How do you start configuring the command list on CPPM?

A company uses HPE Aruba Networking ClearPass Policy Manager (CPPM) as a TACACS+ server to authenticate managers on its AOS-CX switches. The company wants CPPM to control which commands managers are allowed to enter. You see there is no field to enter these commands in ClearPass.

How do you start configuring the command list on CPPM?
A . Add the Shell service to the managers’ TACACS+ enforcement profiles.
B . Edit the TACACS+ settings in the AOS-CX switches’ network device entries.
C . Create an enforcement policy with the TACACS+ type.
D . Edit the settings for CPPM’s default TACACS+ admin roles.

Answer: A

Explanation:

To control which commands managers are allowed to enter on AOS-CX switches using HPE Aruba Networking ClearPass Policy Manager (CPPM) as a TACACS+ server, you need to add the Shell service to the TACACS+ enforcement profiles for the managers. This service allows you to define and enforce specific command sets and access privileges for users authenticated via TACACS+. By configuring the Shell service in the enforcement profile, you can specify the commands that are permitted or denied for the managers, ensuring controlled and secure access to the switch’s command-line interface.

Latest HPE7-A02 Dumps Valid Version with 450 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments