ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-410 All Questions

View all questions & answers for the 300-410 exam
Go to Exam

Exam 300-410 topic 1 question 210 discussion

Actual exam question from Cisco's 300-410
Question #: 210
Topic #: 1
[All 300-410 Questions]


Refer to the exhibit. An engineer must block access to the console ports for all corporate remote Cisco devices based on the recent corporate security policy but the security team still can connect through the console port.
Which configuration on the console port resolves the issue?

  • A. login and password
  • B. exec 0 0
  • C. transport input telnet
  • D. no exec
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by IceFireSoul at Sept. 26, 2022, 9:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Brahim90
1 month, 1 week ago
Selected Answer: D
Per cisco book page 938. Is the line enabled? Note that EXEC and EXEC-TIMEOUT accomplish very different things for the console and vty lines. EXEC is used to enable or disable the line. For example, typing the exec command in line configuration mode enables the line, but typing no exec in line configuration mode disables the line.
upvoted 1 times
...
edf4e95
5 months, 2 weeks ago
I think the correct answer is A. The question is asking for a security solution for line console, not line vty. D (if no exec is applied to console) will block all console connections (including security team). The only way to enforce selective login to console port among the provided answers is A (login and password). B is to disable idle timeout on line con C is to allow telnet to line con (unrelated to console) D is to block command execution on line con
upvoted 1 times
...
bk989
8 months, 2 weeks ago
When you want to allow an outgoing connection only for a line (no incoming) use the no exec command. When a user tries to Telnet to a line with the no exec command configured, the user will get no response when pressing the Return key at the login screen. https://community.cisco.com/t5/routing/no-exec/td-p/3715737
upvoted 2 times
...
[Removed]
8 months, 3 weeks ago
Selected Answer: D
D is corerct
upvoted 1 times
...
XBfoundX
9 months, 2 weeks ago
Is D just because they are talking about the config. If you want to protect the console access using some credentials you can use login local or just login, you can also use an authentication list that is gonna check an AD user for accessing the console port via tacacs. In this case login and password is not a valid command. The command that we maybe need is the no exec command just because someone is connecting to the switch via cable and if the enable goes well they are in. So with this command they block the exec mode in the switch so the console is pretty useless
upvoted 1 times
XBfoundX
9 months, 2 weeks ago
For be more specific they are blocking the exec mode (enable) to the line con 0 so only on the console port
upvoted 1 times
...
...
d740f62
1 year ago
D - https://www.cisco.com/c/en/us/td/docs/app_ntwk_services/waas/waas/v401_v403/command/reference/cmdref/execmds.html
upvoted 1 times
...
Gramterre
1 year ago
Can someone please explain what makes the security team able to connect please ?
upvoted 1 times
...
Pietjeplukgeluk
1 year, 3 months ago
Selected answer D is correct, but please note "transport input none" would be a better solution in real life.
upvoted 1 times
Pietjeplukgeluk
9 months ago
"no exec" on line console 0 "prevents anyone to use the console" . "transport input none" would only work for VTY lines
upvoted 1 times
...
...
inteldarvid
1 year, 8 months ago
Selected Answer: D
option correct is "D" https://www.tenable.com/audits/items/CIS_Cisco_IOS_15_v4.0.1_Level_1.audit:f6d68c36cfcc77325b421f9865134f41
upvoted 1 times
...
IceFireSoul
2 years, 6 months ago
Provided answer is correct For reference see: https://community.cisco.com/t5/routing/no-exec/td-p/3715737
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago