CCNA Sec Final Part 9
What are two drawbacks in assigning user privilege levels on a Cisco router? (Choose two.)
-Assigning a command with multiple keywords allows access to all commands using those keywords -Commands from a lower level are always executable at a higher level
Which two types of hackers are typically classified as grey hat hackers? (Choose two.)
-vulnerability brokers -hacktivists
What is a secure configuration option for remote access to a network device?
Configure SSH
A company deploys a hub-and-spoke VPN topology where the security appliance is the hub and the remote VPN networks are the spokes. Which VPN method should be used in order for one spoke to communicate with another spoke through the single public interface of the security appliance?
Hairpinning
What is the default preconfigured interface for the outside network on a Cisco ASA 5505?
VLAN 2
A user successfully logs in to a corporate network via a VPN connection. Which part of the AAA process records that a certain user performed a specific operation at a particular date and time?
accounting
On what switch ports should BPDU guard be enabled to enhance STP stability?
all PortFast-enabled ports
Which security policy outlines the overall security goals for managers and technical personnel within an organization and includes the consequences of noncompliance with the policy?
governing policy
Which feature is specific to the Security Plus upgrade license of an ASA 5505 and provides increased availability?
redundant ISP connections
What determines which switch becomes the STP root bridge for a given VLAN?
the lowest bridge ID