ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-410 All Questions

View all questions & answers for the 300-410 exam
Go to Exam

Exam 300-410 topic 1 question 358 discussion

Actual exam question from Cisco's 300-410
Question #: 358
Topic #: 1
[All 300-410 Questions]

The network administrator configured R1 to authenticate Telnet connections based on Cisco ISE using TACACS+. ISE has been configured with an IP address of 192.168.1.5 and with a network device pointing toward R1 (192.168.1.1) with a shared secret password of Cisco123.

The administrator has configured this on R1:

aaa new-model
!
tacacs server ISE1
address ipv4 192.168.1.5
key Cisco123
!
aaa group server tacacs+ TAC-SERV
server name ISE1
!
aaa authentication login telnet group TAC-SERV

The network administrator cannot authenticate to R1 based on ISE. Which configuration fixes the issue?

  • A. line vty 0 4
    login authentication TAC-SERV
  • B. tacacs-server host 192.168.1.5 key Cisco123
  • C. ip tacacs-server host 192.168.1.5 key Cisco123
  • D. line vty 0 4
    login authentication telnet
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by JKStinn at Dec. 15, 2022, 6:31 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Zizu007
Highly Voted 2 years, 4 months ago
Selected Answer: D
aaa new-model ! tacacs server ISE1 address ipv4 192.168.1.5 key Cisco123 ! aaa group server tacacs+ TAC-SERV server name ISE1 ! aaa authentication login telnet group TAC-SERV ! R5(config)#line vty 0 4 R5(config-line)#login authentication TAC-SERV AAA: Warning authentication list "TAC-SERV" is not defined for LOGIN. R5(config-line)#login authentication telnet R5(config-line)#end R5#
upvoted 9 times
...
ellen_AA
Highly Voted 2 years, 4 months ago
aaa authentication methode called "telnet" was created, but not used under the vty lines.
upvoted 8 times
...
[Removed]
Most Recent 9 months, 4 weeks ago
Selected Answer: D
D is correct
upvoted 1 times
...
XBfoundX
10 months ago
It's a little tricky, but basically the authentication list created is called telnet you define the name of the authentication list after aaa authentication login <NAME OF THE AUTHENTICATION LIST> group <TACACS SERVER GROUP NAME> For correct authentication under the vty line interfaces we need to apply this authentication list by applying the command line vty 0 15 login authentication <NAME OF THE AUTHENTICATION LIST> So the correct answer is D NOT A because A is the name of the server group and NOT of the authentication list
upvoted 3 times
...
SAMAKEMM
1 year, 7 months ago
Selected Answer: D
D is correct
upvoted 2 times
...
inteldarvid
1 year, 10 months ago
Selected Answer: D
yes optiion D
upvoted 2 times
...
tapri
2 years, 3 months ago
Selected Answer: D
D is correct
upvoted 4 times
...
mitosenoriko
2 years, 4 months ago
i think A  (config)# line [ console | vty | tty | aux ] number number  (config-line)# login authentication [ default | list-name ]
upvoted 2 times
...
JKStinn
2 years, 5 months ago
Selected Answer: D
https://www.omnisecu.com/ccna-security/cisco-router-switch-aaa-login-authentication-configuration-using-tacacs+-and-radius-protocols-through-commands.php
upvoted 5 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago