ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-410 All Questions

View all questions & answers for the 300-410 exam
Go to Exam

Exam 300-410 topic 1 question 161 discussion

Actual exam question from Cisco's 300-410
Question #: 161
Topic #: 1
[All 300-410 Questions]


Refer to the exhibit. A network administrator successfully logs in to a switch using SSH from a RADIUS server. When the network administrator uses a console port to access the switch, the RADIUS server returns shell:priv-lvl=15" and the switch asks to enter the enable command. When the command is entered, it gets rejected.
Which command set is used to troubleshoot and resolve this issue?

  • A. line con 0 aaa authorization console privl5 ! line vty 0 4 authorization exec
  • B. line con 0 aaa authorization console ! line vty 0 4 authorization exec
  • C. line con 0 aaa authorization console authorization priv15 ! line vty 0 4 transport input ssh
  • D. line con 0 aaa authorization console authorization exec ! line vty 0 4 transport input ssh
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by jarz at Oct. 31, 2022, 5:23 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pietjeplukgeluk
Highly Voted 1 year, 5 months ago
Almost sure it is D, but the command is a bit broken, D: "line con 0 aaa authorization console authorization exec ! line vty 0 4 transport input ssh " It needs to be: 1. globally enable authorization on console: aaa authorization console 2. move to line console 0: line con 0 3. Set the group to be used for authorization (note default is missing in the answer): authorization exec default 4. Go to line vty 0 4 (will set the same twice on next step): line vty 0 4 5. setting transport again to ssh: transport input ssh Note that "console authentication == DISABLED by default": more info https://flylib.com/books/en/1.233.1.74/1/ So concluding, answer is bad quality, but D seems best of them.
upvoted 5 times
bk989
8 months, 2 weeks ago
authentication console is NOT off by default, authorization is. Shitty question nonetheless. ANswer = D.
upvoted 1 times
...
...
[Removed]
Most Recent 9 months, 4 weeks ago
Selected Answer: D
D is correct
upvoted 1 times
...
kldoyle97
10 months, 2 weeks ago
Selected Answer: D
Which command set is used to troubleshoot and resolve this issue? The issue is that the user cannot start an exec level session on the switch the command to allow that is: aaa authorization exec default group <group-name> (RADIUS-SERVERS) this command is already configured in the picture provided, so now configure it on the line con 0 with: (c-line) authorization exec default Option D is the only answer that resembles that command
upvoted 3 times
...
ZamanR
1 year, 4 months ago
D is correct
upvoted 1 times
...
Ll123123
1 year, 6 months ago
Selected Answer: B
I actually prefer B. SSH has no problem login, so the authorisation for vty must work. B has vty authorisation exec which is the default authorisation rule, and console authentication should work already, so just need to enable aaa authorisation console, and line console 0 thus can be empty configured
upvoted 1 times
...
inteldarvid
1 year, 10 months ago
Selected Answer: D
option D: https://itexamanswers.net/question/refer-to-the-exhibit-a-network-administrator-successfully-logs-in-to-a-switch-using-ssh-from-a-radius-server-when-the-network-administrator-uses-a-console-port-to-access-the-switch-the-radius-server
upvoted 2 times
...
HungarianDish_111
2 years ago
"aaa authorization console" is a global command, so we won't apply it under the line configuration. "authorization exec" is only a partial command combiened with an authorization list (global). D is closest.
upvoted 4 times
...
Titini
2 years, 2 months ago
Selected Answer: D
We need to enable aaa auth console and auth exec for console and D has them. I do not understand why the vty conf is repeated in D but is the only answer that resolves the issue.
upvoted 3 times
...
VergilP
2 years, 6 months ago
can anyone explain this?
upvoted 1 times
...
jarz
2 years, 6 months ago
I think the ans is B
upvoted 1 times
jarz
2 years, 5 months ago
I had to Lab this to understand it. Of the answers provided, none are correct! aaa commands aren't supported directly on the lines and that for this scenario to work the Global Command aaa authorization console needed to be added to the configuration!
upvoted 4 times
VergilP
2 years, 5 months ago
300-410 ENARSI have many confuse question for me .... oh my god
upvoted 6 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago