Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

HP Exam HPE7-A02 Topic 13 Question 14 Discussion

Actual exam question for HP's HPE7-A02 exam
Question #: 14
Topic #: 13
[All HPE7-A02 Questions]

A company wants to apply role-based access control lists (ACLs) on AOS-CX switches, which are implementing authentication to HPE Aruba Networking ClearPass Policy Manager (CPPM). The company wants to centralize configuration as much as possible. Which correctly describes your options?

Show Suggested Answer Hide Answer
Suggested Answer: A

Centralized Role Configuration on CPPM:

CPPM can assign roles to clients dynamically during authentication.

However, the actual ACL policies (e.g., firewall policies) must already exist and be referenced locally on the switch.

CPPM cannot directly configure ACL details on AOS-CX switches.

Option Analysis:

Option A: Correct. The role is defined on CPPM, but it references a policy pre-configured on the switch.

Option B: Incorrect. This does not align with Aruba's centralized role-based access control design.

Option C: Incorrect. CPPM cannot configure the ACL policies and classes directly; they must exist locally.

Option D: Incorrect. Policies can be referenced centrally but not fully configured on CPPM.


by Hari at May 14, 2025, 02:38 AM

Limited Time Offer

25%

Off

Get Premium HPE7-A02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Yvonne
That's a good point, but I still think having some configuration on the switch is necessary for flexibility.
upvoted 0 times
...
Melynda
1 days ago
I disagree, I believe option C is the most efficient as it allows for configuring everything on CPPM.
upvoted 0 times
...
Tamekia
23 days ago
Haha, I bet the person who wrote this question has been dealing with way too many switch configs lately.
upvoted 0 times
Krystina
14 days ago
B) You can configure the role name on CPPM; however, the role settings, including policy and classes, must be configured locally on the switch.
upvoted 0 times
...
Lonny
15 days ago
A) You can configure the role on CPPM; however, the CPPM role must reference a policy name that is configured on the switch.
upvoted 0 times
...
...
Yvonne
24 days ago
I think option A is the best choice because it allows for centralized configuration while still referencing a policy on the switch.
upvoted 0 times
...
Louis
28 days ago
Hmm, I'd go with D. Let's keep the switch config as simple as possible.
upvoted 0 times
...
Fatima
30 days ago
Option C is the way to go. Centralized configuration for the win!
upvoted 0 times
...

Save Cancel