HPE6-A78 Exam Details

  • Exam Code
    :HPE6-A78
  • Exam Name
    :Aruba Certified Network Security Associate
  • Certification
    :HP Certifications
  • Vendor
    :HP
  • Total Questions
    :167 Q&As
  • Last Updated
    :Jul 08, 2026

HP HPE6-A78 Online Questions & Answers

  • Question 1:

    Refer to the exhibits.

    A company has added a new user group. Users in the group try to connect to the WLAN and receive errors that the connection has no Internet access. The users cannot reach any resources. The first exhibit shows the record for one of the users who cannot connect. The second exhibit shows the role to which the AOS device assigned the user's client.

    What is a likely problem?

    A. The AOS device does not have the correct RADIUS dictionaries installed on it to understand the Aruba-User-Role VSA.
    B. The AOS device has a server derivation rule configured on it that has overridden the role sent by CPPM.
    C. The clients rejected the server authentication on their side because they do not have the root CA for CPPM's RADIUS/EAP certificate.
    D. The role name that CPPM is sending does not match the role name configured on the AOS device.

  • Question 2:

    What is a benefit of deploying Aruba ClearPass Device insight?

    A. Highly accurate endpoint classification for environments with many devices types, including Internet of Things (loT)
    B. visibility into devices' 802.1X supplicant settings and automated certificate deployment
    C. Agent-based analysts of devices' security settings and health status, with the ability to implement quarantining
    D. Simpler troubleshooting of ClearPass solutions across an environment with multiple ClearPass Policy Managers

  • Question 3:

    Which correctly describes a way to deploy certificates to end-user devices?

    A. ClearPass Onboard can help to deploy certificates to end-user devices, whether or not they are members of a Windows domain
    B. ClearPass Device Insight can automatically discover end-user devices and deploy the proper certificates to them
    C. ClearPass OnGuard can help to deploy certificates to end-user devices, whether or not they are members of a Windows domain
    D. in a Windows domain, domain group policy objects (GPOs) can automatically install computer, but not user certificates

  • Question 4:

    Refer to the exhibit.

    You have set up a RADIUS server on an ArubaOS Mobility Controller (MC) when you created a WLAN named "MyEmployees .You now want to enable the MC to accept change of authorization (CoA) messages from this server for wireless sessions on this WLAN.

    What Is a part of the setup on the MC?

    A. Create a dynamic authorization, or RFC 3576, server with the 10.5.5.5 address and correct shared secret.
    B. Install the root CA associated with the 10 5.5.5 server's certificate as a Trusted CA certificate.
    C. Configure a ClearPass username and password in the MyEmployees AAA profile.
    D. Enable the dynamic authorization setting in the "clearpass" authentication server settings.

  • Question 5:

    A company has HPE Aruba Networking Mobility Controllers (MCs), HPE Aruba Networking campus APs, and AOS-CX switches. The company plans to use HPE Aruba Networking ClearPass Policy Manager (CPPM) to classify endpoints by type. The company is contemplating the use of ClearPass's TCP fingerprinting capabilities.

    What is a consideration for using those capabilities?

    A. You will need to mirror traffic to one of CPPM's span ports from a device such as a core routing switch.
    B. ClearPass admins will need to provide the credentials of an API admin account to configure on HPE Aruba Networking devices.
    C. AOS-CX switches do not offer the support necessary for CPPM to use TCP fingerprinting on wired endpoints.
    D. TCP fingerprinting of wireless endpoints requires a third-party Mobility Device Management (MDM) solution.

  • Question 6:

    What is a reason to set up a packet capture on an Aruba Mobility Controller (MC)?

    A. The company wants to use ClearPass Policy Manager (CPPM) to profile devices and needs to receive HTTP User-Agent strings from the MC.
    B. The security team believes that a wireless endpoint connected to the MC is launching an attack and wants to examine the traffic more closely.
    C. You want the MC to analyze wireless clients' traffic at a lower level, so that the ArubaOS firewall can control the traffic I based on application.
    D. You want the MC to analyze wireless clients' traffic at a lower level, so that the ArubaOS firewall can control Web traffic based on the destination URL.

  • Question 7:

    You have an Aruba Mobility Controller (MC) that is locked in a closet. What is another step that Aruba recommends to protect the MC from unauthorized access?

    A. Use local authentication rather than external authentication to authenticate admins.
    B. Change the password recovery password.
    C. Set the local admin password to a long random value that is unknown or locked up securely.
    D. Disable local authentication of administrators entirely.

  • Question 8:

    You need to implement a WPA3-Enterprise network that can also support WPA2- Enterprise clients. What is a valid configuration for the WPA3-Enterprise WLAN?

    A. CNSA mode disabled with 256-bit keys
    B. CNSA mode disabled with 128-bit keys
    C. CNSA mode enabled with 256-bit keys
    D. CNSA mode enabled with 128-bit keys

  • Question 9:

    Refer to the exhibit.

    A diem is connected to an ArubaOS Mobility Controller. The exhibit snows all Tour firewall rules that apply to this diem

    What correctly describes how the controller treats HTTPS packets to these two IP addresses, both of which are on the other side of the firewall:

    10.1 10.10

    203.0.13.5

    A. It drops both of the packets
    B. It permits the packet to 10.1.10.10 and drops the packet to 203 0.13.5
    C. it permits both of the packets
    D. It drops the packet to 10.1.10.10 and permits the packet to 203.0.13.5.

  • Question 10:

    From which solution can ClearPass Policy Manager (CPPM) receive detailed information about client device type OS and status?

    A. ClearPass Onboard
    B. ClearPass Access Tracker
    C. ClearPass OnGuard
    D. ClearPass Guest

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only HP exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your HPE6-A78 exam preparations and HP certification application, do not hesitate to visit our Vcedump.com to find your solutions here.