An engineer is updating the management access configuration of switch SW1 to allow secured, encrypted remote configuration. Which two commands or command sequences must the engineer apply to the switch? (Choose two.)
Answer C,D is correct: C. SW1(config)#line vty 0 15 SW1(config-line)#transport input ssh; D. SW1(config)# crypto key generate rsa. Secure encrypted remote management requires the VTY lines to accept SSH and the switch to have RSA keys available for SSH operation. The enable secret protects privileged EXEC mode, but it does not by itself enable encrypted remote access. A trunk command is unrelated to management-plane security. A local username may also be required depending on the existing configuration, but the two choices that directly enable encrypted remote management from the listed commands are transport input ssh and crypto key generate rsa. Cisco CCNA 200-301 v1.1 Security Fundamentals expects engineers to know the SSH prerequisites: hostname/domain context, RSA keys, appropriate line transport, and authentication. The corrected answer pair is the VTY SSH transport command and RSA key generation.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit