HPE6-A73 Exam - Question 21

Look at the role that has been applied - looks like a typical DUR

B is correct

B seems correct. The precedense is: 802.1x and if it times out, mac-auth.

I think that its B. because the Role has been assigned as per the book page 723.

Correction B: When the configuration status shows "applied," it means that the specified AAA settings are in effect and active on the AOS-CX switch. This confirms that the configured authentication and authorization parameters are being used to control user access and permissions on the network.

Page 435 Lab Guide: In this example, the numbers 3044 and 7. 3044: Every enforcement profile in ClearPass has an internal object number, the range starts at 3000. This is the unique identifier of the enforcement profile, while the name makes it easy to recognize it. 7: This is the version number. Every time an enforcement profile is saved, the version number is incremented with 1. The complete DUR consists of: • Enforcement Profile name: aruba_contractor • Enforcement Profile internal object number: 3044 • Enforcement Profile version number: 7

It is D. (Book pages 703 & 711) No mac-auth configured.

I too think it's B. The role 'aruba_contractor-3044-7' is the exact correct format for a DUR. See page 814.

D: If the output of the command show aaa authentication port-access interface <interface> client-status on an Aruba switch shows that "dot1x" is authenticated but "mac-auth" is not attempted, it means that the switch is successfully performing 802.1X authentication for clients on that interface, but it is not attempting MAC authentication.