A.  

Database certificate can be created to take a secure backup of the ClearPass database.

B.  

ClearPass Policy Manager nodes validates the Database certificate while joining the cluster

C.  

Custom Database certificate requires Subject Alternative Name (SAN) field with the DNS name of the server.

D.  

A change in Database certificate will only be applicable after a reboot of the node

E.  

Database server certificate is optional for the ClearPass servers that are part of a Cluster.

A.  

Create a new Authentication Source, type Active Directory.

B.  

Create a new Authentication Source, type Generic LDAP.

C.  

Add the new AD server(s) as backup into the existing Authentication Source.

D.  

There is no need to join ClearPass to the new AD domain.

E.  

Join the ClearPass server(s) to the new AD domain.

A.  

Policy Manager > Configuration > Enforcement > Profiles > Add a new profiles with Agent Enforcement as the template, and on the Attributes tab add the new Show Posture Results in Guest Page attribute and set the value for the attribute to true.

B.  

Policy Manager > Configuration > Enforcement > Profiles > Add new profile with Aruba Radius Enforcement as the template, and on the Attributes tab add the Aruba-User-Role configured with the captive portal profile mapped with default Posture Check web page URL.

C.  

Policy Manager > Configuration > Services > Edit the Web-base Health Check Only service, and on the posture tab under Remediation URL add the default Quarantined Blocked web page URL and complete the service configuration by hitting save.

D.  

Policy Manager > Configuration > Services > Edit the Web-base Health Check Only service, and on the posture tab enable the checkbox for the new option Show Posture Results in Guest Page and complete the service configuration by hitting save.

A.  

Check if sponsor name field is enabled in the register form page

B.  

Check if sponsor email field is enabled in the register form page

C.  

Check if authentication option n is enabled in the self-registration page enabled.

D.  

Check if sponsor confirmation is enabled in the self-registration page

A.  

Install the same public certificate on all Controllers with the common name "controller.{company domain)

B.  

Build multiple Web Login pages with vendor settings configured for each controller

C.  

Build one Web Login page with vendor settings for captiveportal-controller (company domain)

D.  

Build one Web Login page with vendor settings for controller (company domain)

E.  

Install multiple public certificates with a different Common Name on each controller

A.  

The authentication source mapped in the service is incorrect It should be mapped as [Guest Device Repository! (Local SQL DB].

B.  

The Unique-Device- Count does not allow any Client devices. Update the Enforcement policy condition: Unique-Device-Count.

C.  

The username and/or password used for authentication is incorrect Re-enter the correct password on the weblogin page.

D.  

The username used for authentication does not exist in the Guest User Database. Create a new user and authenticate again

A.  

Redirect to Aruba OnBoard Portal

B.  

Redirect to Aruba Quarantine Profile

C.  

Redirect to Aruba Dissolvable_page Profile

D.  

Deny Access Profile

A.  

Policy Manager stops using ClearPass Profiler for fingerprinting and uses Device Insight Analyzer instead for endpoint in-depth data analysis.

B.  

ClearPass Device Insight updates ClearPass Policy Manager every 60 minutes if it detects a change in device classification like device spoofing.

C.  

To provide enhanced profiling and reporting. additional configuration is required to transmit data in both directions between CPPM and Device Insight.

D.  

When Device Insight integration mode is enabled. you can still use Update Fingerprint button to Update Endpoints at Configuration > Identity > Endpoints

E.  

An attribute named Device Insight Tags art added to the Endpoints that art available to use in service, role-mapping, and enforcement policy Rules

A.  

connect using an interface that is configured as Managed Interface

B.  

reinstall the OnGuard agent from the Wired interface

C.  

change the Policy Manager Zone mapping and add the WIRED interface range

D.  

modify the agent.conf file and add the WIRED interface to it