ICND1 – Security Testlet
[am4show have=’p2;’]
Premium Member: You can test your knowledge with these questions first via this link.
[/am4show]
Question
[am4show have=’p2;’]RouterA and SwitchA have been configured to operate in a private network which will connect to the Internet. you have been asked to review the configuration prior to cabling and implementation.
This task requires the use of various commands to access and check the running configuration of the two devices. No configuration changes are necessary (and the configuration command has been disabled for these two devices).[/am4show]
Maybe this is the configurations on Router and Switch (but notice that they are surely missing something):
ROUTER A CONFIGURATION
|
! |
SWITCH A CONFIGURATION
|
! banner login ^c line con 0 |
Note: This is just what we gather and guess. In the exam the configurations may be different so make sure you understand about “enable secret”, “enable password”, “login”, “login local”, “transport input”, “line vty”, “service password-encryption”, “bannder motd”, “privilege” before taking this exam!
You can download Packet Tracer file of this teslet here.
This sim has 4 questions:
Question 1
[am4show have=’p2;’]Which of the following is true regarding the configuration of SwitchA?
A. only 5 simultaneous remote connections are possible
B. remote connections using ssh will require a username and password
C. only connections from the local network will be possible
D. console access to SwitchA requires a password
Answer: B[/am4show]
Explanation
There are 16 VTY lines (from 0 to 4 and 5 to 15) so there are more than 5 simutaneous remote connections can be made at the same time -> A is not correct.
There is no restriction on on the Switch so remote networks can connect to this switch -> C is not correct.
There is no config under “line con 0” so console access to this switch does not require a passowrd -> D is not correct.
All 16 VTY lines are configured to access via SSH only and all of them require a password. The difference is in the “line vty 0 4” configuration, the type of login is specified as “login local”. It means that the switch will not use the password configured under “line vty 0 4” (in this case none was set but it will use the user & password configured in “username ciscouser password 0 cisco” command -> B is correct.
Question 2
[am4show have=’p2;’]Which two of the following are true regarding the configuration of RouterA? (choose two)
A. at least 5 simultaneous remote connect are possible
B. only telnet protocol connections to Router A are supported
C. remotely connection to RouterA using telnet will succeed
D. console line connection will never time out due to inactivity
E. since DHCP is not used on Fa0/1 there is not a need to use the NAT protocol
Answer: A C[/am4show]
Explanation
A is correct as we can telnet from line 0 to line 4 (line vty o 4).
We can use both telnet and SSH to connect to this router (transport input telnet ssh) -> B is not correct.
C is correct as we can telnet to it.
D is not correct because by default, the timeout is set to 10 minutes on both the console and the vty ports.
E is not correct as NAT can be used even DHCP is not used.
Question 3
[am4show have=’p2;’]Select the options which are security issues which need to be modified before RouterA is used. (Choose two)
A. unencrypted weak password is configured to protect privilege mode
B. inappropriate wording in banner message
C. the virtual terminal lines have weak password configured
D. virtual terminal lines have a password, but it will not be used
E. configuration supports in-secure web server access
Answer: B D[/am4show]
Explanation
Privilege mode on RouterA is protected with unencrypted password (via “enable password” command). Although this is a good choice but it is not the answer Cisco wants. Answer B is a correct answer instead. This can be explained by this way:
The wording in the banner is inappropriate as it “Welcomes” you to the network. If you are gaining unauthorised access to the device, the first thing you will see is a banner welcoming you. Apparently there has been a case (or cases) where a hacker has used this as a legal defence for gaining illegitimate access to the device. The banner should say something along the lines of “NO UNAUTHORISED ACCESS”.
The password of VTY lines is “4t&34rkf”. Although it is unencrypted but it is not a weak password because it has number & special characters inside -> C is not correct.
Although a password of “4t&34rkf” is configured but with the command “login local”, router will use the username of “ciscouser” & password of “cisco” (configured in “username ciscouser privilege 15 password 0 cisco” command) -> D is correct.
By checking the configuration of routerA with the “show run” command. To support web server access it must have the command “ip http server” but it does not -> E is not correct.
Question 4
[am4show have=’p2;’]Select three options which are security issues with the current configuration of Switch A. (Choose three)
A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default
Answer: A B D[/am4show]
Explanation
The command “no service password-encryption” exists so the password to access privilege mode is not encrypted -> A is correct.
With the “login local” command the VTY lines will require both username and password -> C is not correct.
The username and password are easy to guess as they have common words like “cisco” and “user” -> D is correct.
In all VTY lines only SSH is allowed with the “transport input ssh” -> E is not correct.
To grant privilege level of 15 by default the following commands are required:
line vty 0 4
privilege level 15
or these lines:
username ciscouser privilege 15 password cisco
and
login local (in “line vty 0 4”)
but none can be found so F is not correct.
I think the 2nd comment from this link also refers to this testlet…
https://www.9tut.net/icnd1/share-your-icnd1-experience
He said the configuration shows:
password t$nletu
no login
transport input telnet ssh
username user password 0 cisco
For me the security risks from this config would be the VTY lines has “no login” and the “password 0 cisco” which number 0 makes it a clear text password.
Im planning to take the exam next week and hoping to get more details about this testlet.
Yes, I read that comment and learned that both the router & switch have the line:
“username user password 0 cisco”
By using the “password 0”, the password will not be encrypted and it is an unsecured point of them.
In2weeks commented in the “Share your ICND1 Experience” section about this sim:
“ya i tell you something about new security sim. You must have very clear concepts about telnet, SSH, login, nologin, strong password and weak password (unencrypted) to solve this sim.
You have four multiple choice questions. 2 about the router configuration and other 2 about the switch configuration. Just use #show run command on both to answer.
on a router you have a weak uncrypted password (enable password cisco), this is a security threat.
Telnet is enable and password is set but with #nologin command. that means password is set but their is no use of password (which is security threat). A username ciscouser is made with command #username ciscouser password cisco (this is also a security threat because by using this command the ciscouser gets privileged level 15 automatically by default). you have to identify three security threats in router configuration.
The same thing is with the switch. Only SSH is enable on the switch for remote access. enable password is encrypted but vty passwords are unencrypted. their are 15 vty lines but only 5 simultaneous connections are allowed with login local command and only one user were made. It means that only one user can connect to a switch remotely. Please see Jermy’s ICND 1 CBT Nuggets (Security Video # 1) and video about Management of routers and switches. So you can easily solve that sim.”
can please explain the security threats on the switch …………. i got it for router but for switch its still little confusing ……
Im not sure if this this was designed to make you think about vtp revision numbers but ill try to sum that up.
When you add a new switch into the network environment with vtp running you have to make sure that the newly added switch is completely clean (no vlan.dat) and that it is set to transparent to begin with and not a vtp server.
If the switch is added to the network as a vtp server and has a higher revision number then the other switches in the environment, the other switches think that their information is outdated and updates their vlan info to the newly installed switch and any vlan info it has will be propagated throughout your switches and bringing all you vlans down ….huge bummer.
to check the revision number:
Switch>en
Switch#sho vtp status
VTP Version : 2
Configuration Revision : 0
Maximum VLANs supported locally : 255
Number of existing VLANs : 5
VTP Operating Mode : Server
VTP Domain Name :
VTP Pruning Mode : Disabled
VTP V2 Mode : Disabled
VTP Traps Generation : Disabled
MD5 digest : 0x7D 0x5A 0xA6 0x0E 0x9A 0x72 0xA0 0x3A
Configuration last modified by 0.0.0.0 at 0-0-00 00:00:00
Local updater ID is 0.0.0.0 (no valid interface found)
Switch#
anytime you make a change to vlans on the the vtp server the revision number goes up 1
Warden,
VTP is covered in ICND2, not ICND1 (which is discussed here).
I think the guy who I had quoted had gotten one of the questions wrong:
It’s not about the access level of the user account that was created, but if the password
will be encrypted or not. As in “username ciscouser password 0 ciscopass”
That probably had cost me some points, but I still passed easily.
Almost there.. 8^)
One more thing to this Sim Question is that the “banner” … which is like “WELCOME” something like greeting ….. which should be like “UNAUTHORIZED ACCESS IS NOT ALLOWED” or some message related to that ….. and in the options you will see that one of them is about the banner has inappropriate message. I donno if it is rite or wrong but defiantly as compared to other options it seem quite logical.
Just passed ICND1 today,
Thanks 9tut
and ALL YOU GUYS……………………………
Just Passed ICND1
Thanks
Got hit with the Security Testlet yesterday on the ICND1. Anyone have anymore info?
I had this come up on my ccent:
The banner looks too inviting “Welcome” – If you go through CBTnuggets this is a big no no. Also under telnet you will see no login. This will put you straight into usermode without any password required, which renders any passwords useless.
Also username ciscouser password 0 ciscopass – all passwords plain text
I would have forgotten the “Welcome” bit if I had not seen this thread: CBTNuggets mentions it in passing way early, seems somewhat cheesy to include it as a Q but all is fair game I guess. Also the nologin eliminating the need for the password definitely helped me (I tested this as a result). This item was on the exam yesterday with minor changes but similar, one RTR, one SW, 2 Q each.
I dont really get why a banner would be a security issue if you have strong passwords. For that reason I did not chose banner as one of the security threats.
Is this because it would turn away unauthorized users from tring to access the device?
I plan on retaking this 640 822 exam soon. Hope we get more info on this.
Alot of the same material on 9tut is on exam.
Thanks 9tut for all you do.
Passed the ICND1 today -w- a 937. The Security Testlet was on it again.
Thanks for the great info everyone. On to the next
@TRex: In CBTNuggets, the guy says that a hacker won a court case because the banner of the device he was hacking said “Welcome”. So “… (sic) never use Welcome in server login motd or cisco banners …” is the point.
A hacker was once found innocent because the router he hacked into said” Welcome”. This story is told on CB Nuggets but I have heard it elswhere as well.
This is very basic….maybe you missed something in the studing the hard stuff and an easy one slipped by.
I my self am behind because this test has me intimidated.
sorry to be redundant I didnt scroll down to see the answer already there
@ OneAndDone Thankyou, That will be helpful when i retake the 640-822 exam.
This was on my test and unexpected. The illustration doesn’t really resemble the one on the exam. Wasn’t expecting this. Scored an 800. This was the difference in not passing. Any more detail on this would really be appreciated over the next week. Thanks!
I pass today with score of 900.
This was a very hard exam for me.
I barely had time to finish.
This security testlet was on it and frankly I think I didnt get all the answers correct.
You should look out for security questions regarding telnet and console remote access.
Know the Login and No login commands!
be familiar with the security for passwords.
Make sure you understand username login.
Today! I go to take the ICND1 exam!
I get 887 score in this exam!
The exam is give this Lab to me!
Thanks 9tut!
I had given my ICND exam 1 recently. Got 700. Will be giving the exam next week? There was a question: to identify the cable from the diagram: Ethernet Cross-over Cable, Serial Cross-over Cable, Ethernet Straight Cable, Serial Straight Cable, Rollover cable.
Does anyone have the diagrams for all these cables?
From Waqas – ExamCollections.com This is what i found hope this helps all:
ya i tell you something about new security sim. You must have very clear concepts about telnet, SSH, login, nologin, strong password and weak password (unencrypted) to solve this sim.
You have four multiple choice questions. 2 about the router configuration and other 2 about the switch configuration. Just use #show run command on both to answer.
on a router you have a weak uncrypted password (enable password cisco), this is a security threat.
Telnet is enable and password is set but with #nologin command. that means password is set but their is no use of password (which is security threat). A username ciscouser is made with command #username ciscouser password cisco (this is also a security threat because by using this command the ciscouser gets privileged level 15 automatically by default). you have to identify three security threats in router configuration.
The same thing is with the switch. Only SSH is enable on the switch for remote access. enable password is encrypted but vty passwords are unencrypted. their are 15 vty lines but only 5 simultaneous connections are allowed with login local command and only one user were made. It means that only one user can connect to a switch remotely. Please see Jermy’s ICND 1 CBT Nuggets (Security Video # 1) and video about Management of routers and switches. So you can easily solve that sim.
This above could be wrong??? I just cant find anything else on this question.
i took the exam twice.got 800 – just 4 marks to pass! had this security testlet question mentioned and i didnt get it right. it states something like this
_________________
router configuration
line vty 0 4
password 4t&34rkf
no login
Banner > If you encountered any problem, please consult the administrator
_____________________________________________________________
Identify security threat on the router (select 3)
1) unencrypted password set
2) Unsecured message on banner
3) Remote access through telnet can only be made through SSH
4) user gets level 15 automatically by default
_____________________________________________________________
switch configuration
line console 0
line vty o 4
login
transport input telnet ssh
line vty 5 15
login
transport input telnet ssh
Banner > If you encountered any problem, please consult the administrator
___________________________________________________________________
1) 5 simultatneous connection allowed
2) it allows only remote connection to be make on the network
3) remote connection can only be connected in from the switch
4) Unsecured message on banner
@noname, do you know what the correct answer is?
Router config -> 1,2,4. check no login mean router will get level 15 by default.
Switch-conf .> 2 is incorrect coz already there is :: line console 0
3,4 too
Help! Got this sim both times I took the test and it was the difference in not passing. The above is vague and incorrect. Anybody??
By the way, none of questions or answers even mentioned a Banner.
hi,
i”m not sure wat is the correct ans cos i got tat wrong too!
i chose unsecured message on banner
Somebody must know this???
hello i got a question on port security on switch (choose 3). who knows e ans?
1) switch port mode access
2) switch port mode protected
3) switch port mode trunk
4) telnet
5) switchport mode access
6) switchport mode sticky
I got this question, but there must be multiple versions. You have access to the config files for a router and a switch and 4 questions. 2 questions ask you to identify TWO security problems with each device and the last 2 questions ask you to identify specific details about the device.
“Inappropriate banner message” was an available choice in the first two questions. I selected it for both and my result for the for identifying security threats indicates that it was probably correct.
In my testlet though, only the switch had unencrypted passwords and the router had secure passwords. The router was also configured with the “login local” command in the config.
wh
Thanks sysop,
So, did you use the #show run command and do you remember what your other answers were to the four questions??
Hay i Passed with 860 Today (ICND 1)
This Question was also asked..
Thank You 9tut.
So, does anyone know the answers for the 4 questions?? Everything posted is very confusing.
check above the 9tut explanation.
they are changing quest but you should be familiar with NO LOGIN , Password 0,ciscouser and
password cisco. these are all vulnerabilities…………
i passed nd my ans was 100% correct
Passed today with a 925. The security testlet was on there but I have no idea how i did nor can I really explain it. I know it was a set of 4 questions two each for router and switch. I know you use sho run to get answers. The first set was a choose two for router and switch security. Both had a welcome banner message and both had easy username and password but the questions were not “clear” and did not point out all the possible things wrong so you may have seen something wrong with the security but that did not mean it was one of the answers in the list. The last two questions one for router and switch were single answer choices but I cannot remember what exactly the question was in regards to (something along the lines of based on the config what is true about the operation of the router/switch). Again answers not that clear but I must have got some of it right….
UPDATE: Took a look at my test score breakdown and it appears I got the security portion correct at 100 percent so I must have got this completely correct. So I can tell you the banner MOTD is one of the correct answers but for the life of me I cannot recall the other one. I know some were unencrypted passwords or weak passwords or no login… Sorry…
Thanks for your input lionoprime. And congratulations!
I also can confirm that lionprime’s description sounds very accurate. I checked “inappropriate banner” for the first two and for the switch I stated that the passwords were unencrypted or cleartext. The router though had encrypted passwords though so I don’t remember the other choice I selected for that.
For the last two questions, one of the choices for the router was that vty and ssh were both running.
I just missed passing on my first two tries and did pass on my third attempt yesterday. This was on my exam all three times. Each time the output from the show commands were different and the questions were even different. The last time the questions didn’t even seem to make any sense relative to the output from the devices. They asked about Telneting, Banners, and SSH and none of that was even on the console outputs (which I did correctly).
They say in the preamble to the test that they may include “test” questions which don’t count against your score. I also got 100% on my security part of the breakdown, and I know damn well I didn’t get all of these right. So I seriously wonder if this isn’t one of those “test” questions. I studied everything I could about this and it still didn’t make any sense.
I passed last week with 937, this question was on the exam. I reckon this is just one of Cisco’s test questions that doesnt count towards the result. I got 100% for security, Im fairly sure I got this right anyway.
On the router and switch there are various security threats, some of which are not listed in the answers. You need to know the difference between password types, password encryption, acceptable usernames/passwords etc.
today i have hade this lab. It is as 9 tut. explaind above. I loss a lot of time behind it. The remaining time was not enough to finish all. I am sorry for myself. My score was very poor 712. I shall try again. Thank you 9 tut.
I had this same lab… spend some time but I am not sure I was right or wrong… but passed the exam with 887 marks… Thank you 9tut…
This SECURITY TESTLET, After ‘show run-config’ command, at the top there was ‘service password-encription’ too. I am stil confuge on that question. Any one can hep me to clear my idea. 9tut , please some clear idea on this question. Can help it us all.
i had this testlet today in my test.
Just took the ICND1 today passed with 972 and got this question. One of the questions asks you to determine security problems with security for the switch and another question for the router. Each needed 2 checkboxes and both questions one of the answers was inappropriate banner message because both banners were like:
### Welcome to SwitchA ###
### Welcome to RouterA ###
When reading the cisco press book for ICND I remember that having Welcome in a banner message is a big no no and allows the hacker to justify their actions suggesting that they were welcomed in.
The other checkbox for both questions was about an insecure enable password on the switch. The router had a weak login/password of ciscouser/cisco
I gave my CCENT on 10 March 2011. I got this question. It is easy if you about Security topic.
It has 2 question related to Router and 2 related to Switch. You have to run “Show running-config” command on both device and answer the questions.
There is something related to banner in the Options(multiple choice) like “inappropriate banner command or message”. Do not bother about it because it is not the answer because banner is correctly configured for both device.
The config shown by “kenichi person in top” is correct. there is no login for telnet and ssh.
so the answer is related to it like, you can not login via telnet n ssh.
another answer is like the password is not encrypted because in configuration of devices, you see that “no service password-encryption” is there.
Passed the ICND1 test today with a 874. This security testlet was on the test. The banner selection for both router and switch did say “Welcome…….if you have problems please contact the administrator….” which would make it one of the selected answers. The other two questions (one router, one switch) pertain to which do you think is correct from the selection (multiple choice). I don’t remember what the selections were but it was fairly easy if you understand the login/vty/password setup.
Hi Friends, I want to thanks all of you and special thank to 9tut.net
I passed it today 937.
There are some new questions. The sims are as here but in different subnets and IP but the procedures are the same.
The security questions were the hardest part for me but I git 100%, so please just notice that the login message is not a threat neither in the router nor in the switch.
No login – 5 simultaneous telnet and such a things are the threats just use show run and every thing with a little patient will be fine (Actually I spent 20 mins just on security part) but I finished the exam after 1:10 Hour, so don’t be nervous if you study the official book + Dumps + 9tut.net you will pass %100 hopefully (Insha’allah = If god wants).
There is a comment above from whitten and I had the same experience. I also failed twice. The second time the security questions did not make sense and I ran out of time because I spent too much time trying to make sense of the questions. My results showed 100% in security and I know I did not get 100% correct. My first fail, I just wasn’t prepared but I did not show 100% in security. The first time I had the same security testlet but different questions.
Also, I’ll just throw this in here instead of reposting the same post elsewhere, I took the two failed exams at different testing centers. My first attempt only had a couple drop and drag questions and the security question. My second attempt had almost all the drop and drag questions on this site for ICND1 and the ones described in comments along with the security question. My first attempt I had at least 15 minutes left over which made me think I had plenty of time during the second try and I didn’t. Second try I finished with about 30 seconds left. Please learn from my mistake and if you don’t understand the security question do your best but don’t spend a lot of time on it.
on the new questions regarding the new router and switch prior to deployment it, switch, had no login for VTY lines which leaves it wide open, had 5 simultaneous telnet, had non secure password and the banner had welcome in it. On the router they had ssh installed which made it secure but had the banner labeled with welcome as well. no aaa.. and had weak privilege mode passwords.so the questions were two a piece. The test had about 17 questions directly from here and about 20 questions with mixed and varying degrees of questions her and on the regular CCNA site from 9TUT. Thank you i scored 850 on it and passing was 804 i could not have done it without your help. I used 9tut to rock this test out!!!! tested out today may 11th 2011
I dont passed exam. my score 804/787 i didnt get right this Security Testlet
The answer choices for this question on my exam were, to me, worded in a very strange way. This question for me had 4 questions. Them asking about information on the line console, vty lines, and others that I can’t really remember, I think about the interfaces, i’m not sure. And you basically had to use the show commands to figure them out. As I’ve said, the answer choices were, to me, not quite worded right. I suppose I just need to study more. I made a 787/804 on the test.
Select three options which are security issues with the current configuration of Switch.A. (Choose
three.)
A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default
Just knocked the ICND1 out the park…Thank You 9tut…This site really helped reinforce what I knew and gave me the extra confidence to go take the test…
So of the answers given 2 replies above me, which are the correct answers? Because from all the replies here i cannot get it clear.
Select three options which are security issues with the current configuration of Switch.A. (Choose
three.)
A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default
hello i got a question on port security on switch (choose 3). who knows e ans?
1) switch port mode access
2) switch port mode protected
3) switch port mode trunk
4) telnet
5) switchport mode access
6) switchport mode sticky
Identify security threat on the router (select 3)
1) unencrypted password set
2) Unsecured message on banner
3) Remote access through telnet can only be made through SSH
4) user gets level 15 automatically by default
which two of the following are true regarding the configuration of router A
1) at least 5 simultaneous remote connect are possible
2) only telnet protocol connections to Router A are supported
3) remotely conection to RouterA using telnet will succeed
4) console line connection will nevertime out due to inactivity
5) since DHCP is not used on Fa0/1 ther is not a need to use the NAT protocol
Select teo options which are security issues which need to be modified before RouterA is used
1) unencrypted weak password is configured to protect privilege mode
2) inapropriate wording in banner message
3) the virtual termial lines have weak password configured
4) virtual termial lines have a password, but it will not be used
5) configuration supports un-secure web sever access
Can anyone provide the answers for these questions
Thanks
I an going to take my CCNA ICND1 on saturday if anyone can provide me with some advice and what should I be concentration on
subnetting, subnetting, subnetting…
Anonymous May 16th, 2011
A,B,F?
Are you guys sure about users getting privilege level 15 by default? I don’t think this is the case. I you add a local username without specifying the privilege level it get level 1 by default, at least on my routers
Yes, all privileged users get level 15 by default.
Google this guide ‘Cisco IOS Switch Security Configuration Guide’, you’ll get sense how to treat switch/router security
privileged users are level 15 of course, but by default console logins or vty logins, with or without the “login local” command get assigned privilege 1 (unprivileged user mode). That’s why you have to type enable.
Unless of course you don’t specify manually another default privilege. This could be done in 2 ways:
1, assign privilege 15 to a specific username:
username cisco privilege 15 password cisco
2 assign privilege 15 to telnet or console connections
line vty 0 4 / line console 0
password cisco
privilege level 15
login
Passed ICND1 with 962 yesterday. Had this question on the exam and some others also.Practice all the labs in this site.Thanx for this site.
Going tomm to give the exam .. any sugguestions
Passed today from riyadh/ksa with 962/1000 missed 2 qts,thanks a tons to 9tut.net,ExamCollection.com,CBT Nuggets by Jeremy Cioara,ICND Modules(1 to 6) from cisco.com and special thanks to Cisco.TestKing.640-822.v2011-04-18.by.AttaullahShahid.513q.vce (Examcollection.com).
Important Advice Subnet Subnet Subnet learn subnetting with practise and try to solve the subnet qts just by looking at the netmask.Now Looking forward to ICND2.
Above Qts was there on my Test
I passed tonight with 975/1000. The security sim was on the test. I don’t remember all the details of the configurations. Sorry.
RouterA
_________________
line vty 0 4
password 4t&34rkf
no login
Banner > ### Welcome to RouterA ###
_____________________________________________________________
which two of the following are true regarding the configuration of router A
> 1) at least 5 simultaneous remote connect are possible
2) only telnet protocol connections to Router A are supported
> 3) remotely conection to RouterA using telnet will succeed
4) console line connection will nevertime out due to inactivity
5) since DHCP is not used on Fa0/1 ther is not a need to use the NAT protocol
Identify security threat on the router (select 3)
1) unencrypted password set
2) Unsecured message on banner
3) Remote access through telnet can only be made through SSH
4) user gets level 15 automatically by default
Select two options which are security issues which need to be modified before RouterA is used
1) unencrypted weak password is configured to protect privilege mode
2) inapropriate wording in banner message
3) the virtual termial lines have weak password configured
4) virtual termial lines have a password, but it will not be used
5) configuration supports un-secure web sever access
_____________________________________________________________
SwitchA
enable password cisco
username switch password cisco
line console 0
line vty 0 4
login
transport input telnet ssh
line vty 5 15
login
transport input telnet ssh
Banner > ### Welcome to SwitchA ###
___________________________________________________________________
Select three options which are security issues with the current configuration of Switch.A. (Choose three.)
> A. privilege mode is protected with an unencrypted password
> B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
> D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default
I just finished taking the icnd1.
I scored 100% on security.
I did not select the banner welcome message as a security threat.
will be taking the ICND1 on Wed. July 13th. from all the comments it appears that there are more than a few right answers. Does anyone agree?
I will be taking the ICDN1 exam one July 21 (tomorrow). So far this website has helped tremendously, wish me good luck!
Passed with 920 today. This testlet was on it.
@ Grimster
what was the questions about thes one and what did you answer pls !
Passed with a 987/1000 … scored 100 on security.
I selected the Banner answer for both the switch and router questions.
What I recall.
– The router had “enable password cisco ” Weak privilege mode password
– Switch had “enable secret XXXXXX” strong password
Also, on one of the Device under VTY
-The password was something like “Password KLjo2kld9” – Although this was a password 0 and clear txt, it was not consider as weak in the scenario or base on the other choices i had, “I did not select that answer:”
– I got the IDS question.
– Got a wireless question.. I selected 802.11 has 14 channels which is true, cause the US regulates it to 11.
–
Moving on to part 2.
I also got the IDS question which I got wrong since I wasn’t familiar with it.
I keep looking over some of these postings and to say the least, it’s sort of confusing. You have 3-4 categories of 1-5 and your saying choose 2, but are you supposes to choose 2 out of each category? Emachadorj, you have4 categories and your saying choose 2 from each, do we have to choose exactly 2 from each categories? It’s not that I;m questioning you, but I got stumped by this exact question and I don’t want it to happen again.
Don’t get me wrong I love this site and I think we are all in the same boat because we all want to get ahead and sometimes a little help is needed, but your all saying choose 2 answers but you all listed 4-5 answers. Which is it?
hi.
pass today with 874. this question was there.
Thanks 9tut.
@bigd
there are multiple choice questions on the exam.
it works like this: they ask a question, they tell you to pick N correct answers from the list below, they give you a list of X questions from which to choose.
there can be multiple correct answers for the same question
@XALLAX,
Don’t get me wrong I’m not trying to be difficult, but when you read through some of the above postings it’s hard to differentiate what people are trying to get across. Appreciate you getting back.
no problem, feel free to ask anything, that’s the point of this website
good luck studying
Today i have attended above question. Please update simulation as soon as possible. I passed ICND1 and got 887 out of 1000. Thank you very much for this sites.
the security testlet was there in my exam too, even the one i had failed before anywhere good nuws is dat i passed the retake today with 912/1000. thanks to 9tut for the sims , there were really helpful
Passed ICND1 today. I had this testlet on it. You just need to take your time and go over your answers over and over. It’s a little tricky but if you know what you’re looking for then you’ll be good to go. DO NOT WORRY about the “welcome banner.” It’s not a threat. Focus more on the passwords and logins for line con, ssh, telnet, etc. Thanks 9tut. I will donate in a few minutes. I appreciate the site.
I passed today. This was on there. Make sure you know password rules inside and out, particularly telnet, and what would create a security threat.
I took/passed ICND1. Security Simlet was there. I scored 100% on “Identify security threats to a network…”
Select three options which are security issues with the current configuration of Switch.A. (Choose three.)
> A. privilege mode is protected with an unencrypted password
> B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
> F. Cisco user will be granted privilege level 15 by default
I havent took the exam routing,subneting am good on them but did a little bit of switchin,,,can i take the exam or should i nail switching first?
fever102#….can u plz tell me the three correct answer plz
Passed ICND1 today with 962…..This sim was on the exam, look at fever102#’s post as this is pretty accurate as to what I saw today.
Studied with:
Odom ICND1 Book
Todd Lamle CCNA book
Chris Bryant (thebryantadvantage.com)
I am studying for this exsam, hope i pass i am really enjoying this.
passed ICND1 today. This sim was on exam. Thanks 9tut!!!!!
@facundo..
plz can u give us some explanation about sim
Here you are. I got this questions. My answers were:
Inappropriate wording banner
Weak username and password
Password without using due to the no login command.
My advice to u guys are those:
Pay attention to the passwords in enable password and enable secret commands.
Pay attention to the login or no login when the telnet is set.
When using SSH, pay attention with the username fred password 0 o 15 cisco and the login local command.
Know that always the login command is off in console prompt and is always on in telnet mode.
5 simultaneous telnet sessions
it is easy the security testlets.
@NerroAzurro, there is a Router and a Switch, you have to supply answers to both of the devices. Are the answers the same for both?
@Fever102, don’t you have to do both for Router and Switch? D
Continue from above, don’t you have to supply answers for both Router and Switch? As I remember from first time, you have to select answers for both.
Yes you do have to answer for both Router and Switch. I had this on my exam yesterday and tbh it baffled me.. I got 67% on the security section. Passed overall though.