Upload File

ccna-security-exam-module-3.pdf

prev
next
out of 5
Download CCNA-Security-Exam-Module-3.pdf

Upload: mark-downs

Post on 02-Jun-2018

216 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • 8/11/2019 CCNA-Security-Exam-Module-3.pdf

    1/5

    CCNAS Chapter 3 - CCNA Security: Implementing Network Security (Version 1.0)

    1. Why is local database authentication preferred over a password-only login?A. It specifies a different password for each line or port.B. It provides for authentication and accountability.C. It requires a login and password combination on console, vty lines, and aux ports.D. It is more efficient for users who only need to enter a password to gain entry to a device.

    ANSWER: B

    2. What is a characteristic of AAA?A. Authorization can only be implemented after a user is authenticated.B. Accounting services are implemented prior to authenticating a user.C. Accounting services determine which resources the user can access and which operations the user is allowed to perform.D. Authorization records what the user does, including what is accessed, the amount of time the resource is accessed, and any

    changes that were made.

    ANSWER: A

    3. Due to implemented security controls, a user can only access a server with FTP. Which AAA component accomplishes this?

    A.accessibilityB.accountingC.auditingD.authenticationE.Authorization

    ANSWER: E

    4. Which feature of AAA allows an administrator to track individuals who access network resources, when those resources areaccessed, and any changes that are made?

    A.accountingB.authorization

    C.accessibilityD.authentication

    ANSWER: A

    5. Which two AAA access method statements are true? (Choose two.)A.Character mode provides remote users with access to network resources and requires use of the console, vty, or tty ports.B.Character mode provides remote users with access to network resources and requires use of dialup or VPN.C.Character mode provides users with administrative privilege EXEC access and requires use of the console, vty, or tty ports.D.Packet mode provides users with administrative privilege EXEC access and requires use of dialup or VPN.E.Packet mode provides remote users with access to network resources and requires use of dialup or VPN.F.Packet mode provides users with administrative privilege EXEC access and requires use of the console, vty, or tty ports.

    ANSWER: C,E

    6. What is a difference between using the login local command and using local AAA authentication for authenticating administratoraccess?A. Local AAA authentication supports encrypted passwords; login local does not.B. Local AAA provides a way to configure backup methods of authentication; login local does not.C. A method list must be configured when using the login local command, but is optional when using local AAA authentication.D. The login local command supports the keyword none, which ensures that authentication succeeds, even if all methods return an

    error.

    ANSWER: B

  • 8/11/2019 CCNA-Security-Exam-Module-3.pdf

    2/5

    7. Refer to the exhibit. Router R1 has been configured as shown, with the resulting log message. On the basis of the informationpresented, which two AAA authentication statements are true? (Choose two.)A. The locked-out user failed authentication.B. The locked-out user is locked out for 10 minutes by default.C. The locked-out user should have used the username Admin and password Pa55w0rd.D. The locked-out user should have used the username admin and password Str0ngPa55w0rd.E. The locked-out user stays locked out until the clear aaa local user lockout Admin command is issued

    ANSWER: A,E

    8. Refer to the exhibit. Router R1 is configured as shown. An administrative user attempts to use Telnet from router R2 to router R1using the interface IP address 10.10.10.1. However, Telnet access is denied. Which option corrects this problem?

    A. The R1 10.10.10.1 router interface must be enabled.B. The vty lines must be configured with the login authentication default command.C. The aaa local authentication attempts max-fail command must be set to 2 or higher.

    D. The administrative user should use the username Admin and password Str0ngPa55w0rd.

    ANSWER: D

    9. When configuring a method list for AAA authentication, what is the effect of the keyword local?A.It accepts a locally configured username, regardless of case.B.It defaults to the vty line password for authentication.C.The login succeeds, even if al l methods return an error.D.It uses the enable password for authentication.

    ANSWER: A

  • 8/11/2019 CCNA-Security-Exam-Module-3.pdf

    3/5

  • 8/11/2019 CCNA-Security-Exam-Module-3.pdf

    4/5

    16. Refer to the exhibit. Which Cisco Secure ACS menu is required to configure the IP address and secure password of an AAAclient?

    A. User SetupB. Group SetupC. Network ConfigurationD. System ConfigurationE. Interface ConfigurationF. Administration Control

    ANSWER: C

    17. Refer to the exhibit. Which AAA command must be configured to allow authenticated users administrative access to commandssuch as configure terminal?

    A. aaa authorization exec default group radiusB. aaa authorization exec default group tacacs+C. aaa accounting network default start-stopD. aaa accounting exec default start-stop

    ANSWER: B

    18.What is the result if an administrator configures the aaa authorization command prior to creating a user with full access rights?A.The administrator is immediately locked out of the system.B.The administrator is denied all access except to aaa authorization commands.

    C.The administrator is allowed full access using the enable secret password.D.The administrator is allowed full access until a router reboot, which is required to apply changes

    ANSWER: A

  • 8/11/2019 CCNA-Security-Exam-Module-3.pdf

    5/5

    19. Refer to the exhibit. In the network shown, which AAA command logs the use of EXEC session commands?A. aaa accounting connection start-stop group radiusB .aaa accounting connection start-stop group tacacs+C. aaa accounting exec start-stop group radiusD. aaa accounting exec start-stop group tacacs+E. aaa accounting network start-stop group radiusF. aaa accounting network start-stop group tacacs+

    ANSWER: D

    20. Which aaa accounting command enables logging of both the start and stoprecords for EXEC sessions on the router?

    A.aaa accounting commands 15 start-stop group tacacs+B.aaa accounting connection start-stop group tacacs+C.aaa accounting exec default start-stop group tacacs+D.aaa accounting network default start-stop group tacacs+E.aaa accounting system start-stop tacacs+

    ANSWER: C


Exam Ccna Lab

CCNA Exam Syllabus

CCNA Practice Exam

Cisco Ccna Discovery 4 Module 1 Exam

CCNA 2 Final Exam

CCNA Final Exam

CCNA 2 Final Exam Answers v5.0 2015 (100%) - …ccnav6.com/wp-content/.../CCNA-2-Final-Exam-Answers... · CCNA 2 Final Exam Answers v5.0 2015 (100%) CCNA 5 Page 1 CCNA 2 Final Exam

Final Exam CCNA 3

CCNA Module 4 Final Exam. 77%

Contentsm.simulationexams.com/exam-cram/CCENT-Cheatsheet.pdf · CCNA Network Simulator CCNA Exam Simulator CCENT Exam Simulator CCNA ICND2 Exam Simulator CCNP BSCI Exam Simulator

CCNA Exploration 1 - Module Exam Answers Version 4.0

Cisco Networking Academy Programs: CCNA Exploration 3 - FINAL Exam ... · PDF fileRECENT POSTS CCNA Exploration 4 - FINAL Exam Answers(D) Version 4.0 CCNA Exploration 1 - Module 2

CCNA Exam Questions Explained

Contents · CCNA Network Simulator CCNA Exam Simulator CCENT Exam Simulator CCNA ICND2 Exam Simulator CCNP BSCI Exam Simulator 3 Note : The given procedures are generic in nature,

CCNA Discovery 4 Module 4 Exam Answers Version 4

CCNA 2_Practice Final Exam

CCNA Exam Simulation

CCNA 3 Final Exam V4.0 Answers - cba.plcaptaincisco.cba.pl/final_errors.pdf · Exam Answers CCNA 3 CCNA 3 Practice Final Exam Answers CCNA 4 CCNA 4 Practice Final Exam Answers CCNA

CCNA 2 Final Exam V4.0 Answers - CCNA Answers - CCNA Exam - CCNA Exams

CSN11111 Network Security Module Introduction40001507/CSN11111/Lecture1.pdf · CSN11111 – Network Security Module Introduction . ... CCNA Security Official Exam Certification Guide,

Jarkom CCNA Exam

CCNA Security, Final Exam

CCNA Discovery 3 Module 9 Exam Answers Version 4

CCNA 1 exam

CCNA Exam Question

Print - CCNA Exploration 2 Chapter 1 Exam Answers _ CCNA Exam Answers - CCNA Exam - CCNA Exams

Ccna Exam 2015

CCNA 4 Module 1 Exploration Network Fundamentals Exam Answers 2011

CCNA Exam Answers

CCNA Discovery 3 Module 3 Exam Answers Version 4

Contents - SimulationExamsm.simulationexams.com/exam-cram/CCNA-CheatSheet.pdf · CCNA Network Simulator CCNA Exam Simulator CCENT Exam Simulator CCNA ICND2 Exam Simulator CCNP BSCI

CCNA Module

CCNA Answers CCNA Exam CCNA Examsdocshare01.docshare.tips/files/11622/116225848.pdf · {CCNA 3 Final Exam V4.0 Answers - 68,844 views {CCNA 1 Final Exam Answers 2011 - 65,753

CCNA Exam Answer CCNA 2 Chapter 1

CCNA 1 Module 8 Exam Solutions