Prueba

Question

Which of the following core components of ARM enables intelligent distribution of clients across available channel capacity?

Answer 1

Multi-band scan

Answer 2

Spectrum load balancing

Answer 3

Rogue AP detection

Answer 4

Band steering

Answer 5

After each license is installed

Answer 6

Before any other configuration can take place

Answer 7

Only if the Policy Enforcement Firewall license is installed

Answer 8

A reboot is not required until you have completed the configuration wizard

Answer 9

MAC Address

Answer 10

Output power of client radio

Answer 11

Method of authentication

Answer 12

WEP encryption

Answer 13

Direct access to the internet with no captive portal

Answer 14

Captive portal with authentication via credentials

Answer 15

Captive portal with email registration

Answer 16

AP’s IP Address, Netmask, Default Gateway

Answer 17

AP’s Name and Group

Answer 18

Aruba Controller’s Master IP Address

Answer 19

An established NTP connection to the Master Controller

Answer 20

The root account can be used to monitor access points connected to the controller

Answer 21

The guest-provisioning account can see the controller’s configuration but cannot change it

Answer 22

The read-only account cannot delete internal database entries

Answer 23

The guest-provisioning account can make changes to the internal database

Answer 24

Add a new employee to the internal database

Answer 25

Change the “look” and “feel” of the guest provisioning page

Answer 26

Change the available data fields on the guest provisioning page

Answer 27

Add a guest user to the internal database

Answer 28

In an overlay deployment APs are connected directly to the Controller while in a direct deployment, APs are connected to other Layer 2 or Layer 3 devices.

Answer 29

The Controller supplies PoE to APs in an Overlay Deployment while APs draw power from other PoE switches in a Direct deployment

Answer 30

In a direct deployment, APs are directly connected to the controller while in an overlay deployment APs are connected to other Layer 2 or Layer 3 devices.

Answer 31

In an overlay deployment, the APs cannot terminate their GRE tunnels at the controller, while in a direct deployment they can.

Answer 32

Set the horizontal plane on each floor

Answer 33

Give the option to resize a floor

Answer 34

Sets the North/South orientation of the building

Answer 35

Sets the proper vertical floor plan alignment

Answer 36

As many as necessary

Answer 37

the same number as firewall policies

Answer 38

one less than the number of firewall policies

Answer 39

the same number as SSIDs

Answer 40

Prior to granting access to L2 media

Answer 41

After the user has an IP address

Answer 42

After the user sees the captive portal page

Answer 43

Prior to the user associating with the AP

Answer 44

Least specific to most specific

Answer 45

Most specific to least specific

Answer 46

Most important resources first

Answer 47

Order is not important

Answer 48

Pre-authentication role

Answer 49

Post-authentication role

Answer 50

AAA-CP role

Answer 51

VLANs and IP addressing

Answer 52

Controller country code

Answer 53

L3 Authentication

Answer 54

Extensible Authentication Protocol

Answer 55

Support of RADIUS external authentication

Answer 56

Port based authentication

Answer 57

Changing controller IP

Answer 58

Changing the VLAN of a Virtual AP Profile

Answer 59

Creating of a new AP Group

Answer 60

Changing of Controller Roles

Answer 61

Distance to Controller

Answer 62

Environment

Answer 63

Client sets up an IPSEC tunnel with the controller

Answer 64

The AP converts the 802.11 frame to an Ethernet frame and sends this in a GRE tunnel to the controller

Answer 65

The AP decrypts the 802.11 frame and bridges it on the wire

Answer 66

The AP decrypts the 802.11 frame, encrypts it as an Ethernet frame and sends it to the controller

Answer 67

Send a message telling the client it has been blacklisted

Answer 68

De-authenticate the client from the network but allow it to keep transmitting data

Answer 69

Only block the client if it hasn’t yet associated with an AP

Answer 70

Stop the client from associating with any SSID on the controller

Answer 71

L2TP over IPSec is used to carry user traffic and control traffic

Answer 72

PPTP is used to tunnel user traffic

Answer 73

The AP does not encrypt user traffic. The user's link layer encryption is used.

Answer 74

Remote AP traffic is unencrypted

Answer 75

APs in particular AP Group

Answer 76

APs designated as Air Monitors

Answer 77

APs meeting specified search criteria

Answer 78

When a user transmits data through the controller, the validuser ACL is used to check if the user is in the layer 3 user-table

Answer 79

Before a client is added to the controller’s user table, the validuser ACL is checked to make sure the client has a valid IP address

Answer 80

The validuser ACL is used during 802.1X authentication to check that the client is in the layer 3 user-table

Answer 81

When an AP needs to transmit data to a user, it checks the validuser ACL to make sure the user has a valid IP address

Answer 82

Default router

Answer 83

Domain name

Answer 84

Basic controller configuration

Answer 85

License installation

Answer 86

VPN configuration

Answer 87

WLAN configuration

Answer 88

Captive Portal

Answer 89

Which firewall hits were detected that refer to the role

Answer 90

Which profiles refer to the role

Answer 91

What policies are inside the role

Answer 92

What users are currently assigned that role

Answer 93

The Mobility Controller is the client's default router.

Answer 94

The Mobility Controller acts as a bridge.

Answer 95

DHCP can be provided by the network infrastructure or the Mobility Controller

Answer 96

The Mobility Controller supports BGP.

Answer 97

WLAN trunck

Answer 98

Loopback address

Answer 99

Administrator and enable passwords

Answer 100

Native VLANs on a per port basis

Answer 101

WPA-PSK encryption

Answer 102

Server rules are used to send information to the configured servers

Answer 103

A server group can have more than 1 server

Answer 104

If the internal database is used in the server group, then no external servers can be added

Answer 105

If multiple servers are assigned to the server group, all except the 1st will be ignored

Answer 106

Guest user

Answer 107

Internal user

Answer 108

Barcode scanner

Answer 109

Admin user

Answer 110

Radio Type

Answer 111

Anntena Type

Answer 112

Use aliases when possible

Answer 113

Write rules from least specific to most specific

Answer 114

Take actions like blacklisting when users violate policies

Answer 115

Create a different policy for each unique rule

Answer 116

DHCP server connected to the Remote AP’s controller

Answer 117

DHCP server at a branch office

Answer 118

DHCP server inside the Remote AP

Answer 119

All of the above

Answer 120

Controller View

Answer 121

Access Point View

Answer 122

Floor Plan View

Answer 123

Network, Campus and Building View

Answer 124

Firewall Policy

Answer 125

Firewall Rule

Answer 126

DNS query, ADP Broadcast, ADP Multicast, DHCP option 43

Answer 127

DHCP option 43, ADP Multicast, ADP Broadcast, DNS query

Answer 128

DHCP option 43, DNS query, ADP Multicast, ADP Broadcast

Answer 129

ADP Multicast, ADP Broadcast, DHCP option 43, DNS query

Answer 130

Makes policies more readable

Answer 131

Changes to policy rules that use aliases are auto updated.

Answer 132

End users are applied to the proper role

Answer 133

The Mobility Controller is the client's default router.

Answer 134

The Mobility Controller acts as a bridge.

Answer 135

All stations must use the same VLAN

Answer 136

Uplink ports on the Mobility Controller can use 802.1q

Answer 137

Airtime fairness

Answer 138

Coordinated access to a single channel

Answer 139

Co-channel interference mitigation

Answer 140

Client aware scanning

Answer 141

Roles are not used on the Aruba system

Answer 142

Pre-Authentication role

Answer 143

Authenticated role

Answer 144

Unauthenticated role

Answer 145

Set the S3500 IP address to the 172.16.0.0 range

Answer 146

Quick-Setup needs to be enabled on the LCD Panel

Answer 147

Connect the S3500 to the network for DHCP

Answer 148

Set the laptop IP address to the 192.168.0.0 range

Answer 149

MAC addresses of neighboring APs

Answer 150

Security threats in the surroundings

Answer 151

Type of non-802.11 interference detected

Answer 152

Interfering Clients connected to other APs

Answer 153

The root account can be used to monitor access points connected to the controller

Answer 154

The guest-provisioning account can see the controller’s configuration but cannot change it

Answer 155

The read-only account cannot delete internal database entries

Answer 156

The guest-provisioning account can make changes to the internal database

Answer 157

Remote Mesh

Answer 158

All of the above

Answer 159

master controller since it performs the IDS analysis

Answer 160

the local controllers since the APs terminate there

Answer 161

all of the controllers

Answer 162

this isn't the correct license for this purpose

Answer 163

controller's MAC address and the feature description

Answer 164

controller's MAC address and the certificate number

Answer 165

controller's Serial Number and the feature description

Answer 166

controller's Serial Number and the certificate number

Answer 167

Number of APs

Answer 168

Limit One per controller

Answer 169

Number of users

Answer 170

Number of local controllers

Answer 171

AP license

Answer 172

PEF-NG license

Answer 173

PEF-V license

Answer 174

No license required

Answer 175

delete license

Answer 176

write erase

Answer 177

Licenses cannot be deleted once activated

Answer 178

write erase all

Answer 179

Applied to the master controller

Answer 180

Applied to all the controllers in the network

Answer 181

It is based on number of users

Answer 182

It is based on number of APs

Answer 183

Backup master only requires the AP license

Answer 184

License limits should be the same on primary master and backup Master

Answer 185

Licenses are pushed from the primary to the backup Master along with the configuration

Answer 186

Backup Master does not require licenses to support master redundancy

Answer 187

Access List (ACL)

Answer 188

Firewall Policy

Answer 189

RF Plan Map

Answer 190

route dst-nat

Answer 191

redirect to tunnel

Answer 192

Destination

Answer 193

trusted-ap

Answer 194

when the controller is first booted

Answer 195

when an RF Proctect license is added to the controller

Answer 196

when created manually

Answer 197

when a PEF-NG license is added to the controller

Answer 198

the guest role

Answer 199

the stateful role

Answer 200

the initial role in the server group profile

Answer 201

the initial role in the AAA profile

Answer 202

AAA default role for authentication method

Answer 203

Server Derivation Rule

Answer 204

Vendor Specific Attributes

Answer 205

AP Derivation Rule

Answer 206

Roles are assigned to users.

Answer 207

Roles are applied to interfaces.

Answer 208

Policies are built from roles.

Answer 209

A user can belong to only one role at a time.

Answer 210

improve performance

Answer 211

simplify the configuration process

Answer 212

tie IP addresses to ports

Answer 213

assign rules to policies

Answer 214

any alias internal-nets svc-dns permit

Answer 215

user any svc-http permit

Answer 216

user user svc-http permit

Answer 217

any any svc-http permit

Answer 218

source the IP addresses of users to specific IP address

Answer 219

redirect HTTP sessions to Captive Portal

Answer 220

redirect Access Points to another Aruba controller

Answer 221

provide a telnet connection to the controller

Answer 222

provide a single source IP address for users in a role

Answer 223

redirect Captive Portal HTTP sessions

Answer 224

redirect Access Points to another Aruba controller

Answer 225

provide IP addresses to clients

Answer 226

redirect to ESI group

Answer 227

source NAT

Answer 228

destination NAT

Answer 229

redirect to tunnel

Answer 230

the user's traffic will be passed to the IP address because of the policy statement: user any svc-http dst-nat 8080

Answer 231

the user's traffic will be passed to the IP address because of the policy statement: user any svc-https dst-nat 8081

Answer 232

the user's traffic will be passed to the IP address because of the policy statement: user any svc-http-proxy1 dst-nat 8088

Answer 233

the user will not reach the IP address because of the policy statement: user any svc-http dst-nat 8080

Answer 234

the user will not reach the IP address because of the implicit deny any any at the end of the policy.

Answer 235

The rule user host 10.1.1.1 any deny is redundant because of the implicit deny all at the end.

Answer 236

The rule user network 10.1.1.0 255.255.255.0 any permit is redundant because of the user any any permit at the end.

Answer 237

The two rules user network 10.1.1.0 255.255.255.0 any permit and user host 10.1.1.1 any deny need to be re-sequenced.

Answer 238

This list is fine as is.

Answer 239

The frame will be dropped because of the implicit deny all at the end of the netdestination definition

Answer 240

The frame will be dropped because of the implicit deny all at the end of the access list.

Answer 241

The frame will be forwarded because of the implicit permit all at the end of the access list.

Answer 242

The frame will be passed because there is no service specified in the access list.

Answer 243

The frame will be dropped because there is no service specified in the access list.

Answer 244

The frame is discarded because of the implicit deny all at the end of the policy.

Answer 245

The frame is discarded because of the statement: user host 10.1.1.1 host 10.2.2.2 deny.

Answer 246

The frame is accepted because of the statement: user any any permit.

Answer 247

The frame is accepted because of the statement: user network 10.1.1.0 255.255.255.0 any permit.

Answer 248

This is not a valid policy.

Answer 249

This is a session firewall policy.

Answer 250

This is an extended Access Control List (ACL).

Answer 251

Any traffic going to destination 10.1.1.1 will be denied.

Answer 252

Any traffic going to destination 10.2.2.2 will be denied.

Answer 253

Any traffic going to destination 172.16.100.100 will be permitted.

Answer 254

MAC address

Answer 255

OS version

Answer 256

Radius attribute

Answer 257

IP Address

Answer 258

user login name

Answer 259

authentication server

Answer 260

controller Loopback address

Answer 261

greater than

Answer 262

inverse of

Answer 263

controller

Answer 264

authentication server

Answer 265

Internal user database

Answer 266

The controller recognizes the users Domain and sends the authentication request directly to RadiusMiami.

Answer 267

The request is initially sent to RadiusNY1 then RadiusNY1 redirects, the controller, to send the authentication request to RadiusMiami

Answer 268

RadiusNY1 receives the request and returns a deny. No other action is taken.

Answer 269

RadiusNY1 receives the request and returns a deny. The authentications request will then be sent to RadiusMiami.

Answer 270

The user was placed in the 802.1x authentication default Role guest

Answer 271

The user was placed in the initial Role guest

Answer 272

Role derivation failed because roles are case sensitive

Answer 273

Role derivation failed because the incorrect operation “value-of” was used

Answer 274

802.1x authentication failed so the user was automatically placed in the guest Role

Answer 275

The User will get the Emp Role

Answer 276

The user will get the 802.1x authentication default Role

Answer 277

The User will get the employee Role

Answer 278

The User will get the Employee Role

Answer 279

The User will get the initial Role

Answer 280

Virtual-ap ap mesh-radio-profile ap system profile

Answer 281

Wlan ssid-profile ap-system-profile virtual-ap profile

Answer 282

Virtual-ap profile ap-system profile aaa profile

Answer 283

802.1X authentication profile wlan ssid-profile virtual-ap profile

Answer 284

The Captive portal profile has not been assigned to the initial role

Answer 285

The Captive portal profile has not been assigned to the AAA profile

Answer 286

A server group has not been assigned to the captive portal profile

Answer 287

An initial role has not been assigned to the AAA profile

Answer 288

All traffic in vlan 55 will be dropped and all traffic in vlan 56 and 57 will be trunked with and 802.1Q tag

Answer 289

All traffic in vlan 55, 56 and 57 will be trunked with an 802.1Q tag

Answer 290

All traffic in vlan 55 will be sent with an 802.1Q tag while vlan 56 and 57 traffic will be trunked untagged

Answer 291

All traffic in vlan 56 and 57 will be sent with an 802.1Q tag while vlan 55 traffic will be trunked untagged

Answer 292

Logging level debugging security process localdb

Answer 293

Logging level debugging security process l2tp

Answer 294

Logging level debugging security process dot1x

Answer 295

Logging level debugging security process crypto

Answer 296

contractor

Answer 297

you can't tell

Answer 298

contractor

Answer 299

Captive Portal

Answer 300

no role will be assigned

Answer 301

Controller name.

Answer 302

Syslog server and levels.

Answer 303

User firewall policy.

Answer 304

User derivation rules

Answer 305

The air-monitors group

Answer 306

The first configured AP group

Answer 307

The Default AP group

Answer 308

It is only added to the 'All Profiles' section

Answer 309

On startup through the CLI

Answer 310

Through the CLI, after the initial CLI wizard has been completed

Answer 311

In the Web UI under maintenance.

Answer 312

In the Web UI under configuration

Answer 313

The Local's SNMPv3 user name and password

Answer 314

The Master IP address

Answer 315

The Local's loopback address

Answer 316

The IPSec PSK for Master/Local communication

Answer 317

NTP to a time server

Answer 318

Manually setting the date time

Answer 319

Daylight savings time

Answer 320

Only GMT can be configured

Answer 321

Inter-VLAN routing

Answer 322

Source NAT

Answer 323

Controller Wizard

Answer 324

WLAN/LAN Wizard

Answer 325

License Wizard

Answer 326

AP configurations Wizard

Answer 327

Telnet and SSH

Answer 328

Telnet, SSH and rsh

Answer 329

Telnet and SSH

Answer 330

SSH and RSH

Answer 331

It's not possible to access the CLI from within the WebUI

Answer 332

Embedded Telnet client

Answer 333

Java based SSH client

Answer 334

Proprietary serial over Ethernet client

Answer 335

Auditing-compliance user

Answer 336

Read only user

Answer 337

Location-api-management user

Answer 338

Guest provisioning user

Answer 339

Security Logs

Answer 340

Management Logs

Answer 341

Wireless Logs

Answer 342

Network > Controller

Answer 343

Wireless > AP Configuration

Answer 344

Wireless > AP Installation

Answer 345

Advanced Services > Wireless

Answer 346

Advanced Services > All Profiles

	Created by Javier Cortes about 7 years ago

Next up

Prueba

Description

Resource summary

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

Question 25

Question 26

Question 27

Question 28

Question 29

Question 30

Question 31

Question 32

Question 33

Question 34

Question 35

Question 36

Question 37

Question 38

Question 39

Question 40

Question 41

Question 42

Question 43

Question 44

Question 45

Question 46

Question 47

Question 48

Question 49

Question 50

Question 51

Question 52

Question 53

Question 54

Question 55

Question 56

Question 57

Question 58

Question 59

Question 60

Question 61

Question 62

Question 63

Question 64

Question 65

Question 66

Question 67

Question 68

Question 69

Question 70

Question 71

Question 72

Question 73

Question 74

Question 75

Question 76