If you have decided to participate in the HP HP0-Y11 exam, IT-Tests.com is here. We can help you achieve your goals. We know that you need to pass your HP HP0-Y11 exam, we promise that provide high quality exam materials for you, Which can help you through HP HP0-Y11 exam.
Everyone has a utopian dream in own heart. Dreams of imaginary make people feel disheartened. In fact, as long as you take the right approach, everything is possible. You can pass the HP HP0-Y11 exam easily. Why? Because you have IT-Tests.com's HP HP0-Y11 exam training materials. IT-Tests.com's HP HP0-Y11 exam training materials are the best training materials for IT certification. It is famous for the most comprehensive and updated by the highest rate. It also can save time and effort. With it, you will pass the exam easily. If you pass the exam, you will have the self-confidence, with the confidence you will succeed.
Exam Code: HP0-Y11
Exam Name: HP (ProCurve Security 7.31)
We are doing our utmost to provide services with high speed and efficiency to save your valuable time for the majority of candidates. The HP HP0-Y11 materials of IT-Tests.com offer a lot of information for your exam guide, including the questions and answers. IT-Tests.com is best website that providing HP HP0-Y11 exam training materials with high quality on the Internet. With the learning information and guidance of IT-Tests.com, you can through HP HP0-Y11 exam the first time.
Each IT certification exam candidate know this certification related to the major shift in their lives. Certification exam training materials IT-Tests.com provided with ultra-low price and high quality immersive questions and answersdedication to the majority of candidates. Our products have a cost-effective, and provide one year free update . Our certification training materials are all readily available. Our website is a leading supplier of the answers to dump. We have the latest and most accurate certification exam training materials what you need.
To pass the HP HP0-Y11 exam is a dream who are engaged in IT industry. If you want to change the dream into reality, you only need to choose the professional training. IT-Tests.com is a professional website that providing IT certification training materials. Select IT-Tests.com, it will ensure your success. No matter how high your pursuit of the goal, IT-Tests.com will make your dreams become a reality.
HP0-Y11 (ProCurve Security 7.31) Free Demo Download: http://www.it-tests.com/HP0-Y11.html
NO.1 Click the Exhibit button.
The RADIUS server and switch are correctly configured. The switch has the VLAN assignments and
port-access
commands configured, as shown in the diagram.
What happens to port 10 after the user connects to the network?
A. remains in an unauthorized state
B. becomes a member of VLAN 20
C. becomes a member of VLAN 25
D. becomes a member of VLAN 200
Answer: D
HP HP0-Y11 study guide HP0-Y11 HP0-Y11 HP0-Y11 HP0-Y11
NO.2 Which statements describing the ProCurve switch debug facility are correct? (Select two.)
A. The instrumentation monitor must be enabled first.
B. Specific debug message categories can be selectively enabled.
C. The debug destinations can be set to a session window and a Syslog server concurrently.
D. Debug messages have the same format as standard Event Log messages including the event type
and timestamp.
Answer: BC
HP original questions HP0-Y11 HP0-Y11 questions HP0-Y11 questions
NO.3 Which statement describing dynamic VLAN assignment for 802.1X authenticator ports on ProCurve
switches is correct?
A. If a GVRP-learned VLAN is used, the RADIUS server must specify that attribute.
B. The VLAN used may be statically defined on the switch or learned through GVRP.
C. If a client fails authentication, the port is reassigned to the Secure Management VLAN.
D. If a client is authenticated, but no VLAN attribute is returned by a RADIUS server, the switch blocks the
port.
Answer: B
HP HP0-Y11 HP0-Y11 HP0-Y11 HP0-Y11
NO.4 What is a capability of the Secure Access Wizard supported by ProCurve Identity Driven Manager?
A. It configures 802.1X authenticator ports and RADIUS server settings on a switch.
B. It verifies the integrity of the ProCurve Identity Driven Manager database using Active Directory.
C. It conceals all security-related credentials stored in the switch configuration before backing up the file.
D. It checks a switch configuration file's 802.1X, Web, or MAC authentication settings for consistency and
reports any
errors.
Answer:A
HP HP0-Y11 HP0-Y11 HP0-Y11 test answers HP0-Y11 exam prep
NO.5 Which two EAP methods support tunneling of a weaker authentication method such as MS-CHAPv2?
A. TLS and SIM
B. PAP and SPAP
C. LEAP and FAST
D. PEAP and TTLS
Answer: D
HP HP0-Y11 certification training HP0-Y11 certification HP0-Y11 dumps HP0-Y11 test HP0-Y11 exam dumps
NO.6 Which statements describing the 802.1X user authentication process are correct? (Select two.)
A. The supplicant and authentication server must support the same EAP method for the authentication
process to proceed.
B. A switch passes EAP messages between the supplicant and authentication switch without modification
or translation.
C. After a RADIUS server confirms a user is authenticated, the switch sends an EAP-Success message
and sets the port state to authorized.
D. Different RADIUS servers must be configured on the switch if authentication of both switch
management users and 802.1X supplicants will be performed.
E. If a supplicant receives an EAP-Request message specifying a particular EAP method to be supported,
the authentication session is closed if the supplicant does not support that EAP method.
Answer:AC
HP HP0-Y11 test questions HP0-Y11
NO.7 Which EAP methods support authentication of an 802.1X supplicant based on a user's name and
password? (Select two.)
A. SIM
B. TLS
C. TTLS
D. SPAP
E. PEAP
F. CHAP
Answer: CE
HP exam prep HP0-Y11 study guide HP0-Y11 test questions HP0-Y11 test questions HP0-Y11
NO.8 Network security can be described in terms of multiple layers of security. Which action describes a
perimeter security measure?
A. limiting switch access to SSH
B. deploying 802.1X authentication
C. installing an Intrusion Prevention System
D. using a secure operating system for network applications
Answer: C
HP certification HP0-Y11 test answers HP0-Y11 original questions HP0-Y11 exam HP0-Y11 certification
NO.9 Which protocols are supported by a ProCurve switch for communication with a RADIUS server that is
used to authenticate 802.1X supplicants? (Select two.)
A. EAP-RADIUS
B. MD5-RADIUS
C. CHAP-RADIUS
D. PAP-SPAP-RADIUS
E. MS-CHAPv2-RADIUS
Answer:AC
HP test HP0-Y11 HP0-Y11
NO.10 Which statements describing Web authentication support on ProCurve switches are correct? (Select
two.)
A. An SSL-based login is required.
B. It can be configured on ports that also have MAC authentication assigned.
C. A successfully authenticated user can be redirected to a configurable URL.
D. The switch's built-in DHCP, ARP, and DNS services assist with Web authentication while a port is in
the authenticating state.
E. When a client connects to a Web authenticator port and a Web browser is opened, the Web browser is
automatically redirected to the switch's Web-Auth home page.
Answer: CD
HP answers real questions HP0-Y11 test answers HP0-Y11 HP0-Y11 pdf
NO.11 Which statements describing MAC authentication on ProCurve switches are correct? (Select two.)
A. It can be configured on the same port with Web authentication and 802.1X authentication.
B. The device's MAC address is sent to the RADIUS server as the user name and password.
C. The switch's built-in DHCP server initially assigns an IP address in the 192.168.0.0 private subnet.
D. The switch automatically initiates user authentication of a device when the device communicates on a
MAC authenticator port.
E. Configuration involves defining ports as MAC authenticators, the RADIUS authentication protocol to
use, and then activating the ports for MAC authentication operation.
Answer: BD
HP certification HP0-Y11 pdf HP0-Y11 exam HP0-Y11 HP0-Y11
NO.12 A customer calls you and describes a switch management access problem involving SSH. The
customer indicates that he is denied access after supplying the login credentials. The customer is using a
RADIUS server for centralized authentication, and has used the ping command to verify that the SSH
client, switch, and RADIUS server are all reachable. What is a potential cause of this problem?
A. A self-signed digital certificate has not been installed on the switch.
B. SSH has not been configured for the login access level on the switch.
C. A remote-access policy on the RADIUS server has not been configured to support the CHAP protocol.
D. The digital certificate of the public Certificate Authority used by the switch has not been installed in the
SSH client.
Answer: C
HP HP0-Y11 HP0-Y11 HP0-Y11
NO.13 Authentication of switch management or general network users can involve multiple network
components. Which statement describing these network components is correct?
A. A user directory server operates as the policy enforcement point.
B. The authentication server is also known as the policy decision point.
C. A ProCurve switch functions as a policy repository for switch management access using a remote user
account.
D. A RADIUS access-accept message is used by a client to acknowledge authentication settings
assigned by the server.
Answer: B
HP certification training HP0-Y11 HP0-Y11 exam dumps HP0-Y11
NO.14 You want to use 802.1X port-access authentication to assign Microsoft Active Directory users to a
particular VLAN
based on user credentials. Which condition must exist?
A. The VLAN ID must exist on the switch.
B. The VLAN ID must be defined in a GVRP configuration.
C. The port through which the user is authenticating must be defined as a member of the VLAN.
D. The user must be a member of an Active Directory Group that has an associated RADIUS remote-
access policy.
Answer:A
HP certification training HP0-Y11 certification HP0-Y11 exam
NO.15 You have just installed two ProCurve 5406zl switches, one on the second floor and one on the third
floor of your office. You are using 802.1X for port-access authentication. All users have an 802.1X
supplicant installed on their computers and you have configured a RADIUS server with a remote access
policy for each floor. Shortly after connecting the computers, users on the second floor report that they
cannot access any network resources. You can ping the RADIUS server from both switches, but when
you check the RADIUS log, you see authentication requests coming only from the third floor switch. Why
are the second floor users unable to connect to the network?
A. The IP address of the RADIUS server has not been configured on the second floor switch.
B. The second floor computers are using the wrong EAP type for authentication with the RADIUS server.
C. The shared secret configured on the second floor switch does not match the shared secret configured
on the RADIUS server.
D. No default gateway has been configured on the second floor switch, therefore no authentication
requests can reach the RADIUS server.
Answer:A
HP HP0-Y11 HP0-Y11 HP0-Y11 pdf HP0-Y11
NO.16 You have ProCurve Identity Driven Manager currently deployed in your network and have recently
modified an Access Profile. Which task should you perform next?
A. Restart the IDM Agent.
B. Deploy the configuration.
C. Run the Secure Access Wizard.
D. Update the Access Policy Groups.
E. Start Active Directory synchronization.
F. Rediscover switches affected by the changes.
Answer: B
HP HP0-Y11 HP0-Y11 HP0-Y11 answers real questions HP0-Y11 exam dumps
NO.17 What is an operational difference between the TLS and MD5 EAP methods?
A. TLS uses a challenge/handshake mechanism for authentication; MD5 uses certificates for
authentication.
B. TLS uses a challenge/handshake mechanism for authentication and encryption; MD5 uses certificates
for authentication and encryption.
C. TLS uses digital certificates for mutual authentication; MD5 uses a challenge/handshake mechanism
to authenticate the client to the server.
D. TLS uses a name and password along with digital certificates to produce a session key; MD5 uses a
name and password to produce a session key.
Answer: C
HP HP0-Y11 HP0-Y11 exam prep HP0-Y11 HP0-Y11 HP0-Y11
NO.18 Which EAP method is considered the least secure solution for implementing 802.1X user
authentication on a wireless LAN?
A. SIM
B. MD5
C. TTLS
D. FAST
E. LEAP
F. PEAP
Answer: B
HP HP0-Y11 demo HP0-Y11 certification training HP0-Y11 answers real questions HP0-Y11 demo
NO.19 A university shares a core routing switch between two departments. Each department has a separate
ProCurve edge switch deployed and neither department wants the other to have management access to
their respective switch. Which security measures can prevent management access by the respective
departments? (Select three.)
A. Enable the Privilege Mode option.
B. Configure Authorized IP Managers.
C. Define Secure Management VLANs.
D. Implement Command Authorization.
E. Use RADIUS authentication with separate policies.
Answer: BCE
HP certification HP0-Y11 HP0-Y11 HP0-Y11
NO.20 Which statement describing Web authentication support on the ProCurve Switch 5400zl series is
correct?
A. User credentials or a digital certificate can authenticate the client.
B. It is mutually exclusive of other authentication methods on the same port.
C. After successful user authentication, a port is assigned to a VLAN based on an order of priority.
D. If a port is configured to support multiple users, different static untagged VLANs can be assigned
concurrently.
Answer: C
HP HP0-Y11 HP0-Y11 study guide
If you still desperately cram knowledge and spend a lot of precious time and energy to prepare for passing HP certification HP0-Y11 exam, and at the same time do not know how to choose a more effective shortcut to pass HP certification HP0-Y11 exam. Now IT-Tests.com provide you a effective method to pass HP certification HP0-Y11 exam. It will play a multiplier effect to help you pass the exam.
没有评论:
发表评论