CCNP Secure IPS FAQ: IPS Command-Line Interface
Q1. Which sensor CLI command should you use to update the sensor software from version 4.1 to 5.0 via the network?
E. None of these
Q2. Which command should you use to initialize a new sensor that you install on your network?
E. None of these
Q3. Which is the most privileged role that you can assign to a normal user account on the sensor?
Q4. Which is the least privileged role that you can assign to a user account on the sensor?
Q5. What must you do before upgrading your sensor’s software by using SCP?
A. Add the Secure Shell (SSH) server’s X.509 certificate to the sensor’s authorized list.
B. Add the SSH server key to the sensor’s authorized list.
C. Add the SSH key for the sensor to the SSH server.
D. Add the sensor’s X.509 certificate to the SSH server.
Q6. Which of the following cannot be configured by using the setup command?
A. Web server port
B. Sensor time settings
C. Sensor default gateway
D. TCP port that Telnet uses
E. Sensor access list entries
Q7. What should you type at the sensor CLI to get help?
D. Either help or ?
E. None of these
Q8. Which account is used by the Technical Assistance Center (TAC) to troubleshoot problems with your sensor?
Q9. Which of the following is true about the account configured with the Service role?
A. It is a privileged sensor CLI account that TAC uses to troubleshoot sensor problems.
B. It is an account made to enable end users to bypass the CLI.
C. You can configure multiple accounts with the Service role.
D. This account bypasses the sensor CLI.
E. None of these.
Q10. Which sensors provide no keyboard or mouse ports? (Choose 2.)
A. IDS 4210
B. IDS 4240
C. IDS 4235
D. IDS 4215
E. IDS 4250
Q11. What character do you use to obtain help via the appliance CLI, and what are the two ways you can use it to obtain help?
Q12. What command enables you to allow a host or all of the hosts on a network to connect to the sensor?
Q13. How many different user roles are available to assign to accounts on your sensor?
Q14. What is the most privileged user role that you can assign to a CLI user?
Q15. Which user role provides the user with the ability to examine the sensor’s events and configuration but does not allow the user to change the configuration?
Q16. What parameters can you configure by using the setup CLI command?
Q17. What is the purpose of the Service user role?
Q18. What command do you use on the CLI to enter Global Configuration mode?
Q19. How many Service accounts can you have on your sensor?
Q20. What user role would you usually assign to the account that you use to enable your monitoring applications to retrieve information from your sensor?
Q21. What character do you use on the CLI to cause your sensor to automatically expand the rest of a command for you?
Q22. When a CLI command’s output extends beyond a single screen, what character do you use to show the next screen of information?
Q23. When a CLI command’s output extends beyond a single screen, what character do you use to see just the next line of output?
Q24. Which sensors cannot be upgraded with a recovery CD and why?
Q25. What are the transfer options available for upgrading appliance sensors through the network?
Q26. Before you can use SCP to retrieve a new image file or signature update, what must you do on the sensor?