Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.

Exam 200-301 topic 1 question 659 discussion

Actual exam question from Cisco's 200-301
Question #: 659
Topic #: 1
[All 200-301 Questions]


Refer to the exhibit. Which two commands must be configured on router R1 to enable the router to accept secure remote-access connections? (Choose two.)

  • A. ip ssh pubkey-chain
  • B. username cisco password 0 cisco
  • C. crypto key generate rsa
  • D. transport input telnet
  • E. login console
Show Suggested Answer Hide Answer
Suggested Answer: BC ūüó≥ÔłŹ

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
mantest
Highly Voted 1 year, 6 months ago
Ans is correct. Watch the below given video for the reference - https://www.oreilly.com/content/how-do-i-configure-a-cisco-router-for-secure-remote-access-using-ssh/
upvoted 10 times
...
Junior_Network
Most Recent 2 months ago
ip ssh pubkey-chain Example: host1(config)# ip ssh pubkey-chain Configures SSH-RSA keys for user and server authentication on the SSH server and enters public-key configuration mode.
upvoted 1 times
Junior_Network
2 months ago
so its AC
upvoted 1 times
...
...
Yinxs
3 months, 3 weeks ago
Selected Answer: BC
A is a uncomplete command.However B and C are complete commands that can achieve this goal.
upvoted 3 times
...
Vikramaditya_J
4 months, 1 week ago
Selected Answer: AC
Option B, "username cisco password 0 cisco," is incorrect because it creates a local user account with a password, but it does not enable remote access. Insead option A "ip ssh pubkey-chain" command is used to configure the SSH public key authentication method on a Cisco device. It allows users to authenticate using their public keys instead of passwords, enhancing security and convenience.
upvoted 2 times
...
Eallam
5 months, 1 week ago
Selected Answer: AC
A and C , the username command is very bad
upvoted 3 times
...
StingVN
6 months, 3 weeks ago
Selected Answer: AC
The correct answers are: A. ip ssh pubkey-chain C. crypto key generate rsa These two commands are required to enable secure remote-access connections on router R1. Option A (ip ssh pubkey-chain) enables SSH connections using public key authentication, which is a more secure method compared to password-based authentication. Option C (crypto key generate rsa) generates an RSA key pair that is used for encryption and authentication purposes when establishing secure connections, such as SSH. The other options are not directly related to enabling secure remote-access connections: B. username cisco password 0 cisco - This command creates a local user account with the username "cisco" and a plaintext password. However, it does not enable secure remote-access connections. D. transport input telnet - This command allows telnet access to the router, but telnet is not a secure protocol. E. login console - This command enables console line authentication, but it is not specific to remote-access connections or providing security for them.
upvoted 3 times
...
DARKK
1 year, 6 months ago
Why not SSH? A
upvoted 1 times
Murphy2022
1 year, 2 months ago
because that command doesn't exist inside CLI
upvoted 1 times
guisam
1 year ago
https://networklessons.com/uncategorized/ssh-public-key-authentication-cisco-ios
upvoted 1 times
...
...
...
Networknovice
1 year, 7 months ago
Regarding answer B, can passwords have spaces?? wouldn't the password be "0 cisco"?? Correct me if I'm wrong, but aren't spaces disallowed as a password requirement?
upvoted 2 times
picho707
1 week, 5 days ago
Spaces are allowed characters. I have had many engineers fat-fingered passwords in the past. The rule of thumb is never copy and paste a password or if you are going to do this copy and paste the password do it to notead to remove any additional characters.
upvoted 1 times
...
iGlitch
1 year, 6 months ago
This is a document by NSA, I found it really helpful: https://media.defense.gov/2022/Feb/17/2002940795/-1/-1/1/CSI_CISCO_PASSWORD_TYPES_BEST_PRACTICES_20220217.PDF
upvoted 5 times
splashy
1 year, 2 months ago
Great link!
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...