A company has a third-party AAA server solution. The campus access layer was just upgraded to AOS-CX switches that perform access control with MAC-Auth and 802.1X. The company has an Aruba Mobility Controller (MC) solution for wireless, and they want to leverage the firewall policies on the controllers for the wired traffic.
What is correct about how the company should implement a security solution where the wired traffic is processed by the MCs?
To implement a security solution where the wired traffic is processed by the Aruba Mobility Controllers (MCs), the company should implement local user roles with a gateway role defined on the AOS-CX switches. Downloadable user roles (DURs) are specifically designed to be used with Aruba ClearPass Policy Manager (CPPM), whereas local user roles (LURs) can work with third-party AAA servers. This approach aligns with the company's existing third-party AAA server solution and leverages the capabilities of the AOS-CX switches and Aruba MCs to enforce security policies.
I think the answer is B because it use 3rd party aaa server
Correct answer is B
Page 756 Study Guide: Note: On the older AOS switches, the term secondary role was used instead of gateway role. With AOS- CX switches, the appropriate term used to describe the role the switch passes to the controller is the gateway role. [Aruba Networks]
Answer is B as stated in the description of LUR (Local User Roles)
B as stated in the description of LUR (Local User Roles)
B should be correct. DURs work with Clearpass only, wheras LURs can be used with 3rd party AAA solutions
I think it's C
B because DUR is only possible with CPPM