While configuring the service rule conditions which NAS-Port-Type value should be used to differentiate the service for wired and wireless authentication?

You art deploying Cleat Pass Policy Manager with Guest functionality for a customer with multiple Aruba Networks Mobility Controllers. The customer wants to avoid SSL errors during guest access but due to company security policy cannot use a wildcard certificate on ClearPass or the Controllers.
What is the most efficient way to configure the customer's guest solution? (Select two.)

You have configured a factory default Aruba controller with Clear Pass for guest access and the NAS vendor settings - Address field in the guest weblogin page is configured with Aruba controller's default self-signed certificate common name "securelogin.arubanetworks.com" that the client will use to submit the authentication request.
What happens when the client sends a DNS request to securelogin aruba networks com?

Refer to the exhibit.

Your customer has configured the 802.1 X service enforcement conditions with the Endpoint profiling dat a. When the client connects to the network. ClearPass successfully profiles the client but the client always receives an incorrect enforcement profile The configurations in the Aruba controller are completed correctly What is the cause of the issue?

Refer to the exhibit.



A customer hat configured the Aruba Controller for administrative authentication using ClearPass as A TACAC5 serve' During tasting, the read-only user is getting the root access role What could be a possible reason for this behavior? (Select two.)