Securing Routers with AutoSecure Quiz

Questions and Answers

Every quiz on Quizgecko comes with Questions, Flashcards and Study notes to help you learn optimally. Sign up free now.

What action will be taken if more than 5 login failures occur in 60 seconds or less on R1?

Logins will be disabled for 120 seconds

What is the purpose of the 'security authentication failure rate threshold-rate log' command?

To set a threshold for login failures

What type of command is used to verify the login block-for settings and current mode?

show login failures

Which access list is applied during Quiet-Mode on R1?

PERMIT-ADMIN

What does the 'show login failures' command display?

Detailed information about failed attempts

What is the consequence of applying a login delay of 10 seconds on R1?

Successful logins are delayed by 10 seconds

What is the primary purpose of the Cisco AutoSecure feature?

To provide security defaults for Cisco routers

Which of the following is NOT a service/function that can be locked down on the management plane using AutoSecure?

CEF

What is the default mode of operation for Cisco AutoSecure?

Interactive mode

Which type of broadcast should be disabled to ensure terminal access security?

Gratuitous ARP

What protocol is used for legal notification banners on Cisco routers?

MOP

What wizard guides administrators through the configuration of a device when the 'auto secure' command is initiated?

CLI wizard

What is the main purpose of the AutoSecure command?

To secure the management plane by disabling unnecessary services

Which feature allows an admin to define 'views' with specific commands?

Role-Based CLI access

What is the purpose of the Cisco IOS Resilient Configuration feature?

To keep a secure local copy of running image and config files

How can the security of the login process be enhanced if a password attack is suspected?

By shutting down logins and sending log messages

What is the purpose of using Secure Copy Protocol (SCP) on a Cisco router?

To copy config and image files remotely to another device

What is a limitation of privilege levels on a router?

Higher privilege users can access commands specifically set for lower privilege levels.

How does role-based CLI access enhance network security?

By providing specific views of router configurations based on user roles.

What is the purpose of the Root View in role-based CLI access?

To define Views and Superviews for different users.

How do role-based views address operational efficiency for network administrators?

By creating different sets of commands available to different user roles.

What distinguishes CLI View from Root View in role-based CLI access?

CLI View requires all commands to be bundled, unlike the Root View.

Why do privilege levels not provide access control to specific interfaces and slots on a router?

As lower privilege users can execute commands available at higher levels.

What is the purpose of the 'secret' command in the configurations?

To encrypt the passwords for the views

In the configuration, what is the significance of 'superview' in commands like 'parser view SUPPORT superview'?

It designates a higher-level view for the specified view

What does the log message '%PARSER-6-SUPER_VIEW_CREATED: super view 'SUPPORT' successfully created.' indicate?

A support view has been successfully created

What does adding a view like 'VERIFYVIEW' to a superview like 'SUPPORT' indicate in the context of configurations?

The 'VERIFYVIEW' view inherits permissions and access rights from 'SUPPORT'

What is the purpose of specifying a 'secret' in the configurations for views like 'JR-ADMIN'?

To enhance security by setting an encrypted password for the view

What does the log message '%PARSER-6-SUPER_VIEW_EDIT_ADD: view REBOOTVIEW added to superview JRADMIN.' suggest about 'REBOOTVIEW'?

'REBOOTVIEW' has been successfully added to the 'JRADMIN' superview