ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-401 All Questions

View all questions & answers for the 350-401 exam
Go to Exam

Exam 350-401 topic 1 question 278 discussion

Actual exam question from Cisco's 350-401
Question #: 278
Topic #: 1
[All 350-401 Questions]

Refer to the exhibit.

What is the effect of this configuration?

  • A. The device will allow users at 192.168.0.202 to connect to vty lines 0 through 4 using the password ciscotestkey.
  • B. The device will authenticate all users connecting to vty lines 0 through 4 against TACACS+.
  • C. The device will allow only users at 192.168.0.202 to connect to vty lines 0 through 4.
  • D. When users attempt to connect to vty lines 0 through 4, the device will authenticate them against TACACS+ if local authentication fails.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by [deleted] at May 11, 2021, 10:54 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
AbdullahMohammad251
8 months, 1 week ago
Selected Answer: B
The 'group' keyword is only used when referencing a server group. The authentication list did not include a fallback method for authentication (a fallback method in this case would be a RADIUS server or the local directory). As an example of using redundancy in authentication: 'aaa authentication login default tacacs+ local'. This command creates an authentication list named default that uses a TACACS+ server as the primary method for authentication and the local directory as a secondary method if the primary method fails.
upvoted 1 times
...
[Removed]
11 months, 1 week ago
Selected Answer: B
B is correct
upvoted 1 times
...
kldoyle97
1 year, 3 months ago
Applied configuration has invalid syntax: suppose to type "group" before specifying RADIUS or TACACS+ when creating an authentication method aaa authentication login authorizationlist ? cache Use Cached-group enable Use enable password for authentication. group Use Server-group krb5 Use Kerberos 5 authentication. krb5-telnet Allow logins only if already authenticated via Kerberos V Telnet. line Use line password for authentication. local Use local username authentication. local-case Use case-sensitive local username authentication. none NO authentication. passwd-expiry enable the login list to provide password aging support
upvoted 1 times
...
mgiuseppe86
1 year, 7 months ago
Selected Answer: B
B is correct. Due to what I wrote below.
upvoted 1 times
...
mgiuseppe86
1 year, 7 months ago
When login is indicated in the aaa authentication method, any passwords in the VTY will be ignored. So this removes A from the equation. C is wrong because it says only users at 192.168.0.202. That implies they are attempting to telnet/ssh from that server, that IP is an authentication server for TACACS+ not a source connection. D is wrong because only TACACS+ is listed in the AAA string. There is no fall-back method B is correct because all users are forced to authenticate against TACACS+ only.
upvoted 1 times
...
dudalykai
1 year, 8 months ago
There question is constructed incorrectly coz there are no such commands in cli: aaa authentication login authorizationlist tacacs+. After user list "authorizationlist" you have to describe that it is a group and then method radius/tac. aaa authentication login authorizationlist group tacacs+ The user group is known by tacacs+ server whos IP is - 192.168.0.202 So the answer should be: C
upvoted 1 times
mgiuseppe86
1 year, 7 months ago
There is such a command... you need to first put in aaa new-model to activate AAA Authentication. SW1(config)#aaa new-model SW1(config)#authentication login authorizationlist tacacs+ SW1config)#do show run | i aaa Building configuration... aaa new-model aaa authentication login authorizationlist group tacacs+ aaa session-id common
upvoted 1 times
...
...
RamazanLokov
1 year, 11 months ago
I think correct answer D, because first login authentication is custom list applied on VTY
upvoted 2 times
...
dragonwise
2 years ago
I would say both B and C are correct
upvoted 1 times
...
[Removed]
3 years, 11 months ago
The given answer is correct
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago