AAA Questions
AAA Questions
AAA Questions
9tut.com/aaa-questions-2
If you are not sure about AAA, please read our AAA TACACS+ and RADIUS Tutorial.
Question 1
Answer: B
Question 2
Answer: D
Question 3
Answer: C
Explanation
1/3
+ Authentication: Specify who you are (usually via login username & password)
+ Authorization: Specify what actions you can do, what resource you can access
+ Accounting: Monitor what you do, how long you do it (can be used for billing and
auditing)
Question 4
Refer to the exhibit. Which password must an engineer use to enter the enable mode?
Atlanta#config t
Atlanta(config)#aaa new-model
Atlanta(config)#aaa authentication login default local
Atlanta(config)#line vty 0 4
Atlanta(config-line)#login authentication default
Atlanta(config-line)#exit
Atlanta(config)#username ciscoadmin password adminadmin123
Atlanta(config)#username ciscoadmin privilege 15
Atlanta(config)#enable password cisco123
Atlanta(config)#enable secret testing1234
Atlanta(config)#end
A. adminadmin123
B. default
C. testing1234
D. cisco123
Answer: C
Explanation
If neither the enable password command nor the enable secret command is
configured, and if there is a line password configured for the console, the console line
password serves as the enable password for all VTY sessions -> The “enable secret” will be
used first if available, then “enable password” and line password.
Reference:
https://www.cisco.com/c/en/us/td/docs/optical/cpt/r9_3/configuration/guide/cpt93_c
onfiguration/cpt93_configuration_chapter_010000.pdf
Question 5
2/3
A. RADIUS is most appropriate for dial authentication, but TACACS+ can be used for
multiple types of authentication
B. TACACS+ encrypts only password information and RADIUS encrypts the entire
payload
C. TACACS+ separates authentication and authorization, and RADIUS merges them
D. RADIUS logs all commands that are entered by the administrator, but TACACS+ logs
only start, stop, and interim commands
Answer: C
Question 6
How do AAA operations compare regarding user identification, user services and access
control?
A. Authorization provides access control and authentication tracks user services
B. Authentication identifies users and accounting tracks user services
C. Accounting tracks user services, and authentication provides access control
D. Authorization identifies users and authentication provides access control
Answer: B
Not sure if C is the correct answer. The ciscoadmin has privilege level 15 so he will
be logged in directly to enabled mode so the answer could be A. adminadmin123
2. william
January 25th, 2021
first try
Add a Comment
3/3