Labour Day Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Certensure Logo
  1. Home
  2. HP
  3. Aruba Certified Switching Professional (ACSP) V1
  4. HPE6-A73 - Aruba Certified Switching Professional Exam

HP HPE6-A73 Aruba Certified Switching Professional Exam Exam Practice Test

Demo: 18 questions
Total 121 questions
Get HPE6-A73 Full Access Download HPE6-A73 PDF

Aruba Certified Switching Professional Exam Questions and Answers

Question 1

A company uses NetEdit to manage a network of 700 AOS-CX switches and approximately 1,000 other SNMP-capable devices.

Which management solution should the company use to monitor all the devices, as well as see a topology picture of how all the devices are connected together?

Options:

A.

NetEdit

B.

Aruba AirWave

C.

Aruba Activate

D.

Network Analysis Engine (NAE)

Question 2

An administrator is designing an access layer solution in a data center. A key requirement is to dual-home mission-critical server connections to two different switches, ensuring that the servers always have network access, even during switch software upgrades. This feature should support strictly-controlled provisioning.

What would best meet the administrator's needs when deploying AOS-CX switches?

Options:

A.

VSF

B.

Dynamic segmentation

C.

VSX

D.

NAE

Question 3

An administrator is implementing a downloadable user role solution involving AOS-CX switches. The AAA

solution and the AOS-CX switches can successfully authenticate users; however, the role information fails to

download to the switches. What policy should be added to an intermediate firewall to allow the downloadable

role function to succeed?

Options:

A.

Allow TCP 443

B.

Allow UDP 1811

C.

Allow UDP 8211

D.

Allow TCP 22

Question 4

A network engineer for a company with 896 users across a multi-building campus wants to gather statistics on an important switch uplink and create actions based on issues that occur on the uplink. How often does an NAE agent gather information from the current state database in regard to the uplink interfaces?

Options:

A.

Once every 60 seconds

B.

Once every 1 second

C.

Once every 30 seconds

D.

Once every 5 seconds

Question 5

When implementing user-based tunneling on an AOS-CX switch, which component defines the primary and backup Aruba gateways?

Options:

A.

Transit VLAN

B.

Gateway role

C.

Server group

D.

Zone

Question 6

A company has a few servers in a secure, remote location storing highly-confidential documents connected to two AOS-CX 6400 switches configured in a VSX pair The AOS-CX switches perform access control with 802 1X and will be implementing user-based tunneling (UBT) so that Aruba gateway application inspection and stateful firewall policies can be applied to the traffic. The gateways are running version 84 and implement the AP, PEF, and RFP licenses

Which licensing is needed for the two AOS-CX switches?

Options:

A.

2 AP and 2 PEF licenses only

B.

1 AP license only

C.

2 AP, 2 PEF, and 2 RFP licenses only

D.

1 AP, 1 PEF, and 1 RFP licenses only

Question 7

A network has two AOS-CX switches connected to two different service providers. The administrator is

concerned about bandwidth consumption on the service provider links and learned that the service providers were using the company as a transit AS.

Which feature should the administrator implement to prevent this situation?

Options:

A.

Configure route maps and apply them to BGP

B.

Configure the two switches as route reflectors

C.

Configure a classifier policy to disable MED

D.

Configure bi-directional forwarding detection on both switches

Question 8

Examine the VSX-related configuration of the core layer AOS-CX switch:

A network administrator is troubleshooting a connectivity issue involving the VSX LAG (link aggregation) between the core and access layer switch, during HW replacement of one of the core switches.

Which configuration should the administrator add to the core switch to fix this issue?

Options:

A.

ICX-Tx-Core1(config)# vsx

ICX-Tx-Core1(config-vsx)# system-mac 02:01:00:00:01:00

B.

ICX-Tx-Core1(config)# interface lag 1 multi-chassis

ICX-Tx-Core1(config-if-lag-if)# mtu 9198

C.

ICX-Tx-Core1(config)# interface 1/1/46-1/1/47

ICX-Tx-Core1(config-if-vlan)# active-gateway ip 10.1.11.1 mac 02:02:00:00:01:00

D.

ICX-Tx-Core1(config)# interface 1/1/45

ICX-Tx-Core1(config-if-vlan)# active-gateway ip 192.168.0.0 mac 02:02:00:00:01:00

Question 9

Examine the following AOS-CX configuration:

Based on this configuration, which statement is correct regarding IoT traffic?

Options:

A.

If 10.100.1.2 is not reachable, the IoT traffic will be automatically dropped by the switch

B.

If a specific route is not available in the routing table, the traffic will be routed to 10.100.1.2

C.

The next hop of 10.100.1.2 can be one or more hops away from the AOS-CX switch

D.

All routes are ignored in the routing table for IoT traffic, which is routed to 10.100.1.2

Question 10

What is the purpose of the transit VLAN when implementing dynamic segmentation policies involving AOS-CX switches and an Aruba gateway solution?

Options:

A.

It identifies the VLAN that the user traffic will be assigned to when it comes out of the tunnel and is forwarded by the gateway.

B.

It identifies the VLAN that the user traffic will be assigned to, whether the traffic is tunneled or locally switched

C.

It defines the VXLAN identifier to identified UBT traffic between the AOS-CX switches and the gateway solution

D.

It identifies the VLAN that the switch will use when tunneling the traffic to the gateway

Question 11

A network administrator wants to centralize the management of AOS-CX switches by implementing NetEdit.

How should the administrator purchase and/or install the NetEdit solution?

Options:

A.

Install as a hardware appliance

B.

Installed on a supported version of RedHat Enterprise Linux

C.

Installed in a virtualized solution by using the Aruba-supplied OVA file

D.

Installed on a supported version of Debian Linux

Question 12

An administrator will be replacing a campus switching infrastructure with AOS-CX switches that support VSX capabilities. The campus involves a core, as well as multiple access layers. Which feature should the

administrator implement to allow both VSX-capable core switches to process traffic sent to the default gateway in the campus VLANs?

Options:

A.

VRF

B.

VRRP

C.

IP helper

D.

Active gateway

Question 13

Examine the output from an AOS-CX switch implementing a dynamic segmentation solution involving

downloadable user roles:

Switch# show port-access role clearpass

Role information:

Name : icxarubadur_employee-3044-2

Type : clearpass

Status: failed, parsing_failed

Reauthentication Period :

Authentication Mode :

Session Timeout :

The downloadable user roles are not being downloaded to the AOS-CX switch. Based on the above output,

what is the problem?

Options:

A.

The certificate that ClearPass uses in invalid

B.

The AOS-CX switch does not have the ClearPass certificate involved

C.

DNS fails to resolve the ClearPass server’s FQDN

D.

There is a date/time issue between the ClearPass server and the switch

Question 14

Which protocol should be configured to allow NetEdit to discover third-party devices?

Options:

A.

SNMP

B.

SSH

C.

HTTPS

D.

HTTP

Question 15

An AOS-CX switch is configured to implement downloadable user roles. Examine the AOS-CX switch output:

Based on this output, what is the state of the user’s access?

Options:

A.

No downloadable user role exists

B.

MAC authentication has passed, but 802.1X authentication is in progress

C.

The RADIUS request timed out to the AAA server

D.

The port should be configured for 802.1X

Question 16

A network engineer is having a problem adding a custom-written script to an AOS-CX switch’s NAE GUI. The script was written in Python and was successfully added on other AOS-CX switches. The engineer examines the following items from the CLI of the switch:

What should the engineer perform to fix this issue?

Options:

A.

Install the script’s signature before installing the new script

B.

Ensure the engineer’s desktop and the AOS-CX switch are synchronized to the same NTP server

C.

Enable trust settings for the AOS-CX switch’s SSL certificate

D.

Remove a script that is no longer used before installing the new script

Question 17

A network administrator is implementing OSPF, where there are two exit points. Each exit point has a stateful, application inspection firewall to implement company policies.

What would the best practice be to ensure that one firewall will see both directions of the traffic, preventing asynchronous connections in the network?

Options:

A.

Both ASBRs should define External Type 1 routes for the

B.

Both ASBRs should define External Type 1 routes for the

C.

Both ASBRs should define External Type 2 routes for the

D.

Both ASBRs should define External Type 2 routes for the

Question 18

What is correct regarding the configuration of ACLs on AOS-CX switches?

Options:

A.

Statements with the log keyword are always processed by the switch CPU.

B.

Standard ACLs are used to match on routes when performing route distribution.

C.

Wildcard masks are used to match on a range of IP addresses.

D.

Numbers 100 through 199 and 2000 through 2999 are used when creating extended ACLs.

Load More HPE6-A73 Questions
Demo: 18 questions
Total 121 questions
Get HPE6-A73 Full Access Download HPE6-A73 PDF