HPE Aruba Certified Switching Associate (ACSA) — Question 1

What is the purpose of using a role mapping policy in an 802.1x service with Active Directory as the authentication source?

Answer options

• A. to translate and combine AD attributes into ClearPass roles
• B. to send roles from ClearPass to the AD user to update a user’s group membership
• C. to enable attributes as roles directly without needing role mapping rules
• D. to send Aruba firewall roles back to the Aruba Network Access Device
• E. to send details of a user’s connection to the AD user to store in its database

Correct answer: B

Explanation

The correct answer is B because a role mapping policy allows ClearPass to communicate updated roles to the Active Directory user, facilitating changes in group membership. Option A is incorrect as it refers to translating attributes rather than sending them. Options C, D, and E do not accurately describe the primary function of the role mapping policy in this context.