多选题Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?（）ASession-Export policies on

第1题：

Your IT director has decided to allow employees to use their laptops at home as well as in the office. You have deployed the Junos Pulse client to allow access to the offices 802.1X-enabled wired network. Your company also has the Junos Pulse Secure Access Service deployed. You want the Junos Pulse client to automatically launch the appropriate access method depending on each users location. Which three are supported to determine the users location?（）

• A、MAC address
• B、DNS server
• C、DHCP server
• D、resolve address
• E、endpoint address

第2题：

You want to create a security policy on an SRX240 that redirects unauthenticated users back to the Junos Pulse Access Control Service.Which two steps must you take to accomplish this task?（）

• A、Configure a captive-portal service that redirects all traffic back to the Junos Pulse Access Control Service.
• B、Configure a security policy that references the unified-access-control captive-portal service.
• C、Configure a captive-portal service that redirects unauthenticated traffic back to the Junos Pulse Access Control Service.
• D、Configure a security policy that references the unified-access-control intranet-controller service.

第3题：

Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?（）

• A、Roaming Session
• B、Session Migration
• C、Location Awareness
• D、Persistent Session

第4题：

A customer has purchased a new Junos Pulse Access Control Service and wants to install it in an existing cluster.After initial configuration, the customer finds that the firmware version running on the Junos Pulse Access Control Service is 4.1 r5, but the existing cluster is running firmware version 4.1 r3. Which two actions must be performed to allow the new Junos Pulse Access Control Service to load the older version of firmware?（）

• A、Install a valid license on the new Junos Pulse Access Control Service.
• B、When loading the older firmware, delete all the existing data on the Junos Pulse Access Control Service.
• C、Add the new Junos Pulse Access Control Service to the existing cluster.
• D、Download the 4.1 r3 version firmware from the Juniper support website.

第5题：

What are three benefits of IF-MAP Federation?（）

• A、Enables seamless access for remote access users to firewall enforcer protected resources.
• B、Scales a Junos Pulse Access control Service deployment beyond the capacity of a single cluster.
• C、Enables dynamic configuration synchronization across multiple MAG Series devices.
• D、Provides a substitute for WAN clustering among geographically separated MAG Series devices.
• E、Shares non-localized DP integration and IPsec configuration information between multiple Junos Pulse Access Control Service instances.

第6题：

What are two use cases enabled by IF-MAP Federation?（）

• A、Users authenticated to one Junos Pulse Access Control Service can transparently access resources protected by another Junos Pulse Access Control Service.
• B、Users authenticated to a Junos Pulse Access Control Service can transparently access resources protected by a Junos Pulse Secure Access Service.
• C、Remote access users authenticated to a Junos Pulse Secure Access Service can transparently access resources protected by a Junos Pulse Access Control Service.
• D、Remote access users authenticated to one Junos Pulse Secure Access Service can transparently access resources protected by another Junos Pulse Secure Access Service.

第7题：

You are deploying a Junos Pulse Access Control Service cluster in active/passive mode. How do you configure the IP address on the SRX Series devices?（）

• A、Configure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP as the IP address the instance.
• B、Configure multiple Junos Pulse Access Control Service instances on the enforcer, specifying the specific IP address each device in a separate instance.
• C、Configure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP and active node address in the instance.
• D、Configure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP and passive node address in the instance.

第8题：

第9题：

第10题：

第11题：

第12题：

第13题：

When configuring resource access policies in a Junos Pulse Access Control Service device, which entry is permitted when defining the specific resources?（）

• A、Hostname
• B、fully qualified domain name
• C、IP address
• D、address book entry

第14题：

A customer has purchased a third-party switch to use for Layer 2 access with their Junos Pulse Access Controe Service. When configuring the switch on the Junos Pulse Access Control Service, the customer does not find a make/model entry for it . Which two actions should the customer take to make the switch work with the Junos Pulse Access Control Service?（）

• A、Add the switch to the Junos Pulse Access Control Service as a standard RADIUS.
• B、Add the switch to the Junos Pulse Access Control Service using the "Any" make/model.
• C、Add the switch as a firewall enforcer.
• D、Obtain and configure the RADIUS dictionary for the switch and use that vendor listing for the make/model.

第15题：

Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?（）

• A、Session-Export policies on the Junos Pulse Secure Access Service
• B、Session-Export policies on the Junos Pulse Access Control Service
• C、Session-Import policies on the Junos Pulse Secure Access Service
• D、Session-Import policies on the Junos Pulse Access Control Service
• E、Resource access policies on the Junos Pulse Access Control Service

第16题：

You want to provide all users in your corporation with a single agent that provides access to multiple connection types conditionally. For example, you connect to the Junos Pulse Access Control Service if you are connected to the intranet, but you connect to the Junos Pulse Secure Access Service if you are on a remote network. Which agent should you use for this type of connection requirement?（）

• A、Junos Pulse should be configured with location awareness rules configured.
• B、Odyssey Access Client should be installed with Host Checker configured to check the client's location.
• C、Junos Pulse should be configured with all components installed.
• D、Agentless access should be enabled so that clients can connect to any service without concern for installing an agent.

第17题：

You have three classes of users on your network: employee, contractor, and IT administrator. You configure the Junos Pulse Access Control Service to assign roles to each user class and require that a specific wireless SSID be preconfigured for the Odyssey Access Client based on the role. Which configuration method should you use to satisfy this scenario?（）

• A、Create a "Settings Update file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
• B、Configure a wired adapter and assign the required SSID under "User Roles" > "Agent" > "Odyssey Settings".
• C、Create a script in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
• D、Create a "Preconfiguration file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".

第18题：

You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?（）

• A、CLI
• B、WebUI
• C、NSM
• D、Junos Pulse Access Control Service

第19题：

You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?（）

• A、The Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authentication
• B、The Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.
• C、The Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,
• D、The Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.

第20题：

第21题：

第22题：

第23题：

第24题：