Exam 350-401 topic 1 question 304 discussion

if we assume that the enable password is set, then the vty will have the privilege of 15. If enable password is not set, then the vty privilege level will be 1. I would assume that is there is no enable password exist since its not shown. I would choose A

The answer is letter "A": 1. https://www.oreilly.com/library/view/hardening-cisco-routers/0596001665/ch04.html "Default Privilege Levels The bottom and least privileged level is level 0. This is the only other level besides 1 and 15 that is configured by default on Cisco routers. Next is level 1, the default user level. This level provides the user with many more commands that allow the user to display router information, telnet to other systems, and test network connectivity with ping and traceroute. Level 2, which is not enabled by default, adds a few additional show and clear commands, but provides no opportunity for a user to reconfigure the router. Finally, level 15 allows full access to all router commands."

Tested in Packet Tracer: If the privilege level doesn't show up under the line settings, then it's set to '1'.

A is correct default is 1

The answer A is correct.

The configuration snippet provided doesn't explicitly mention a privilege level for VTY users. However, based on the configuration shown: The line vty 0 4 and line vty 5 15 configurations set passwords for VTY lines but don't explicitly assign privilege levels. By default, when a privilege level isn't configured explicitly for VTY lines, they default to privilege level 1. Therefore, looking at the provided configuration, the correct answer would be: A. 1

D. 15 In the given configuration, the "line vty 0 4" and "line vty 5 15" commands are used to configure the virtual terminal lines (VTY) for remote access. The "login" command is enabled under both VTY lines, which means that authentication is required for VTY access. Since the privilege level is not explicitly specified under the VTY lines, it defaults to the highest privilege level, which is 15. Therefore, VTY users will have privilege level 15 when accessing the router.

sw1# sw1#telnet 192.168.255.55 Trying 192.168.255.55 ... Open User Access Verification Password: cisco_R5>show privilege Current privilege level is 1 <<<<<<<<<<<<<<<<<<<<<<< cisco_R5> cisco_R5>ena Password: cisco_R5#sh runn | i aaa no aaa new-model cisco_R5#sh runn | s line line con 0 exec-timeout 60 0 logging synchronous line aux 0 line vty 0 4 password 777 login transport input telnet cisco_R5# cisco_R5#show users Line User Host(s) Idle Location 0 con 0 idle 00:01:21 * 2 vty 0 idle 00:00:00 192.168.255.2 Interface User Mode Idle Peer Address cisco_R5#

show run all , will reveal the default privilege of the con & vty line con 0 exec-timeout 10 0 timeout login response 30 privilege level 1 line vty 0 4 exec-timeout 10 0 timeout login response 30 privilege level 1 flush-at-activation

Given answer is correct, Lines (CON, AUX, VTY) default to level 1 privileges

The given answer is correct The vty user will have privi 1. Enable command required to elevate to privi 15.

I think the answer is A - 1. Some people are arguing that it is D -15 because you require level 15 for privilege to perform the 'show run' command, but that argument assumes that the output was generated from a vty connection. If you look at the config for console and aux, they have priv 15 set, meaning we can probably assume the show run command was executed from the con or aux lines, and not the vty line (because it has the default privilege of 1). For this reason, I think it's A.

the answer is 15, not 1. # is level 15 and > level one. You cant run show commands in user exc mode.

its 15, you cant do ''sh run'' in level 1 :) plus the sign is ''#'' not ''>'' https://learningnetwork.cisco.com/s/blogs/a0D3i000002eeWTEAY/cisco-ios-privilege-levels

Book: CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide Page: 761 Privilege level 1: Also known as User EXEC mode. The command prompt in this mode includes a greater-than sign (R1>). From this mode it is not possible to make configuration changes; in other words, the command configure terminal is not available.

I agree with A being the correct answer.

Answer is Level 15 privilege mode, Level 1 is an executive mode