Home > Security Questions

Security Questions

October 27th, 2018 Go to comments

Question 1

Explanation

The service password-encryption command will encrypt all current and future passwords so any password existed in the configuration will be encrypted.

Question 2

Explanation

Usually we enter a command like this:

username bill password westward

And the system display this command as follows:

username bill password 7 21398211

The encrypted version of the password is 21398211. The password was encrypted by the Cisco-defined encryption algorithm, as indicated by the “7”.
However, if you enter the following command: “username bill password 7 21398211”, the system determines that the password is already encrypted and performs no encryption. Instead, it displays the command exactly as you entered it.

Reference: http://www.cisco.com/c/en/us/td/docs/ios/12_2/security/configuration/guide/fsecur_c/scfpass.html#wp1001412

Question 3

Question 4

Question 5

Explanation

This configuration will let someone telnet to that router without the password (so the line “password c1sco” is not necessary).

Question 6

Explanation

802.1x is an IEEE Standard for port-based Network Access Control (PNAC). It is part of the IEEE 802.1 group of networking protocols. It provides an authentication mechanism to devices wishing to attach to a LAN.

Question 7

Explanation

All other answers are not recommended for a network security plan so only B is the correct answer.

Question 8

Explanation

The “enable secret” password is always encrypted (independent of the “service password-encryption” command) using MD5 hash algorithm.

Note: The “enable password” does not encrypt the password and can be view in clear text in the running-config. In order to encrypt the “enable password”, use the “service password-encryption” command. In general, don’t use enable password, use enable secret instead.

Comments (27) Comments
  1. Leaks
    February 21st, 2017

    New Update, My student passed today. Latest 100% VALID CCNA Security 210-260 Exam Questions Dumps at below page including all labs in Packet Tracer format. Working VCE player also included in package
    INSTANT Download at below page:

    https://anon.click/bijus95

  2. datsmyaggro@yahoo.com
    March 13th, 2017

    looking for the latest dumps for CCNA Security Certification. Looking to take the test soon. Thanks.

    email is the name

  3. SlimShaddy
    March 23rd, 2017

    How come exec mode user privilage is achieved by setting privilage to 1 in the indicated answer A for question 3? Can someone explain please?

  4. jojo
    May 24th, 2017

    Question 14. Really SSH? because ssh is used for secure remote login to device, not for encrypted traffic. SSH doesnt carry data. I would say VPN – see http://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/14106-how-vpn-works.html

  5. froggen
    June 8th, 2017

    @jojo Q14 is a bad question for the CCNA. SSH is capable of tunneling traffic over a leased line. Putting a VPN into a Leased Line would be like putting a tunnel into an already existing tunnel.

  6. Becky
    June 29th, 2017

    How come the following statement:
    device-administration packets are encrypted in their entirely

    is true in Q9 but false in Q1.

  7. Josiah
    June 30th, 2017

    Passed today, Labs are same as the one here. Questions were all from this dumps #"fixed">

  8. osman
    July 4th, 2017

    i need ccna security dumps please share it here. my exam in august.

  9. aleon
    August 23rd, 2017

    @9tut

    in question 3 it says “configure a local username with an encrypted password and EXEC mode user privileges”

    and you elected option A, but if it says in the reference that if you type the kind of password as A the system consider the password allready encrypted, isnt the answer B?

  10. Anonymous
    September 8th, 2017

    Hi,
    There is a new question with drag and drop regarding TACACS+ and RADIUS, with 2 answers each:

    TACACS+ had something like: – port on which operates;
    – TACACS+ encrypts the entire body of the packet but leaves a standard header
    RADIUS: – RADIUS encrypts only the password and the rest of the packet is unencrypted.
    – RADIUS uses UDP

    I hope it helps at something.

  11. anon
    September 10th, 2017

    Q3. Explanation does not match question.

    Answer supposedly is A but I think it is D.

  12. Mack
    October 6th, 2017

    For all of you looking for the dumps, I used this ones and they were good enough https://drive.google.com/open?id=0B5mAFqgydmCzUWJPTTFkemFuQTA

    good luck

  13. noney12
    November 17th, 2017

    question 3 relevant piece is “with an encrypted password”
    the only relevant answer contains “password 7 [encrypted password]”
    exec level is irrelevant and a distraction

  14. fujitsu sakamura
    November 22nd, 2017

    searching for the latest dumps + vce simulator. 210-260 many thanks. email: {email not allowed}

  15. mohamed
    December 6th, 2017

    if anybody wants anything for the exam 300-210 send me mail

  16. nick
    December 18th, 2017

    please I would be writing my ccna 200-125 exam soon. pls any latest dump would be most appreciated. email waley azeez at gmail dot com.

  17. Dekker
    March 8th, 2018

    i can not see the questions. Why is that?

  18. T
    May 23rd, 2018

    Is there a way to subscribe for CCNA security only? I dont find the subsciption option on the CCNA security website? I love these dumps

  19. Cesar
    July 23rd, 2018

    Q1
    Why is the answer “B” not correct?
    Please help me

  20. mirzaumar8714@yahoo.com
    July 24th, 2018

    Ccna security updated dump’ required plz ?

  21. Elias
    September 19th, 2018

    guys im about to write my ccna secutity so pls help with the website for dumps

  22. Anonymous
    October 21st, 2018

    can someone explain the question Q1?

  23. cris
    December 6th, 2018

    Q7
    It will be helpfull

    RADIUS vs. TACACS+
    RADIUS TACACS+
    Protocol and Port(s) Used:
    RADIUS:
    UDP: 1812 & 1813 -or- UDP: 1645 & 1646
    TACACAS+: TCP: 49

    Encryption
    RADIUIS: Encrypts only the Password Field
    TACACS+: Encrypts the entire payload

    Authentication & Authorization
    RADIUS: Combines Authentication and Authorization
    TACACS+: Separates Authentication & Authorization

    Primary Use
    RADIUS: Network Access
    TACACS+: Device Administration

    So the answer is A

  24. cris
    December 6th, 2018

    Q12

    The question says TYPE OF PASSWORDs no type of protocols.
    Answer C is correct

  25. Q1
    December 6th, 2018

    Question 1
    Which statement about RADIUS security is true?
    A. It supports EAP authentication for connecting to wireless networks.
    B. It provides encrypted multiprotocol support.
    C. Device-administration packets are encrypted in their entirety.
    D. It ensures that user activity is fully anonymous.
    the best choice is A
    the question is for Radius, and radius support EAP for wireless access and EAPoL for Lan access.
    the other options are not very related, I think so.

Add a Comment