Overview
You will be given customer scenarios to validate your mastery of campus networking, primarily focusing on wired networking. The exam will also cover aspects of wireless networking, including routing/switching, security, connectivity, performance optimization, and troubleshooting. You will be required to carefully follow the directions to address the customer concerns presented in the customer scenario. This exam will be on simulated hardware.
Advice to help you take this exam
- USING CHROME OR FIREFOX IS REQUIRED.
- Candidates are expected to pass the HPE7-A06 written exam before taking this practical exam.
- Complete the training and review all course materials and documents before taking the exam.
- Use HPE Press study guides and additional reference materials to prepare.
- Exam items are based on expected knowledge acquired from job experience, an expected level of industry-standard knowledge, or other prerequisites (events, supplemental materials, etc.).
- You must demonstrate proficiency at an expert level during this practical exam.
- Completing the course or study materials alone does not guarantee passing the exam.
- A panel of subject matter experts determined the range of possible responses to each practical task and essay question to allow for as many outcomes and responses that meet the requirements. Your responses must fall within this range of possible responses to earn credit for each practical task.
- You may print or email your score report when you finish the exam. If you fail the exam, you must wait 30 days before you can retake it
Quem deve participar
Typical candidates for this exam are senior network engineers or solutions architects with 5+ years of experience with complex networks and mastery of configuration and troubleshooting.
Pré- requisitos
Objetivos do Curso
Network Stack
- Given a customer issue, analyze a solution and troubleshoot
- Encapsulation
- Frame communication
- Application Layer (through the stack)
- Packets
Connectivity
- Develop configurations based on customer requirements
- Apply advanced networking architectures and technologies.
- EVPN, VXLAN, PBR, OSPF, BGP, ECMP, etc.
- Overlay, underlay, NetConductor
- Identify problem areas of a design
- Network architectures
- Device architecture (management plane, data plane, control plane)
- Topologies (loops and performance issues)
- Broadcast, multicast, unicast
- Network stack design issues (QoS, table sizes, etc)
Network Resiliency and virtualization
- Design and troubleshoot mechanisms for resiliency, redundancy, and fault tolerance
- VRRP
- VSX
- VSF
- Virtual IP
- LAG (LACP, Dynamic)
- MLAG (LACP, Dynamic)
- Anycast IP (active gateway CX)
- Gateway Clustering
Switching
- Implement, troubleshoot, and remediate Layer 2/3 including broadcast domains and interconnection technologies
- Broadcast, multicast, unicast
- Spanning tree (MSTP, resiliency)
- 802.1Q Trunk VLAN tagging
- MAC address tables and VLANs
- LLDP
- Loop Protect
- IPv4, IPv6
- ARP/ND
- Interface (SVI, ROP, loopback)
- PoE budget
- Jumbo Frames, MTU
- Flow control
WLAN
- Design and troubleshoot RF attributes and wireless functions
- Broadcast, multicast, unicast
- WPA2, WPA3, PSK
- Roaming
- WMM (CoS, DSCP)
- Rogue AP
- Build a configuration based on customer requirements
- Switch, AP, gateway
- Gateway cluster provisioning (autosite vs autocluster)
- AAA (PSK, SAE, WPA3)
- Tunneled/Mixed (overlay) SSID
- (NetConductor)
- Implement, troubleshoot, and remediate Layer 2 including broadcast domains and interconnection technologies
- Broadcast, multicast, unicast
- Spanning tree (MSTP, resiliency)
- 802.1Q Trunk VLAN tagging
- MAC address tables and VLANs
- LLDP
- Loop Protect
Routing
- Design and troubleshoot routing topologies and functions
- Broadcast, multicast, unicast
- VRRP
- BGP, OSPF, MPLS, ECMP
- PBR
- Underlays and Overlays
- VRF (Route leaking)
- QoS
- EVPN, VXLAN, NetConductor
Security
- Design and troubleshoot implementation of security and concepts in customer networks
- Dynamic Segmentation (UBT, LUR, DUR) Wired captive portal
- Employee/guest access
- Roles
- Hardening (removing unneeded services, adding passwords)
- Rogue AP
- ACLs (stateful, stateless)
- MAC Sec
- GBP
- Physical security
- Given a scenario, troubleshoot wired 802.1X with EAP-TLS
- Firewall policies and roles
- EAP-TLS/captive portal
- Build and troubleshoot GBP
- (Fabric builder, NetConductor)
Authentication/Authorization
- Design and troubleshoot AAA configurations based on requirements
- Port authentication and access control
- MPSK
- AAA (TACACS, RADIUS)
- 802.1X, MAC AUTH, Captive Portal
- Device profiles
- Authentication Stores (active directory, SQL, LDAP, SAML, OAUTH [MFA])
- 802.1X supplicant (client, switch)
- Certificates (types and use cases)
- CoA (Dynamic Authorization)
- Administrative Access (RBAC management)
- Availability of authentication services
- Authentication (caching, failed VLAN, server)
- Create and analyze ClearPass integration
- 802.1X guest and MAC auth services, profiling,
- Integration with wired network, NAD
- Troubleshooting and analyzing AAA events
Troubleshooting
- Perform advanced troubleshooting and remediation of campus networks
- Fault Monitoring
- NAE
- HPE Aruba Networking Central
- NetEdit
- IP-SLA
- AIOps
- UXI
- Advanced Troubleshooting wired (performance connectivity, security)
- Troubleshooting wireless (performance connectivity)
- Advanced Troubleshooting the solution (packet capture, tools, methodologies, routing tables, etc.)
Performance Optimization
- Analyze and remediate performance issues
- Cos/DSCP (mapping)
- WMM (mapping)
- Queuing methods
- LLDP-MED
- Rate limiting and policing
- CoPP QoS
- Fragmentation