CCNA Security V2

CCNA Security Version 2.0 Final Exam Answers 100%

1. Which security implementation will provide control plane protection for a network device? encryption for remote access connections AAA for authenticating management access routing protocol authentication NTP for consistent timestamps on logging messages 2. What is the one major difference between local AAA authentication and using the login local command …

Read More »

CCNA Security Version 2.0 Chapter 11 Exam Answers

CCNA4_Practice_Final_01

It outlines the company’s overall security goals for managers and technical staff. It provides general policies on how the technical staff should perform security functions. It defines system and issue-specific policies that describe what the technical staff does. Which type of security policy document is it that includes implementation details …

Read More »

CCNA Security Version 2.0 Chapter 10 Exam Answers

CCNA4_Ch9_001

Which type of security is required for initial access to the Cisco ASDM by using the local application option? SSL WPA2 corporate biometric AES Which statement describes available user authentication methods when using an ASA 5505 device? The ASA 5505 can use either a AAA server or a local database. …

Read More »

CCNA Security Version 2.0 Chapter 9 Exam Answers

CCNA Security Chapter 9 Exam Answer v2 001

What function is performed by the class maps configuration object in the Cisco modular policy framework? identifying interesting traffic applying a policy to an interface applying a policy to interesting traffic restricting traffic through an interface What command defines a DHCP pool that uses the maximum number of DHCP client …

Read More »

CCNA Security Version 2.0 Chapter 7 Exam Answers

11

How do modern cryptographers defend against brute-force attacks? Use statistical analysis to eliminate the most common encryption keys. Use a keyspace large enough that it takes too much money and too much time to conduct a successful attack. Use an algorithm that requires the attacker to have both ciphertext and …

Read More »

CCNA Security Version 2.0 Chapter 6 Exam Answers

CCNA Security Chapter 3 Exam Answer v2 001

What component of Cisco NAC is responsible for performing deep inspection of device security profiles? Cisco NAC Profiler Cisco NAC Agent Cisco NAC Manager Cisco NAC Server What is the role of the Cisco NAC Manager in implementing a secure networking infrastructure? to define role-based user access and endpoint security …

Read More »

CCNA Security Version 2.0 Chapter 5 Exam Answers

A system analyst is configuring and tuning a recently deployed IPS appliance. By examining the IPS alarm log, the analyst notices that the IPS does not generate alarms for a few known attack packets. Which term describes the lack of alarms by the IPS? true negative false positive false negative …

Read More »

CCNA Security Version 2.0 Chapter 4 Exam Answers

A network administrator is implementing a Classic Firewall and a Zone-Based Firewall concurrently on a router. Which statement best describes this implementation? An interface must be assigned to a security zone before IP inspection can occur. Both models must be implemented on all interfaces. The two models cannot be implemented …

Read More »

CCNA Security Version 2.0 Chapter 3 Exam Answers

CCNA Security Chapter 3 Exam Answer v2 001

The locked-out user stays locked out until the clear aaa local user lockout username Admin command is issued. The locked-out user stays locked out until the interface is shut down then re-enabled. The locked-out user is locked out for 10 minutes by default. The locked-out user should have used the …

Read More »