CCSP SECUR FAQ : Authentication
Q1. Which of the following is true? (Choose two.)
A. Authentication provides a method for verifying the identity of users.
B. NAS cannot provide authentication.
C. Usernames and passwords can be stored on NAS.
D. Cisco does not support RADIUS.
Q2. Which of the following is the least secure method of authentication? (Choose two.)
A. Username/password static
B. Username/password aging
C. Session key one-time password
D. Token cards
Q3. Which of the following security protocols is not supported by Cisco network devices?
Q4. Which of the following command syntax is correct for creating a username and password locally on the NAS?
A. Router(config)#username meron password k0nj0
B. Router#username meron password k0nj0
C. Router(config)#set username meron set password k0nj0
D. Router#set username meron password k0nj0
Q5. Which port is reserved for TACACS+?
A. UDP 1645
B. TCP 1645
C. TCP 49
D. UDP 49
Q6. Password Authentication Protocol (PAP)
A. Involves a two-way handshake where the username and password are sent across the link in clear text.
B. Sends username and passwords in encrypted format.
C. Involves a one-way handshake.
D. Is not supported by Cisco network devices.
Q7. Which of the following port does RADIUS use?
A. UDP 49
B. TCP 1645
C. TCP 49
D. UDP 1645
Q8. The CHAP authentication protocol
A. Involves a three-way handshake.
B. Involves a one-way handshake.
C. Is not supported by Cisco network devices.
D. Sends password in clear text.
Q9. Which port is reserved TACACS+ use?
Q10. Why is PAP considered insecure compared to other authentication protocols such CHAP and MS-CHAP?
Q11. What type of encryption algorithm does CHAP uses during the three-way handshake?
Q12. Who developed and designed the Kerberos authentication protocol?
Q13. Give one difference between CHAP and MS-CHAP?
Q14. Which versions of the TACACS protocol in Cisco IOS Software have officially reached end-ofmaintenance?
Q15. What command is used to disable the console password for a network access server?
Q16. Which two popular authentication methods does PPP support?
Q17. In the RADIUS security architecture, what is the network access server?