Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

HPE6-A84 by Hp - Page 1 | ExamCademy

Mode Selection

Question 1

Question 2

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Know a question that should be here? Contribute to this exam

Refer to the scenario.
A customer has an Aruba ClearPass cluster. The customer has AOS-CX switches that implement 802.1X authentication to ClearPass Policy Manager (CPPM).
Switches are using local port-access policies.
The customer wants to start tunneling wired clients that pass user authentication only to an Aruba gateway cluster. The gateway cluster should assign these clients to the “eth-internet" role. The gateway should also handle assigning clients to their VLAN, which is VLAN 20.
The plan for the enforcement policy and profiles is shown below:

The gateway cluster has two gateways with these IP addresses:
• Gateway 1
o VLAN 4085 (system IP) = 10.20.4.21
o VLAN 20 (users) = 10.20.20.1
o VLAN 4094 (WAN) = 198.51.100.14
• Gateway 2
o VLAN 4085 (system IP) = 10.20.4.22
o VLAN 20 (users) = 10.20.20.2
o VLAN 4094 (WAN) = 198.51.100.12
• VRRP on VLAN 20 = 10.20.20.254
The customer requires high availability for the tunnels between the switches and the gateway cluster. If one gateway falls, the other gateway should take over its tunnels. Also, the switch should be able to discover the gateway cluster regardless of whether one of the gateways is in the cluster.
Assume that you are using the “myzone” name for the UBT zone.
Which is a valid minimal configuration for the AOS-CX port-access roles?

Question Image

A port-access role eth-internet gateway-zone zone myzone gateway-role eth-user
B port-access role internet-only gateway-zone zone myzone gateway-role eth-internet
C port-access role eth-internet gateway-zone zone myzone gateway-role eth-internet vlan access 20
D port-access role internet-only gateway-zone zone myzone gateway-role eth-internet vlan access 20

Several AOS-CX switches are responding to SNMPv2 GET requests for the public community. The customer only permits SNMPv3. You have asked a network admin to fix this problem. The admin says, “I tried to remove the community, but the CLI output an error.”
What should you recommend to remediate the vulnerability and meet the customer’s requirements?

A Enabling control plane policing to automatically drop SNMP GET requests
B Setting the snmp-server settings to “snmpv3-only”
C Adding an SNMP community with a long random name
D Enabling SNMPv3, which implicitly disables SNMPv1/v2

HPE6-A84Preview

Mode Selection

Question 1

Question 2

That's the end of the Preview