ICND1 – Security Testlet

Yup this was in the test today too

Answer to:

“Question 3

Select the options which are security issues which need to be modified before RouterA is used (not sure how many answers we can choose)

A. unencrypted weak password is configured to protect privilege mode
B. inappropriate wording in banner message
C. the virtual terminal lines have weak password configured
D. virtual terminal lines have a password, but it will not be used
E. configuration supports in-secure web server access”

..should be A, B and D
A -> this is obvious, the priviledge exec password is cisco, weak password
B -> True. “Welcome..blah blah” is highly inappropriate for a security environment! You do not welcome people for such devices! It should be something like “Unauthorizes access strictly prohibited!!”
D -> because ‘login local’ command has been issued. the username password pair will be used instead of the specified ‘4t&34rkf’ password.

Hope this helps someone..

Passed my ICND1 today with a 899, this testlet was on it. I had one that went something like:

line vty 0 4
transport input ssh (in the show run)
login local

Telnet connections will be allowed to this device – This is false because as you can see, ssh is the only terminal connection allowed.

@Nimal

OK the answer to Question 3 is A,B,D, but what is the correct answer to Question 1,2, and 4?
I know this security testlet is on most exams so please somebody let me know the correct answer.

First of all learn the conecpts properly. You are not going to go anywhere with the exams just by studying the questions.
If you understand concepts, Q1 & Q2 are easy and you’ll know the answers provided above are actually correct. if not, go back and learn the concepts first and practice a few labs. CBT nuggets is a great resource.

Regarding Q4, you can see this question cannot really be answered by looking at the the output provided above which is INCOMPLETE. I suggest you build a simulation lab using PT or GNS3 and try it instead.
At the exam the full running-confing will be available to you by running ‘sh run’ command and it will be upto you to figure out the security issues.. But try this with packet tracer or any other sim and understand basic security principles by yourself. It’s really easy

I passed ICND1 on 20th may and the output of the show running-config i got for this testlet was different. So were some of the answers. So that’s why you gotto understand the concepts and then practice so you’ll be really ready whatever the exam throws at you.

This SIM definitely on the exam, should understand the SIM inside out and pay attention closely on the virtual connections setup.

this sim was on my exam.. i chose unsecure banner.. it said welcome..

This was on my exam, the banner DID NOT say welcome, also, various answer options were slightly different. I passed with a 960, the couple that I did miss I am pretty sure were from this security testlet, as it is pretty confusing.

lol it was on my exam day before yesterday, thanks admin, really appreciated your work….

Hi all,
I passed today with 1000. I did get this security question. The config was different but the questions were similar. I had a motd banner which I picked as a risk in both the router and switch questions which obviously was correct. It really depends on the show run output and ruling out any other less suitable options but in my case the banner risk was the correct answer.
Good Luck!

breakouts across the enirte map. These calculations will show you where the market is going,duluth trading Bing. as opposed to where it has been. What is this advance notice worth to you?VisualTradercan pay for

Passed today. 2 drag and drops (Frame Relay, ATM etc), Security Testlet, easy labsim (just use show CDP neighbors), and all qs were from here or examcollection.

Just passed the exam today with a 960 score.

I passed the ICND 1 today with an 887. This question was on the test. ICND 2 NEXT!!
A big thanks to the creator(s) of this site. It’s very helpful!!!

Scored 960.

Keep up the great work 9tut!

I would’ve had a perfect score if question 4 had the correct answers lol.

just passed with 974 out of 1000. I believed I’ve missed these questions. about 95% of the questions at 9tut were on the test. My sim was was the show cdp nei where you drag/drop the routers and ipxes.

Took the exam Monday scored a 762, time ran out on me on question 46. Need to manage my time better next time. I spent to much time on some questions. I did have this testlet on the exam.

Failed today. Got same question 2 & 3 and picture but cannot find configuration despite clicking diagram. Did not chose banner motd

Did ICND1 today, passed.
These questions were on there

Took ICND 1 as a bet for co worker. I’ve been a network engineer for over 6 years. Sometimes you have to go back to the basics to see if you still got it lol. Passed my ICND 1. 890/1000. You need a 804 to pass. The security Testlet was on my exam along with the drag and drop items. One drag and drop item that is not on 9tut is ATM-Cell Switched PSTN-Circuit switched Frame-Packet switched Leased Line- Point to Point. Study Materials were Todd Lammle CCNA videos 6th edition and 9tut only. Good Luck.

Just passed ICND1 with a 925, this question was on it.

This is what i found during study,,,,,, note different wording..!!!

!
enable password cisco
!
username ciscouser privilege 15 password 0 cisco
!
banner login ^CWelcome! If you encountered any problem, please consult the administrator^C
!
line con 0
ecec-timeout 10 0
password 4youreyeonly
login
!
line vty 0 4
password cis@clr!
login

!
—————————————————————-
Identify security threats on RouterA (select 3)

A. unencrypted password set
B. unsecured message on banner
C. remote access can only be made through telnet or SSH
D. user gets level 15 automatically by default
——————————————————————————————
Question1 Explanation:

Because the “service password-encryption” is not set on RouterA so the password to access privileged mode (via the command “enable password cisco”) is unencrypted. Also, the password for VTY is unencrypted (notice that the password “cis@clr!” is in fact unencrypted).

The banner is not appropriate and provides information on the router, which can be considered as a security threat. The banner login, is supposed to be a permanent “do not enter if you dont belong message”.

In the “line vty 0 4? configuration, the password is not encrypted.

Answer
A,B and D

Which two of the following are true regarding the configuration of RouterA (choose two)

A. at least 5 simultaneous remote connect are possible
B. only telnet protocol connections to Router A are supported
C. remotely connection to RouterA using telnet will succeed
D. console line connection will never time out due to inactivity
E. Console password is encyrpted

Answer A & C

Question2 Explanation:

A is correct as we can telnet from line 0 to line 4 (line vty 0 4).
We can use both telnet and SSH to connect to this router. B is not correct.
C is correct as we can telnet to it.
D is not correct because by default, the timeout is set to 10 minutes on both the console and the vty ports.
E is not correct as NAT Console password is not encrypted

!
no service password-encryption
!
line console 0
line vty o 4
no login
transport input telnet ssh (????)
line vty 5 15 (????)
login (????)
transport input telnet ssh (????)
banner login ^CWelcome! If you encountered any problem, please consult the administrator^C
!

Select three options which are security issues with the current configuration of Switch A. (Choose three)

A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default

Answer B,C & D

Option A is not relevant as no password is configured for privilege mode.
Option B is correct. The wording in the banner is not appropriate. It should typically read something like “do not enter if you dont belong message”.
Option C is also correct. Virtual terminal lines are protected only by a password requirement.
telnet connections can be used to remotely manage the switch. (see, line vty 5 15 , and login)
Option D is also correct. Telnet connections on the switch can be accessed remotely.
Option E is not correct as the user will only be granted privilege level 15 if configured.

OOps Anwser B,C & E

Question D not in my study
Option E refer to F

Guys ,,,, I WANT Wendel Odom 3rd Edition plzzzzzzzzzzzzzz

Wendell Odom * Sorry For Mistake
!!!

plz i neeed it i neeed ICND1 Wendell Odom 3rd Edition !!!!

Im going in to write today, test is in half an hour, so here goes nothing!!!!Thanx regardless to 9tut, cbt and Odom!

Passed, thank God!!! After passing 640-822, can I take 200-101 to get ccna? Sent the question to Cisco, but I know the reply will take a few days.

South Africa, study hard for icnd2(640-816), u have time till September 30 to take the exam.

Anyway tell here when u receive answer from cisco, i want to know this answe too

“Passed, thank God!!! After passing 640-822, can I take 200-101 to get ccna? Sent the question to Cisco, but I know the reply will take a few days.”

The answer is yes. Any combination of ICND1 and ICND2 will award you with a CCNA! However the older exams are easier, GO FOR ICND2 640-816 before September 30th!!

https://learningnetwork.cisco.com/thread/54402

http://www.youtube.com/watch?v=gjgTPyxJM0Y

Passed ICND1 today with a 9** !!! This question was there in my exam!! Thnx 9tut.net!!

Passed with 900+! Studied with Odom, CBTnuggets, Packet Tracer, Netsim, ExSim, and supplemented with 9tut. No prior networking experience. Thanks to this site most of all!

Am soon seating for my exam
i need your guidance

Regarding Q4, maybe “inappropriate wording” is also correct? In CBTNuggets course Jeremy discuses similar banner motd, saying that if you put “Welcome” it’s as if you were inviting anyone to log in (or hack) freely.

Passed ICND1 today. I had “ip http-server” inside conf of router A, so “unsecure web access enabled” is correct as well.

Question 3 from august 13 post answers should be BEF (one about the switch, not router)

B. Inappropriate wording in banner. Welcome can be seen as an invitation to come in and is a legal no no

E. Telnet connections can be used to remotely manage switch. lines vty 0 4 have the no login command which means no login required. they simply need type telnet A.B.C.D and they are granted access to that device. lines 5-15 have the login command which automatically disables them until a password command has been set which it has not.

F. Cisco users will be granted level 15 by default. level 15 is priveledge exec mode which is what you are granted when you type enable. Since there is no enable secret or enable password command, BY DEFAULT a user is GRANTED ACCESS to this level. I admit i think this one is poorly worded cause at first reading it sounds like its saying you are instantly granted level 15/priv exec mode access when you come in.

A C D are all wrong as they all refer to passwords in some manner. No where in the output is a single password configured.

Im taking my exam monday, could some one please tell me the correct answers to the above questions (with the correct questions if possible), Please and thank you

Also what command should i use on the devices to answer the questions , thanks

Hello Mr SS

i wish you good luck in your exam and at the same after writing your exam can you please come back and tell us how did your exam go and the type of questions…thanks

there is a mistake with the motd banner look at the last line it should be a character not a letter ^C

please send me the latest dump for ICND1 at holy_23one@yahoo.com

Remember that the banner choice is a correct answer for either.
privledge mode password unencrypted was another choice,
and a weak username and password was the third choice for me.

Hello I want to give my ICND1 exam. Please can anyone help me and send me the latest dumps for ICND1 on beware_76@yahoo.com. reply ASAP. Thanks

I Just Pass my ICND1 today with 973 Marks and this question was there,

i got 100% in network device security ..
1. welcome to switch and router is unapropriate so tick this option …
2. no login in swich means no need the password you can log in without anything ..
3. user will grand level 15 was not valid for me as there was not priv mode included in show run …

Thank you 9tut for a big help and support …. you guys are awesome …..
need to pass icnd1 ? study cbt nuggets icnd1 and check everything on 9tut.net you dont need anything else …….

@Ahmad you dont need dumps just study 9tut.net all questions and check cbt nuggets icnd1 you will pass it easily .. i just passed today and got 973 out of 1000 … Good luck

hi all
subscribe to that channel http://www.youtube.com/user/Joynetworks for free
that trainer is excellent , he makes the technology easy to understad.

Passed my 100-101 exam today and this sim was there..

I am taking ICND1 Exam in the next couple of days. Can someone tell me what SIMS they had? I feel fairly confident.

IS there anything I should know

@**D**

I would suggest that you should know this security let, ospf sim and show commands sim by heart. Once you are in the exam try to be focused and don’t panic about time. Time is more than enough if you know your stuff. Read the questions answer million times so when yo read them in the exam. You will know the answer in less than a second. There were 3 labs for me.

I got this testlet today and the show config as well as the OSPF sim. Gud luck

download free dumps from

9 t u t . w e b s . c o m

Passed today with a perfect score 1000/1000.
3 sims: OSPF Neighbor Sim \ Show Configuration Sim \ Security Testlet Sim

My advice is study, study, study, learn the material and don’t rely on just passing the test. Cisco is exiting technology just learn it!!

I used:
CBT Nuggets – I watch the entire series once a week for about a month and that really helped me to learn the concepts. Use Google search and YouTube for all your questions.
——-
Boson NetSim 8.0
Cisco Packet Tracer
——-
Cisco.Testkings.100-101.ICND1.v2013-06-27.by.Cristiano.102q
Cisco.Actualtests.100-101.v2013-12-13-.by.Nada.137q
Cisco.Actualtests.100-101.v2014-01-06.by.SUSAN.124q
Cisco.Lead2pass.100-101.v2013-10-04.by.Nada.189q = Spike.119q + Nada.70q
——-
9tut.net – \Labsim – \Security Testlet
-OSPF Neighbor Sim
-Show Configuration Sim
-Security Testlet Sim

Got 986/1000 Marks, {5/16/2014} 50 Questions, Ospf Sim, Security simlet, and Router and switch Simlet Was also there…..All questions From 9tut. and Examcollections…..Now Heading For Icnd2 And Blogging…..

For Any Help.
Manohar Tn
Website: http://www.techlinko.com
G+ : https://plus.google.com/u/0/+ManoharTN9/

guys i did my exam on 15th may 2014 got 960/1000,this question was there word for word..The three sims were show ospf neighbors, security testsim and show configuration..I read for the icnd1 exam in only two weeks so you can make it..go through susan dumps and hush dumps.also all questions in 9tut and you should be okay.

hi Kevo;
Thanks a lot for your helpful information. I would like to ask you about OSPF question, Please can you tell as what was the question and Is there any question her similar?

Thanks in advance 🙂 .

hi Kevo;
Thanks a lot for your helpful information. I would like to ask you about OSPF question, Please can you tell as what was the question and Is there any question her similar?

Thanks in advance 🙂 .

has anyone used the roxanne dump?

get free dumps from

bc.vc/l3qFrE

File #0 does not exist

Just passed the today and the dump is valid.
No question IPv6 or cabling but a lot of subnetting , switching , routing and security
Thank you for the dumps
Merci !!!

Hi Everyone,
I am taking my exam tomorrow. Just want to know – for the security testlet, do you have to configure Router A and switch A (the 2 blocks on top) or only answer the questions related to it?

My guess is , configure it myself – just making sure 🙂

will let you know after the exam how it went.

How did the exam go dude Ive got mine next month…

Preparing to take my exam on Thursday, is this information still valid?

Hello, I took the INCD1 on 6-16 and the question I ahd didn’t have welcome, but something like “Thanks for logging into Switch A” and for the router it had “Thanks for logging into Router A” Now if they have the name of the router in this wouldn’t the banner be an issue?

Hello please dont forget in the past a hacker was free because some banner said “welcome ….” in the CBT nuggets talk about this is a big issue !!!!

Victor how did the test go? was it similar to any dumps? same sims?

There seems to be a discrepancy in your answer guidance. When using your security testlet it indicates that banner messages have inappropriate wording. Yet in the answers on Q1 here the inappropriate wording answer is classified as a wrong answer.

I’m pretty sure that B is correct in Q1. I’ve passed exam today. I’ve answered this question according to 9tut and this was the only question where I’ve lost points. Jeremy Cioara in CBTNuggets said clearly, you shouldn’t write “Welcome” in banner login or motd because it invites to break in.
Anyway thanks 9tut for this tutorial! It contains almost every question I’ve got today. I’m sending a donation.

Hi,

I passed today. with 1000/1000. I marked “unsecured message on banner” for both the switch and router. Therefore, please note this is the right answer.

Passed Today. Questions contain OSPF Sim, Security and Show config. Lots of subnetting questions…at least 11

Question 2 (which I got wrong pretty sure) the router had “no login” set for it’s vty lines instead of “login local” as this shows. This caused me to pick A and D as wasn’t familiar with “no login” (which means no password is required). What bonehead would even enter that? Anyways I had a feeling there was a default timeout for the lines but picked it anyway as I didn’t know “no login”. Remember “Knowing is half the battle”.

Hi,
I passed on 11th June 960/1000. This security lab and ospf lab was on the exam. The banner is absolutely a security risk and is inappropriate.

this question was in the exam 19/07/2014

I passed the exam today 7/24/2014 1000/1000
Q.3 and Q.4
*** inappropriate wording in banner message ****
is correct

Hi !
anyone who sat for the exam ,did u get a virtual calculator that you can use for decimal &binary conversions or we have to do it manually?????
anyone who knows plzzzzzz
Thanks:)

In the exam sims, does the ? work for help? Does the tab key finish a command or must we remember the full syntax?

So on question 1 if unsecured message on banner is correct what are the other two correct answers? I know that by default level 15 is selected and remote access can only be made through telnet or ssh but an unecrypted password is also set since you can clearly see what the password is. Help?

This dump is confusing, what are the correct answers here because all 4 canbe a threat?

Question 1

Identify security threats on RouterA (select 3)

A. unencrypted password set
B. unsecured message on banner
C. remote access can only be made through telnet or SSH
D. user gets level 15 automatically by default

A as discussed here is correct, B is also correct, making remote access through telnet sends password in plain text, potentially correct, level 15 is enable level so is correct? Which is wrong?

Thinking about it, maybe A is the incorrect answer as even though the password is not encrypted, it is still a strong password.

@Mandy, all conversion is manual on the paper they give you, no calcs at all.

I will take the exam tomorrow, I will try to remember every detail about this sim and I will post it

until when these questions will be valid?

I passed the exam today 1000/1000, all 9tut questions are valid, and also the sims (OSPF 6router 1sw, security sim, and show sim)

material used:
-cbt nuggets
-9tut
-vce exams

This security sim was different on my exam today, same idea different config and answers. All you have to do is understand the concepts and you will be good.

Anon did you see any IPv6?

thanks Baker !!!

Took my test today, a variation of these security sim questions were on there. Used Cisco Press CCENT book, 9tut, and packet tracer to study. Good luck studying everyone!

Gave my test today got 973 …this question was on it amidst the confusion before i forget ..the simulation is the same …with you having to enter router A and switch A and do the sh run command to see the running config……the questions and answers have slight diff variation

The router and switch confif have”no login commands instead of what is mentioned above”…..so any attempt to telnet gets straight entry to the user mode where it will ask the password and username….which is a correct option in the answers

in Q1: option C is > remote access can only be made through Telnet(“see ssh is not included so hence this option is automatically wrong”)

extra option E is right as mentioned above along with the unsecure banner…..so in short the right options are unsecure banner and option E saying any attempt to telnet will get straight access to user mode password and username…

PS: i choose those two and have a 100% on that section so go for it ….if you feel its right but again it might vary with your questions so good luck everyone

If you believe The transcender, for question 4, B is a correct answer. Basically, a hacker could make the argument that they were invited in so it is a security issue.

Why in earth would you brainiacs intentionally compromise a test, risking your own certifications, and make it easier for someone to pass without knowing all the information they should, which puts networks and data (possibly your own, remember)? Just love of cheating and breaking the rules? Getting one over in “the man?”

A version of this was the opening question on the test today. Know these commands, and you’ll be off to a good start.

Had this testlet on exam yesterday. The questions were slightly different then shown on this page but along the same lines.

A – at least 5 simultaneous remote connect are possible on Router A ?

That should be wrong. At maximum 5 connections not at least.

Can you double check?

@France

Kindly triple check the explanation?

Question 2

Which two of the following are true regarding the configuration of RouterA (choose two)

A. at least 5 simultaneous remote connect are possible

Answer: A C

line vty 0 4
password 4t&34rkf
login local
transport input telnet ssh

If it 0-6 I would understand if somebody would say “at least five connections”. But in this case 5 is the maximum.

Thank you replying.

Hi,
This is what i found during exam
for Router
!
!
no service password-encryption
!
hostname Router1
enable secret 5 $1$14mlkm52….
ip domain-name cisco.com
ip ssh version 2
!
!
username ciscouser password 0 cisco
banner login ^c
************ welcome to router1 If you encountered any problem, please consult the administrator ************* ^c
!
line con 0
password cisco
line vty 0 4
password 4thfcvcf
no login
transport input telnet ssh

for switch

!
!
no service password-encryption
!
hostname switch1
enable password cisco
username ciscouser password 0 cisco
ip domain-name cisco.com

banner login ^c
************ welcome to router1 If you encountered any problem, please consult the administrator ************* ^c

line con 0
line vty 0 4
login login local
transport input ssh
line vty 5 15
login local
transport input ssh

the question are the same
good luck

@aminou

Could you post the answer you gave. That’s the only simlet I get wrong. Thanks

@France

normally that’s my answer :

Select two options which are security Issues which need to be modified before RouterA is used? (Choose
two.)
A. unencrypted weak password is configured to protect privilege mode
B. inappropriate wording in banner message
C. the virtual terminal lines have a weak password configured
D. virtual terminal lines have a password, but it will not be used
E. configuration supports un-secure web server access

my answer: BD

Select three options which are security issues with the current configuration of SwitchA . (Choose three.)
A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. cisco user will be granted privilege level 15 by default

my answer: ABD

Which two of the following are true regarding the configuration of RouterA? (Choose two.)
A. at least 5 simultaneous remote connections are possible
B. only telnet protocol connections to RouterA are supported
C. remote connections to RouterA using telnet will succeed
D. console line connections will nevertime out due to inactivity
E. since DHCP is not used on FaO/1 there is not a need to use the NAT protocol

my answer:AC

Which of the following is true regarding the configuration of SwitchA?
A. only 5 simultaneous remote connections are possible
B. remote connections using ssh will require a username and password
C. only connections from the local network will be possible
D. console access to SwitchA requires a password

my answer:B