HPE Aruba Certified Campus Access Professional (ACAP) — Question 30

In which of these scenarios do the customer requirements point towards tunneled node, or dynamic segmentation, on AOS-Switches?

Answer options

• A. A customer has wired IoT devices and wants to be able to control their access. The architect recommends sending all of their traffic through the MC role-based firewall.
• B. A customer wants to manage their AOS-Switches in a more centralized manner. They would like to connect AOS-Switches to AirWave over secure IPsec tunnels and control all configuration from there.
• C. A customer has a branch office with an AOS-Switch and an Internet connection. The customer would like to give branch office users secure access to the corporate LAN over an IPsec tunnel.
• D. A customer lacks physical security and wants to impose 802.1X authentication on wired ports. After employees complete 802.1X authentication, they should receive full access to the network.

Correct answer: B

Explanation

The correct answer is B, as it describes a scenario where the customer seeks centralized management of AOS-Switches through secure IPsec tunnels to AirWave, which aligns with the concept of tunneled node. Options A, C, and D do not focus on centralized management or dynamic segmentation, making them less relevant for this requirement.