HPE Aruba Certified Campus Access Expert (ACAEX) — Question 22
A company deployed Dynamic Segmentation with their CX switches and gateways. After performing a security audit on their network discovered that the tunnels built between the CX switch and the HPE Aruba Networking gateway are not encrypted. The company is concerned that bad actors could try to insert spoofed messages on the gateway to disrupt communications or obtain information about the network.
Which action must the administrator perform to address this situation?
Answer options
- A. Enable Enhanced security
- B. Enable Secure Mode Enhanced
- C. Enable Enhanced PAPI security
- D. Enable GRE security
Correct answer: B
Explanation
Enabling Secure Mode Enhanced is necessary to ensure the encryption of tunnels between the CX switch and the HPE Aruba Networking gateway, thus preventing unauthorized access and spoofing. The other options do not specifically address the need for encryption in the tunnels and may not provide the necessary level of security against potential threats.