Security Testlet Simulator

show question link in the sim is broken

@realpsi: We fixed the link but currently we don’t have enough information about this sim so please grasp the concept well and read all the explanations and comments of this testlet here: https://www.9tut.net/icnd1/icnd1-security-testlet. The decision is yours.

For question one, shouldn’t the question be asking about the Router and not the switch? because one of the correct answers is that the privilege password is not encrypted, and this is only in the router config.

The question that says select 3 options which are security issues with the config on SwitchA is wrong. It should reference RouterA as the switch has no users or passwords set.

I passed my test today! (933 out of 1000)

***This simulation had me pulling my hair out and i went over it, over and over again. Make sure you know router/switch security backwards and forward. Know what each command and the lack of each command does to the security of Cisco devices. You will see a simulation almost identical as this, with minor changes, so know it. I can’t stress how important knowing these topics are too. Take the simulation, study hard on what you got wrong and go google those topics you missed in depth. If you do that you will pass this section with flying colors.***

Good luck!

@9tut
simulators are not working for me with premium subscription

@lakia91: Please check if Flash plugin has been installed in your web browser. If the problem still exists, please take a screenshot and send to support@9tut.net so that we can identify the problem.

This simulation seems to not be correct. I’m pretty sure the answers are wrong. THere are no passwords set on switch and the answers refer to them.

Very poor simulator and has only led to confusion. Q&As don’t make sense.

@Bee the reason it refers to a password is because when you enable SSH the switch will ask for a user name and password for remote connections to it

How are you meant to know where you went wrong when it doesn’t provide any explanations!
Can this be updated?

This simulation gives an idea of what to expect and that’s about it! I’m fairly certain the answers are wrong. The questions doesn’t seem to match the answers provided. 9tut, have you guys had a proper look at all?

Hey so I wanted to go over this to clear a few things up for people who had questions about this Sim:

Question: What are security issues that should be fixed before RouterA is used?

Answer: (1) Inappropriate wording in banner message [It says “Welcome” which means if a hacker gets in they can argue that legally they were welcomed in]. (2) VTY Lines have a Password but it will not be used [the login local command is used so the lines will use the local username and password. >>>Technically the router DOES use a weak and unencrypted “enable” password for privileged mode, which is another choice for the answer here, but since that password access is already protected by another layer of security; the vty password, that is not a security issue that NEEDS to be fixed before the switch is used, even though it is a correct answer, it is not the most correct answer. It is more critical that the “login local” command is being used, which causes the weak username and password to be used!<<<

Question: What is true regarding configuration of SwitchA?

Answer: SSH requires a username and password (SSH always requires a username and password!).

Question: What are issues with current configuration of SwitchA?

Answer: (1) Privilege mode protected by unencrypted weak password. (2) Username and password are weak (3) inappropriate wording in banner message

I don’t understand why my logic is failing me here

Passed today 967/1000 in US in 41 minutes. I studied for about 10 days with CCNA in 60 days and 9tut. Really glad I paid the $9 for the premium membership as this site is 100% legit! I had OSPF, Security Testlet, and Show Configurations SIMs; a couple of questions from the SIMs had with very slight variances. Also about 85% of the multiple choice questions were word for word from 9tut. Definitely know subnetting and be able to do it in your head or use the 15 minutes prior to entering the exam to brain dump and write all your subnets down with 2 to x power up to 10 as this will save you a lot of time. Also get GNS3 or Packet Tracer so you can familiarize yourself with using the CLI and entering commands and using the interface. Don’t even bother with VCEs as the majority of those questions came from here. Good luck!

Trilobyte………..>
Question: What are security issues that should be fixed before RouterA is used?

1. Banner is right..

2. I think, encrypted weak password that should be correct answer because anyone can plug console connection and can enter privilege mode by typing ” cisco” which is weak and easily guessable.

VTY Lines have a Password but it will not be used—–>this is wrong because this password will no effect any security issue.

Hi, 9tut

I have a little confusion, Why the banner message its weak??

I have a question, why the security threat could be the banner motd?
It’s confusion for me because I can’t see which is the issue in this case. Please help me!!!

To All and 9tut
Question: What are security issues that should be fixed before RouterA is used?
1. Banner is right..
2. I think, unencrypted weak password that should be correct answer because anyone can plug console connection and can enter privilege mode by typing ” cisco” which is weak and easily guessable.
VTY Lines have a Password but it will not be used—–>this is wrong because this password will no effect any security issue.
What you think ? Pls answer it.

Please tell me of reason why the banner is right? I dont understand

@9tut hi,

Please help me why the banner motd is insecure? I have a lot of confusion about that.

Thanks

If MOTD banner has wording that implies welcoming than its a security threat. Some one hacked into a system and won the case because the MOTD banner had the word WELCOME in it. So basically the banner needs to state words that warn. hope its makes sense.

Nothing I seem to type gets the simulator to work?
It just says “this command is not supported.”

@Van,try using the show run command.That is all you need for this Sim.

Thanks Rasari for the explanation, I had the question too.

Any update for this sim? There still seems to some gray area here…
Anyone notice the command( login login local?) That has to be a command to throw us off as I do not see that as a viable configuration option. I am just going to go with my gut on the banner thing and hope its what they are looking for. Thanks.

Heyy!!!
In the last question that says:
Select two options wich are security issues wich need to be modified before router A is used?
One correct is the inapropiate wording in banner message.
But the other one that it’s says as correct is:
virtual terminal lines have a password, but it now will be used. But why is not a better answer: unencrypted weak password is configure to protect privilege mode?
Thx in advandce!!

Hi Lahi,
I really appreciate your post and wonder if you could send to my email any material that would help me to pass this test. I plan to take the exam after 10 days, and I don’t know what other material should I use beside the 9tut. my email is lorenemad@yahoo.com
I do appreciate your help and wish you successful life.

9tut,

One of your questions is wrong. One of the questions says to choose two, but there are 3 correct answers. Please see screenshot.

http://i385.photobucket.com/albums/oo293/phuphu1012/misc/9tut.jpg

do you get partial credits on the SIMS in the exam when you get one question right but other question wrong? In this sim in 9tut, with the “choose three”, I checked two of it right but one wrong and I didn’t even get any partial credit.. ..

now I”m scared.

Lahi, I somehow agree with you in totality!!!

I got 973 marks in my ICND1 exam all because of this site both simulators of OSPF and switch from here. Thanks guys for all you support and thanks 9tut for this valuable materila.

Regards

Saeed

Regarding Motd Message I found below on Cisco Website :-

Implement Notification Banners

It is recommended that a legal notification banner is presented on all interactive sessions to ensure that users are notified of the security policy being enforced and to which they are subject. In some jurisdictions, civil and/or criminal prosecution of an attacker who breaks into a system is easier, or even required, if a legal notification banner is presented, informing unauthorized users that their use is in fact unauthorized. In some jurisdictions, it may also be forbidden to monitor the activity of an unauthorized user unless they have been notified of the intent to do so.

Legal notification requirements are complex and vary in each jurisdiction and situation. Even within jurisdictions, legal opinions vary, and this issue should be discussed with your own legal counsel to ensure that it meets company, local, and international legal requirements. This is often critical to securing appropriate action in the event of a security breach.

In cooperation with the company legal counsel, statements that may be included in a legal notification banner include the following:

•Notification that system access and use is permitted only by specifically authorized personnel, and perhaps information about who may authorize use.

•Notification that unauthorized access and use of the system is unlawful, and may be subject to civil and/or criminal penalties.

•Notification that access and use of the system may be logged or monitored without further notice, and the resulting logs may be used as evidence in court.

•Additional specific notices required by specific local laws.

From a security standpoint, rather than a legal, a legal notification banner should not contain any specific information about the device, such as its name, model, software, location, operator, or owner because this kind of information may be useful to an attacker.

The following example displays the banner after the user logs in:

banner login #
UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED
You must have explicit, authorized permission to access or configure this device.
Unauthorized attempts and actions to access or use this system may result in civil and/or
criminal penalties.
All activities performed on this device are logged and monitored.
#

It clearly mentions ” From a security standpoint, rather than a legal, a legal notification banner should not contain any specific information about the device, such as its name, model, software, location, operator, or owner because this kind of information may be useful to an attacker ”

So if MOTD includes device name than it is a security risk.

URL :-
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Security/SAFE_RG/SAFE_rg/chap2.html

@Ken
yep your are right….9tut should fix that !

Hey all…Its just my opinion for the answer to the question

which are security issues wh need to be modified before router A is used? (2 options)

1)One correct is the inapropiate wording in banner message. (” RouterA ( hostname) mentioned in banner)
2)virtual terminal lines have a password, but it will not be used ( although SSH is configured i router its not part of the answer options so I would select this option)

I think we need to read the question carefully here it clearly say “modified before router A is used”

so this can be interpreted what we need to change before using the switch.
so we would need to first telnet or console to it and the next thing we would see is banner motd

Lets agree here that the first command we actually give before entering router user mode is username or password 9 depends on telnet ssh.
once we input that correctly then only we enter user or privilege mode directly.

so actually before using the router we telnet/ssh and then we see motd banner
after that we start using router from user or priviledge modes

This is my conclusion for the answer to the question…

Test on 30th June .. 10 am 🙂
Hopefully all will go well after going thru this content multiple times 🙂

@Lahi

Thanks! Taking my exam on Friday, I studied for 1 month after work. I purchased Boson, CBT Nuggets, 9Tut Premium, and I use Wireshark. I feel ready and will be going over the composite quizzes here to solidify everything.

Hi eveyone, Gave my ICND 1 exam today (Nov-28-15) and passed 965/1000. This sim was on my test along with OSPF sim and Configuration Sim… These question and answer are still valid. Just go through the Quizzes and OSPF, Security & Configuration Simulation. One slight change on Configuration simulation instead of /28 it was /29.. rest 99% of questions were on 9tut… good luck everyone.

Can someone please explain .. security testlet simulator and Security Testlet the answer options do not match and have different answers on the simulator as well.
On the simulator, is it the most current answers?

I have just passed my ICND2. Thanks 9Tut. Off to CCNP now!! All the best to everyone still practicing for this exam. Cheers

Hi everyone, a question @9tut:
why in the premiun menber questions about this sim (security Testlet) you gave as correct answer the ones about the banner and in the explanation link (https://www.9tut.net/icnd1/icnd1-security-testlet) you say these are not correct? Please fix it or give more explanation. Thanx

Hi, I’ve just notice that banners are not the same on switch and router, infact there is a login banner conf on the switch and a motd conf on the router. So the login banner in the switch maybe a security threat, but the one on the router…???
Please any ideas?

Thank you 9tut. Passed my ICND1 yesterday with a 951. The Quiz Questions were exact. I had two sims, the both were the same format as the SIM here but the outputs were different. Far more information to scroll through in the actual sim than here. This gives you a great base to work off. The differences in the Security was, the VTY output here shows login local but in the exam it just has a password. Just above that was the output for username: ciscouser and password cisco.

The very top of the output had: no service encryption password

then enable secret with a password. I lost most of my point here I believe. This one is a little tricky.
The config sim again was the same format just more info to scan thru. know your
Show interface serial command and Show ip interface brief command and you will breeze this one.
I did not have the OSPF sim.

Good Luck. This site is well worth the money
Thanks you again 9tut. off to study for ICND2

Hello, for this Security SIM I am just using Show RUN to get the required information. Is that all you need to do in the exam?

which command i am i suppose to use beacuse show running-config is disabled. i tried different commands but i get wrong out puts which i do not think belongs to the securitytestlet sim.

The “sh run” command works for the sims. That’s what I used.

tomorrow is the day for me…

no service password-encryption
!
enable password cisco

-unencrypted weak password is configured to protect privilege mode (FALSE)
why?

And what is “login login local” in switch output? It is ok?

Took ICND 100-101 today and passed with 951. This site has everything needed to pass the exam, but understanding the material is paramount. Know subnetting because some of the numbers will change on the exam, but for the most part, the questions are as seen here on this site. Also know the show commands as it will save alot of time and frustration, but again the questions are basically the same with a few numbers changing. This site is a great supplemental tool, but should not be relied upon by itself.

HOW do I know if virtual terminal password is being used ?

I’d like the “login login local” issue looked into. I have never seen that line anywhere, and wonder if it’s a mistake. I’d have thought it had to be either “login” or “login local”. From what I can gather, the latter requires a username and password, whereas the former just requires a password.

As it stands, it appears ambiguous, since it could be either of the two versions I posted above, and could alter the answer selected.

Otherwise, good work all around on this site. Thanks a lot.

I read trilobyte’s answer above, and it made some things clearer. I still think the “login login local” is wrong, and confusing, but basically using “login local” removes the requirement to use the vty PW and instead use the weak username and PW already specified.

(I hope that’s correct)

HP @
I tried the same commands in packet tracer and it seems commands are as mentioned below so i agree with ” login login local ” is wrong and please see below which i copied from packet tracer .

line vty 5 15
password telnet
login local

@Me

I was thinking the same thing with the unencrypted weak password to protect privileged mode, I would think that “cisco” is extremely weak and I think I’ll risk it when I take the test and mark that one as well. I think it should probably be choose 3 on that question.

“The virtual terminal lines have a weak password but it will not be used” is a complete wrong answer.

Here is the logic, even if the VTY lines do have a weak password that will not be used (which they will not be used), it doesn’t matter because IT IS NOT USABLE ANYWAY. Once you use the command “login local” then the username password combo is the only thing that will get you into the telnet session. The configured password that sits under line vty 0 4, while it is a great combination for a password, it will be overridden by the username “ciscouser” password “cisco”, that appears from the 3rd line from the top.

So that answer is blatantly wrong.

Inappropriate wording in banner message is correct
But, there is a 3rd issues, unencrypted weak password is configured to protect privilege mode.
^There is actually a weak password set which is CISCO. So this should have 3 answers to the question

1. inappropriate wording
2. unencrypted weak password configured
3. Virtual terminal lines have a weak password configured

Please get that virtual terminal lines….but will not be used out of the system. It’s wrong.

The password of VTY lines is “4t&34rkf”. Although it is unencrypted but it is not a weak password because it has number & special characters inside -> C is not correct.
###It will never use this password ANYWAY since you must login using login local username and password

Although a password of “4t&34rkf” is configured but with the command “login local”, router will use the username of “ciscouser” & password of “cisco” (configured in “username ciscouser privilege 15 password 0 cisco” command) -> D is correct.
###SO this contradicts the one above it…furthermore, how is this a security issue if the password will not be used in the first place? It gets overridden anyway

Another thing, if on SwitchA answer is correct by selecting that there is inappropriate wording then how can Router POSSIBLY not have inappropriate wording? The option for inappropriate wording MUST be one of the answers if it is one of the answers on the switch.

Hi guys. Any ACL questions on ICND1?

Hi

Has anyone created a .PKT Packet tracer file for this SIM??

Would be handy to have.

Thanks in advance

JellyBrain

Thank you so much 9tut, passed exam today. All questions are from here and I don’t encounter any new question. This security testlet came out of the test and this is the only part I get wrong; answers can’t be exactly the same as they made some changes on the question and Its kinda confusing..

Hi guys can you please send me some questions for n+

Hi,

I’ve done this Security Testlet and I wonder if the answer about “Inappropriate wording in banner message” is riskier than “Unencrypted weak password is configured to protect privilege mode”. Someone can help me to clarify the correct answer.

Thanks,

Roberto

I’m not sure I agree with the inappropriate wording in banner message answers but for those of you who are saying that if it is a security concern for the router then it must be for the switch, I would say to pay attention to the fact that on the router the banner used is motd but for the switch it is a login banner, so unless i’m incorrect the banner won’t appear until after the user has authenticated to the switch, thus not a security concern perhaps?
(apologies if this has been said before)

why the answer given in explanation and in Quiz are different. Which one is right?
In question 4.–Answer B is surely not correct as the wording in banner does not leak any security information. but in Quiz it is coming as correct answer. Please advise

Arshick,

The wording in the banner is inappropriate as it “Welcomes” you to the network. If you are gaining unauthorised access to the device, the first thing you will see is a banner welcoming you. Apparently there has been a case (or cases) where a hacker has used this as a legal defence for gaining illegitimate access to the device. The banner should say something along the lines of “NO UNAUTHORISED ACCESS”

Whenever I try to type in a command it simulation keeps saying this command is not supported. What am I doing wrong? I’ve tried Router1#show startup-config and Router1# do show startup-config.
Other commands are giving me the same issue as well. Any know what’s going on?

I figured it out. I had to update java

The question regarding the two security issues on Router A makes 0 sense.

There are 3 correct answers but it is not counting “unencrypted weak password is configured to protect privilege mode” as a good answer even though it’s true and it says it is correct when you review.

Anyone else?

@Anon

I experienced the same. Question 4 should have three right answers and not only two. Or am I wrong?

By question 4 i mean the question “Anon” is writing about.

If the banner is more of a concern than the unencrypted weak password, why then is there no reference to the banner answer in the Explanation field provided? It’s given a possible answer on two of the questions with no mention in the explanation. Was 1 question away from passing on my last test, would be nice to nail this one down and have referenced in the explanation fields provided. Tks.

Having unencrypted weak passwords that are shown in clear text are clearly more a security concern than the local password for telnet, right?

I get that the login local command is used and the username will be ciscouser and cisco as the password, but it still has a password. Passwords being shown in clear text with the “no service password encryption” command seem to be more of a logical security issue.

So whats the answers for Q4:
1-propriate wording in banner message

and what else?

please help

Question 2 seems flawed as far as correct answers.

Review shows correct answers are:

unencrypted weak password is configured to protect privilege mode
Virtual terminal lines have a password, but it will not be used

But it marks the correct answers with green check marks:
inapropriate wording in banner message
Virtual terminal lines have a password, but it will not be used

Will this be fixed on here?

Q1 is broken.

In the ‘review feedback’ section it says the correct answers are:
-unencrypted weak password is configured to protect privilege mode
-virtual terminal lines have a password, but it will not be used

However the correct answers are:
-virtual terminal lines have a password, but it will not be used
-inappropriate wording in banner message

“unencrypted weak password is configured to protect privilege mode” is definitely one of the correct answers, but i got it wrong.

????

Unable to scroll in sim when I issue the show running-config command

Can anyone please confirm in SIM do we actually need to connect cables like console or just need to run the show commands on simulator? Thanks

All simulators open blank router configuration windows blank. Please help.

@whocared you need to type in the comands on the main blank field of each device and the result will populate below.

Everyone,

I took the test for the second time and passed 905!!!!!!!!!! here is my advice:

Do not memorize the answers!!!!! I had some of the same questions that are on 9tut (thanks), but the questions was worded very different and thus is a different answer. Make sure you know your cabling from coaxil, ethernet and fiber – all types!!!! Also the simulators I had where DHCP – same questions – but again the running-configs were VERY different! Make sure you don’t just answer (memorization) you will fail – read and look at the running-configs!!!!! they are Very different and they have different answers!!!!!! Otherwise, test was standard questions. Good luck everyone and Thanks 9tut!

For the security issue for the RouterA questions. I belive it should be 3 correct answers, not 2.
-unencrypted weak password is configured to protect privilege mode
-virtual terminal lines have a password, but it will not be used
-inappropriate wording in banner message

Anyone agree? If not… why not?

question about vty 0 4 where answer is; “password is there but will not be used” i believe it should explain that there is no “login” command AS IT SHOULD BE under vty 0 4. So, without “login” the user would not be prompted to need the password, even. as in, no login required!

anyone?

HI Guys Any body has any update question for the ICND1 I have test soon?

Can any body add commands for this router & switch to answer this questions.

nothing works in this stupid quiz how is it possible to tell what the subnet mask is if I’m only allowed to use sh ip int bri

Does anyone know what show commands, I need to know to complete the simulations?

unfortunately 9tut provide you with the correct answers, but does not inform you what command is needed to retrieve the information.

@Brooklyn: You can read the explanation and commands to complete this simlet at https://www.9tut.net/icnd1/icnd1-security-testlet

What things are necessary to keep in mind to do simulations questions and i am little bit confuse in simulation questions so plz i need some hints.

If you do show run on SwitchA it doesn’t show any passwords yet the questions seem to reference a password and say you’ve got the answer wrong… Don’t know if this is just a typo and the question is meant to say RouterA maybe?

I have this “sh run” result for the RouterA in the Simulator
…
!
banner motd ^C
If you encountered any problem, please consult the administrator
^C
!

So why should I choose the answer “inappropriate wording in banner”? It is a wrong answer for this configuration! But your Sim requires me to answer like that!

Good day guys.

Somebady have the last questions to January 2020 ?