Securing Routers with AutoSecure Quiz
29 Questions
0 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What action will be taken if more than 5 login failures occur in 60 seconds or less on R1?

  • Logins will be disabled for 90 seconds
  • Logins will be disabled for 60 seconds
  • Logins will be disabled for 120 seconds (correct)
  • Logins will be disabled for 180 seconds
  • What is the purpose of the 'security authentication failure rate threshold-rate log' command?

  • To monitor successful logins
  • To monitor failed logins
  • To set a threshold for login failures (correct)
  • To create ACLs for login attempts
  • What type of command is used to verify the login block-for settings and current mode?

  • show login block-for
  • show login on-success
  • show login failures (correct)
  • show login on-failure
  • Which access list is applied during Quiet-Mode on R1?

    <p>PERMIT-ADMIN (B)</p> Signup and view all the answers

    What does the 'show login failures' command display?

    <p>Detailed information about failed attempts (A)</p> Signup and view all the answers

    What is the consequence of applying a login delay of 10 seconds on R1?

    <p>Successful logins are delayed by 10 seconds (C)</p> Signup and view all the answers

    What is the primary purpose of the Cisco AutoSecure feature?

    <p>To provide security defaults for Cisco routers (D)</p> Signup and view all the answers

    Which of the following is NOT a service/function that can be locked down on the management plane using AutoSecure?

    <p>CEF (A)</p> Signup and view all the answers

    What is the default mode of operation for Cisco AutoSecure?

    <p>Interactive mode (A)</p> Signup and view all the answers

    Which type of broadcast should be disabled to ensure terminal access security?

    <p>Gratuitous ARP (B)</p> Signup and view all the answers

    What protocol is used for legal notification banners on Cisco routers?

    <p>MOP (C)</p> Signup and view all the answers

    What wizard guides administrators through the configuration of a device when the 'auto secure' command is initiated?

    <p>CLI wizard (B)</p> Signup and view all the answers

    What is the main purpose of the AutoSecure command?

    <p>To secure the management plane by disabling unnecessary services (A)</p> Signup and view all the answers

    Which feature allows an admin to define 'views' with specific commands?

    <p>Role-Based CLI access (B)</p> Signup and view all the answers

    What is the purpose of the Cisco IOS Resilient Configuration feature?

    <p>To keep a secure local copy of running image and config files (C)</p> Signup and view all the answers

    How can the security of the login process be enhanced if a password attack is suspected?

    <p>By shutting down logins and sending log messages (C)</p> Signup and view all the answers

    What is the purpose of using Secure Copy Protocol (SCP) on a Cisco router?

    <p>To copy config and image files remotely to another device (B)</p> Signup and view all the answers

    What is a limitation of privilege levels on a router?

    <p>Higher privilege users can access commands specifically set for lower privilege levels. (B)</p> Signup and view all the answers

    How does role-based CLI access enhance network security?

    <p>By providing specific views of router configurations based on user roles. (A)</p> Signup and view all the answers

    What is the purpose of the Root View in role-based CLI access?

    <p>To define Views and Superviews for different users. (A)</p> Signup and view all the answers

    How do role-based views address operational efficiency for network administrators?

    <p>By creating different sets of commands available to different user roles. (B)</p> Signup and view all the answers

    What distinguishes CLI View from Root View in role-based CLI access?

    <p>CLI View requires all commands to be bundled, unlike the Root View. (A)</p> Signup and view all the answers

    Why do privilege levels not provide access control to specific interfaces and slots on a router?

    <p>As lower privilege users can execute commands available at higher levels. (C)</p> Signup and view all the answers

    What is the purpose of the 'secret' command in the configurations?

    <p>To encrypt the passwords for the views (C)</p> Signup and view all the answers

    In the configuration, what is the significance of 'superview' in commands like 'parser view SUPPORT superview'?

    <p>It designates a higher-level view for the specified view (B)</p> Signup and view all the answers

    What does the log message '%PARSER-6-SUPER_VIEW_CREATED: super view 'SUPPORT' successfully created.' indicate?

    <p>A support view has been successfully created (C)</p> Signup and view all the answers

    What does adding a view like 'VERIFYVIEW' to a superview like 'SUPPORT' indicate in the context of configurations?

    <p>The 'VERIFYVIEW' view inherits permissions and access rights from 'SUPPORT' (B)</p> Signup and view all the answers

    What is the purpose of specifying a 'secret' in the configurations for views like 'JR-ADMIN'?

    <p>To enhance security by setting an encrypted password for the view (C)</p> Signup and view all the answers

    What does the log message '%PARSER-6-SUPER_VIEW_EDIT_ADD: view REBOOTVIEW added to superview JRADMIN.' suggest about 'REBOOTVIEW'?

    <p>'REBOOTVIEW' has been successfully added to the 'JRADMIN' superview (A)</p> Signup and view all the answers

    More Like This

    Cisco Router Dynamic Routing Protocols
    24 questions
    w3ch3
    160 questions

    w3ch3

    ProdigiousQuantum avatar
    ProdigiousQuantum
    Use Quizgecko on...
    Browser
    Browser