An engineer must configure a Cisco router to initiate secure connections from the router to other devices in the network but kept failing. Which two actions resolve the issue? (Choose two.)
A.
Configure transport input ssh command on the console.
B.
Configure a domain name.
C.
Configure a crypto key to be generated.
D.
Configure a source port for the SSH connection to initiate.
Ref: Configuring Secure Shell on Routers and Switches Running Cisco IOS – Cisco
“…
Set Up an IOS Router or Switch as SSH Client
There are four steps required to enable SSH support on a Cisco IOS router:
1. Configure the hostname command.
2. Configure the DNS domain.
3. Generate the SSH key to be used.
4. Enable SSH transport support for the virtual type terminal (vtys).
…”
A. Configure transport input ssh command on the console.
Wrong answer.
B. Configure a domain name.
Correct answer.
C. Configure a crypto key to be generated.
Correct answer.
D. Configure a source port for the SSH connection to initiate.
Wrong answer.
E. Configure a TACACS+ server and enable it.
Wrong answer.
This question seems strangely worded. My guess is that they are asking about someone trying to SSH into the router and it fails, in which case B and C are the correct answers. You need to configure a domain name and then generate an RSA key to be able to SSH into the router.
But the question could also be interpreted as the router being the SSH client into some other device. The problem there is that such a setup would not require any configuration at all on the router. The device you SSH into might need it, but it might also need a bunch of other things. The most logical interpretation is in my opinion that we are trying to SSH into the router and it doesn't work, not that we are trying to SSH from the router. So the answer is B and C.
This question is utterly stupid as it seems to indicate the Cisco router only acts as a SSH client. An SSH client does not require ANY configuration. Again, B+C seems correct if you look at the options, but the question itself seems a bit strange.
BC are correct.
A. makes no sense since the console isnt able to be accessed via ssh or telnet.
D. isnt it because source ports are autogenerated and dont need to be explicitly configured.
E. Unless the user needs authorization, this answer makes no sense.
This section is not available anymore. Please use the main Exam Page.300-410 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
Highly Voted 2 years, 9 months agobf10690
Most Recent 9 months ago[Removed]
10 months agoAlexInShort12
1 year, 4 months agoPietjeplukgeluk
1 year, 5 months agoCarl1999
3 years, 3 months agoCarl1999
3 years, 3 months agoJingleJangus
3 years, 3 months ago[Removed]
3 years, 9 months ago