640-554 Free Dumps Study Materials
Question 7: Refer to the exhibit.
Which statement about the aaa configurations is true?
A. The authentication method list used by the console port is named test.
B. The authentication method list used by the vty port is named test.
C. If the TACACS+ AAA server is not available, no users will be able to establish a Telnet session with
the router.
D. If the TACACS+ AAA server is not available, console access to the router can be authenticated using
the local database.
E. The local database is checked first when authenticating console and vty access to the router.
Correct Answer: B
Explanation:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1818/products_configuration_example09186
a 0080204528.shtml Configure AAA Authentication for Login To enable authentication, authorization,
and accounting (AAA) authentication for logins, use the login authentication command in line
configuration mode. AAA services must also be configured.
Configuration Procedure In this example, the router is configured to retrieve users' passwords from a
TACACS+ server when users attempt to connect to the router.
From the privileged EXEC (or "enable") prompt, enter configuration mode and enter the commands
to configure the router to use AAA services for authentication: router#configure terminal Enter
configuration commands, one per line. End with CNTL/Z. router(config)#aaa new-model
router(config)#aaa authentication login my-auth-list tacacs+ router(config)#tacacs-server host
192.168.1.101 router(config)#tacacs-server key letmein Switch to line configuration mode using the
following commands. Notice that the prompt changes to reflect the current mode.
router(config)#line 1 8 router(config-line)# Configure password checking at login. router(config-
line)#login authentication my-auth-list Exit configuration mode. router(config-line)#end router#
%SYS-5-CONFIG_I: Configured from console by console