Securing Routers with AutoSecure Quiz
29 Questions
0 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to Lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What action will be taken if more than 5 login failures occur in 60 seconds or less on R1?

  • Logins will be disabled for 90 seconds
  • Logins will be disabled for 60 seconds
  • Logins will be disabled for 120 seconds (correct)
  • Logins will be disabled for 180 seconds

What is the purpose of the 'security authentication failure rate threshold-rate log' command?

  • To monitor successful logins
  • To monitor failed logins
  • To set a threshold for login failures (correct)
  • To create ACLs for login attempts

What type of command is used to verify the login block-for settings and current mode?

  • show login block-for
  • show login on-success
  • show login failures (correct)
  • show login on-failure

Which access list is applied during Quiet-Mode on R1?

<p>PERMIT-ADMIN (B)</p> Signup and view all the answers

What does the 'show login failures' command display?

<p>Detailed information about failed attempts (A)</p> Signup and view all the answers

What is the consequence of applying a login delay of 10 seconds on R1?

<p>Successful logins are delayed by 10 seconds (C)</p> Signup and view all the answers

What is the primary purpose of the Cisco AutoSecure feature?

<p>To provide security defaults for Cisco routers (D)</p> Signup and view all the answers

Which of the following is NOT a service/function that can be locked down on the management plane using AutoSecure?

<p>CEF (A)</p> Signup and view all the answers

What is the default mode of operation for Cisco AutoSecure?

<p>Interactive mode (A)</p> Signup and view all the answers

Which type of broadcast should be disabled to ensure terminal access security?

<p>Gratuitous ARP (B)</p> Signup and view all the answers

What protocol is used for legal notification banners on Cisco routers?

<p>MOP (C)</p> Signup and view all the answers

What wizard guides administrators through the configuration of a device when the 'auto secure' command is initiated?

<p>CLI wizard (B)</p> Signup and view all the answers

What is the main purpose of the AutoSecure command?

<p>To secure the management plane by disabling unnecessary services (A)</p> Signup and view all the answers

Which feature allows an admin to define 'views' with specific commands?

<p>Role-Based CLI access (B)</p> Signup and view all the answers

What is the purpose of the Cisco IOS Resilient Configuration feature?

<p>To keep a secure local copy of running image and config files (C)</p> Signup and view all the answers

How can the security of the login process be enhanced if a password attack is suspected?

<p>By shutting down logins and sending log messages (C)</p> Signup and view all the answers

What is the purpose of using Secure Copy Protocol (SCP) on a Cisco router?

<p>To copy config and image files remotely to another device (B)</p> Signup and view all the answers

What is a limitation of privilege levels on a router?

<p>Higher privilege users can access commands specifically set for lower privilege levels. (B)</p> Signup and view all the answers

How does role-based CLI access enhance network security?

<p>By providing specific views of router configurations based on user roles. (A)</p> Signup and view all the answers

What is the purpose of the Root View in role-based CLI access?

<p>To define Views and Superviews for different users. (A)</p> Signup and view all the answers

How do role-based views address operational efficiency for network administrators?

<p>By creating different sets of commands available to different user roles. (B)</p> Signup and view all the answers

What distinguishes CLI View from Root View in role-based CLI access?

<p>CLI View requires all commands to be bundled, unlike the Root View. (A)</p> Signup and view all the answers

Why do privilege levels not provide access control to specific interfaces and slots on a router?

<p>As lower privilege users can execute commands available at higher levels. (C)</p> Signup and view all the answers

What is the purpose of the 'secret' command in the configurations?

<p>To encrypt the passwords for the views (C)</p> Signup and view all the answers

In the configuration, what is the significance of 'superview' in commands like 'parser view SUPPORT superview'?

<p>It designates a higher-level view for the specified view (B)</p> Signup and view all the answers

What does the log message '%PARSER-6-SUPER_VIEW_CREATED: super view 'SUPPORT' successfully created.' indicate?

<p>A support view has been successfully created (C)</p> Signup and view all the answers

What does adding a view like 'VERIFYVIEW' to a superview like 'SUPPORT' indicate in the context of configurations?

<p>The 'VERIFYVIEW' view inherits permissions and access rights from 'SUPPORT' (B)</p> Signup and view all the answers

What is the purpose of specifying a 'secret' in the configurations for views like 'JR-ADMIN'?

<p>To enhance security by setting an encrypted password for the view (C)</p> Signup and view all the answers

What does the log message '%PARSER-6-SUPER_VIEW_EDIT_ADD: view REBOOTVIEW added to superview JRADMIN.' suggest about 'REBOOTVIEW'?

<p>'REBOOTVIEW' has been successfully added to the 'JRADMIN' superview (A)</p> Signup and view all the answers

More Like This

Cisco IPv4 Routing Protocols Quiz
4 questions

Cisco IPv4 Routing Protocols Quiz

AttractiveSitar avatar
AttractiveSitar
Cisco Router Dynamic Routing Protocols
24 questions

Cisco Router Dynamic Routing Protocols

IndustriousClematis avatar
IndustriousClematis
Networking Chapter 9: Single-Area OSPF
40 questions

Networking Chapter 9: Single-Area OSPF

IndebtedOwl avatar
IndebtedOwl
CCNA Security Chapter 2 Quiz
49 questions

CCNA Security Chapter 2 Quiz

IndebtedOwl avatar
IndebtedOwl
Use Quizgecko on...
Browser
Open
Browser
Browser