) Providing guests their own APs and controllers
C) Authenticate users with the internal captive portal against the internal database or other server
D) DoS guest users off of the system and make them use wired ports |
|
Definition
A) Use restrictive firewall policies to limit the guest user’s access to internal resources
C) Authenticate users with the internal captive portal against the internal database or other server |
|
|
Term
Which roles must be configured via the startup wizard when captive portal is being configured (select all that apply)?
A) Roles are not used on the Aruba system
B) Pre-Authentication role
C) Authenticated role
D) Unauthenticated role |
|
Definition
| B) Pre-Authentication role |
|
|
Term
Time range is applied directly to which of the following:
A) Role
B) Firewall Policy
C) Firewall Rule
D) Profile |
|
Definition
|
|
Term
Which ARM function converts APs with excess capacity into Air Monitors?
A) Airtime fairness
B) Coordinated access to a single channel
C) Co-channel interference mitigation
D) Client aware scanning |
|
Definition
C) Co-channel interference mitigation |
|
|
Term
In what order does the AP dynamically discover the Master controller?
A) DNS query, ADP Broadcast, ADP Multicast, DHCP option 43
B) DHCP option 43, ADP Multicast, ADP Broadcast, DNS query
C) DHCP option 43, DNS query, ADP Multicast, ADP Broadcast
D) ADP Multicast, ADP Broadcast, DHCP option 43, DNS query |
|
Definition
| B) DHCP option 43, ADP Multicast, ADP Broadcast, DNS query |
|
|
Term
Identify the benefits of using aliases when writing firewall policies (select all that apply)
A) Makes policies more readable
B) Changes to policy rules that use aliases are auto updated.
C) End users are applied to the proper role |
|
Definition
A) Makes policies more readable
B) Changes to policy rules that use aliases are auto updated. |
|
|
Term
What is necessary for the controller to layer 3 switch user traffic? (choose all that apply)
A) The controller must be the DHCP server
B) The controller must be the default gateway for the user
C) An external router must be used as the user default gateway
D) The controller must have IP addresses assigned to appropriate VLANs |
|
Definition
B) The controller must be the default gateway for the user
D) The controller must have IP addresses assigned to appropriate VLANs |
|
|
