Home > Articles > Certification > Cisco Certification

  • Print
  • + Share This
This chapter is from the book

Exam Preparation Tasks

Review All the Key Topics

Review the most important topics from this chapter, denoted with a Key Topic icon. Table 6-7 lists these key topics.

key-topic.jpg

Table 6-7 Key Topics

Key Topic Element

Description

Page Number

Text

Management plane best practices

95

Text

AAA components

98

Text

Storing usernames, passwords, and access rules

98

Text

Router access authentication

100

Table 6-2

AAA components to secure administrative and remote LAN access

101

Text

The AAA method list

101

Table 6-3

Method list options

101

Text

Limiting the administrator by assigning a view

103

Text

Encrypted management protocols

103

Text

Using logging files

104

Text

User authentication in AAA

108

Text

Using the CLI to troubleshoot AAA for Cisco routers

113

Example 6-4

Using debug commands

113

Example 6-5

Creating and assigning commands to custom privilege levels

118

Text

Implementing parser views

120

Example 6-7

Creating and working with parser views

121

Example 6-9

Preparing for SSH

123

Text

SNMP features

128

Table 6-6

Security models and security levels supported by Cisco IOS

130

Example 6-16

Creating a secure bootset

133

Complete the Tables and Lists from Memory

Print a copy of Appendix C, “Memory Tables,” (found on the CD) or at least the section for this chapter, and complete the tables and lists from memory. Appendix D, “Memory Tables Answer Key,” also on the CD, includes completed tables and lists so that you can check your work.

Define Key Terms

Define the following key terms from this chapter, and check your answers in the glossary:

AAA, method list, custom privilege level, parser view, SSH, syslog, SNMP, NTP, secure bootset

Command Reference to Check Your Memory

This section includes the most important configuration and EXEC commands covered in this chapter. To see how well you have memorized the commands as a side effect of your other studies, cover the left side of Table 6-8 with a piece of paper, read the descriptions on the right side, and see whether you remember the commands.

Table 6-8 Command Reference

Command

Description

service password-encryption

Encrypt most plaintext passwords in the configuration.

aaa new-model

Enable AAA features.

aaa authentication login default local

Create a default method list for character mode login that will use the local database (running config) on the router or switch.

enable view

Enter the root parser view, from where you can create additional views. This requires that aaa new-model already be in place in the configuration.

privilege exec level 8 show startu p-config

Assign a show startup-config command to a custom privilege level 8.

crypto key generate rsa

Create the public/private key pair required for SSH.

secure boot-image

Secure the IOS image on flash

aaa authentication bubba local enable

Create an authentication method list called bubba that will use the local database first, and if the username does not exist, will require the enable secret to allow login.

line console 0

login authentication bubba

Apply the method list named bubba to the console port.

  • + Share This
  • 🔖 Save To Your Account