HPE Aruba Certified Edge Associate (ACEA) — Question 7
A customer needs you to configure Aruba ClearPass Policy Manager (CPPM) to authenticate domain users on domain computers. Domain users, domain computers, and domain controllers receive certificates from a Windows CA. CPPM should validate these certificates and verify that the users and computers have accounts in Windows AD. The customer requires encryption for all communications between CPPM and the domain controllers.
You have imported the root certificate for the Windows CA to the ClearPass CA Trust list.
Which usages should you add to it based on these requirements?
Answer options
- A. Radec and Aruba infrastructure
- B. EAP and AD/LDAP Server
- C. EAP and Radsec
- D. LDAP and Aruba infrastructure
Correct answer: C
Explanation
The correct answer is C, as EAP and Radsec are necessary to ensure secure authentication and encrypted communication between CPPM and the domain controllers. Options A, B, and D do not fulfill the requirement for encrypted communication, which is critical for the security of the authentication process in this scenario.