Securing the Management Plane on Cisco IOS Devices

Question 1

What are the best practices for a secure password?

Answer 1

Alphanumeric, upper case, lower case, non-dictionary

Question 2

When you connect for the first time to the console port on a new router, which privilege level are you using initially when presented with the command-line interface?

Answer 2

1

Question 3

What is not impacted by a default login authentication method list?

Answer 3

HDLC interface

Question 4

You’re trying to configure a method list, and your syntax is correct, but the command is not being accepted. Name four things that might cause this failure?

Answer 4

Incorrect privilege level, AAA not enabled, Wrong mode, Not allowed by the view

Question 5

Cisco recommends which version of Simple Network Management Protocol (SNMP) on your network if you need it?

Answer 5

Version 3

Question 6

How can you implement role-based access control (RBAC)?

Answer 6

Provide the password for a custom privilege level to users in a given role, Associate user accounts with specific views, Use AAA to authorize specific users for specific sets of permissions

Question 7

What protocol indirectly requires the administrator to configure a hostname?

Answer 7

SSH

Question 8

What are the two primary benefits of using NTP along with a syslog server?

Answer 8

Correlation of syslog messages from multiple different devices, Accurate accounting of when a syslog message occurred

Question 9

Which two commands results in a secure bootset?

Answer 9

secure boot-config, secure boot-image

Question 10

What is the difference between a default and named method list?

Answer 10

A named method list must be assigned to an interface or line