Preventing Plain Text Password Storage on Cisco Devices | Cisco Exam 200-301-CCNA

Preventing Plain Text Password Storage

Question

Which command prevents passwords from being stored in the configuration as plain text on a router or switch?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

C.

The command that prevents passwords from being stored in the configuration as plain text on a router or switch is C. service password-encryption.

Explanation: When passwords are configured on a router or switch, they are stored in the configuration file in plain text, which makes them vulnerable to theft if someone gains access to the configuration file. The service password-encryption command is used to encrypt the passwords in the configuration file, making it more difficult for someone to read them.

The other commands listed are used for password protection, but they do not prevent passwords from being stored in plain text in the configuration file.

A. enable secret is used to configure a password for the privileged mode on a router or switch. This password is stored in an encrypted format in the configuration file.

B. enable password is used to configure a password for the privileged mode on a router or switch. This password is stored in plain text in the configuration file.

D. username cisco password encrypt is used to create a username and password combination for authentication on a router or switch. The password is encrypted, but it does not prevent other passwords from being stored in plain text in the configuration file.

Therefore, the correct command to prevent passwords from being stored in the configuration as plain text is C. service password-encryption.