HPE Aruba Certified WAN Associate (ACWA) — Question 12

When should a role mapping policy be used in an 802.1x service with Active Directory as the authentication source?

Answer options

• A. When you want to match Active Directory attributes directly to an enforcement policy.
• B. When you want to match Active Directory attributes to an Aruba firewall role on an Aruba Network Access Device.
• C. When you want to translate and combine Active Directory attributes into ClearPass roles.
• D. When you want to enable attributes as roles directly without combining multiple attributes.

Correct answer: A

Explanation

The correct answer is A because a role mapping policy is specifically designed to align Active Directory attributes with an enforcement policy directly. The other options, while related to Active Directory attributes, either involve additional steps like combining attributes (C) or relate to specific devices like the Aruba firewall (B), which do not fit the direct matching requirement of the question.