CERTIVIEW

Friday, 22 January 2016

CCNP Security Question of the Week: SSH Login

ccnpQoW05

Which two configurations are needed to enable SSH login without a password on an IOS router? (Choose two.)

A. Enter a copy of the administrator’s public key within the SSH key-chain.
B. Enter a copy of the administrator’s private key within the SSH key-chain.
C. Generate a 512-bit RSA key to enable SSH on the router.
D. Generate an RSA key of at least 768 bits to enable SSH on the router.
E. Generate a 512-bit ECDSA key to enable SSH on the router.
F. Generate a ECDSA key of at least 768 bits to enable SSH on the router.

Reveal Answer

Answer: A and D.

This is using a feature that uses a Public Key for authentication, rather than a preconfigured password.  See Cisco’s website for more detail.

 

Related Resources
Cisco White Papers

Related Course
CCNP Security e-Camp

CCNP Security Question of the Week Series

  • CCNP Security Question of the Week: Cisco ASA Security Context
  • CCNP Security Question of the Week: Authenticating ASDM Users
  • CCNP Security Question of the Week: Layer 5-7 Policy Maps
  • CCNP Security Question of the Week: 802.1X
  • CCNP Security Question of the Week: IPS Updates
  • CCNP Security Question of the Week: IPsec VPN Tunnels
  • CCNP Security Question of the Week: AnyConnect VPN Client
  • CCNP Security Question of the Week: ASA AIP-SSM and ASA AIP-SSC
  • CCNP Security Question of the Week: Disable DHCP Server Service
  • CCNP Security Question of the Week: Cisco ASA Security Appliance Access List
  • CCNP Security Question of the Week: Network Address Translation
  • CCNP Security Question of the Week: Harden a Switch
  • CCNP Security Question of the Week: SSH Login
  • CCNP Security Question of the Week: Packet-Tracer Command
  • CCNP Security Question of the Week: SSL Ciphers
  • CCNP Security Question of the Week: VLAN Hopping
  • CCNP Security Question of the Week: DHCP Server Service
  • CCNP Security Question of the Week: Default Behavior of an Access List
  • CCNP Security Question of the Week: NAT Control on Cisco ASA Version 8.3
  • CCNP Security Question of the Week: IPS Anomaly Detection Features
  • CCNP Security Question of the Week: Bogus IPv6 Addresses
  • CCNP Security Question of the Week: Harden a Switch
  • CCNA Security Question of the Week: CLI Command
  • CCNP Security Question of the Week: SSH Login


from
CERTIVIEW
Unknown at 03:05
Share

No comments:

Post a Comment

‹
›
Home
View web version

About Me

Unknown
View my complete profile
Powered by Blogger.