Lab: Basic device security

Packet Tracer lab: Basic device security

Get the lab file (.pkt) from Google Drive (Jeremy McDowell's Free CCNA Online Course): Day 04 Lab - Basic Device Security.pkt

The lab tasks involve doing some configurations on a router and a switch.

1. Set the appropriate host names for each device, R1 and SW1.

To do so use the hostname command in global configuration mode.

First, access the device’s CLI (by clicking on the device icon in Packet Tracer and then selecting CLI).

Then enter privileged EXEC mode via the command Router>en (enable).

Then enter global configuration mode via the configure terminal command.

Router#conf t (configure terminal)

Router(config)#

Now execute the hostname command.

Router(config)#hostname R1

R1(config)#

The host name has changed to R1.

2. Configure an unencrypted enable password of ‘CCNA’ on both devices.

From global configuration mode enter the command: R1(config)#enable password CCNA

3. Exit back to user EXEC mode and test the password.

Exit twice back to user mode to check if the command was accepted.

R1(config)#exit

R1#exit

Now if we enter the enable command from user mode to enter enable mode (privileged EXEC mode), we are asked for a password.

R1>enable

Password:

R#

4. View the password in the running configuration.

Use the show running-config command in privileged EXEC mode to view the running configuration file.

R1#show running-config

5. Ensure that the current password, and all future passwords, are encrypted.

Run the service password-encryption command in global configuration mode.

R1#conf t

R1(config)#service password-encryption

6. View the password in the running configuration.

From global configuration mode, run the command:

R1(config)#do sh run

Now we see that “enable password CCNA” has become “enable password 7 08026F6028”.

7. Configure a more secure, encrypted enable password of ‘Cisco’ on both devices.

From global configuration mode:

R1(config)#enable secret Cisco

8. Exit back to user EXEC mode and then return to privileged EXEC mode. Which password do you have to use?

Cisco.

9. View the passwords in the running configuration.

What encryption type number is used for the encrypted ‘enable password’? 7

What encryption type number is used for the encrypted ‘enable secret’? 5

10. Save the running configuration to the startup configuration.

Run command:

R1(config)#do write

Use R1(config)#do show startup-config to view the startup configuration file.

Follow the same procedures to configure the switch.

PreviousCisco IOS CLI and basic device securityNextCisco IOS CLI and basic device security — Quiz

Last updated