Securing Administrative Access to a Cisco Router



Download 228.77 Kb.
View original pdf
Page11/11
Date19.03.2021
Size228.77 Kb.
#56118
1   2   3   4   5   6   7   8   9   10   11
securing administrative access to a cisco router securing cisco routers pearson it certification
OSPF, Securing Admin Access
Figure
3.9
Configuring Privilege Level and Local Authentication.
Configuring Routers with a Statutory Warning
It is imperative that you configure a statutory warning on all your networking devices that clearly states the repercussions of attempting to logon to an unauthorized system. You can achieve this by using various banner messages:
banner exec
—You can use this command to specify a message that appears when an
EXEC process is initiated.
banner motd
—You can use this command to enable a message of the day for your admins and team.
banner login
—You can use this command to enable messages that appear before username and password prompts.
You can configure a few more banner messages on routers to ensure that you get the word out that unauthorized users will be prosecuted.
Just an FYI Do not use such phrases as "Welcome to the ABC Network" because they can create a loophole that a hacker can use to avoid legal action. We highly recommend that you consult your legal department to come up with the correct verbiage.
Securing SNMP
SNMP is one of the most exploited protocols and can be used to gain administrative access to Cisco routers by establishing communication between a router's internal SNMP agent and management information base (MIB). SNMP uses community strings that act as the passwords to access the routers. Whenever you are setting up SNMP community strings, make sure you know which strings will have read-only access which ones will have read-write access and, most of all, which systems will be allowed SNMP access via ACLs.
CAUTION
SNMP version 3 supports MD and Secure Hash Algorithm 1 (SHA-1) authentication.
< Back
Page 4 of 10 Next >
+ Share This Save To Your Account 2021 Pearson Education, Pearson IT Certification. All rights reserved River Street, Hoboken, NJ 07030
About
Affiliates
Contact Us
FAQ
Legal Notice
Ordering Information
Privacy Notice
Do Not Sell My Personal Information
Press
Promotions
Site Map
Support
User Groups
Write For Us
This chapter is from the book
SECUR Exam Cram 2 (Exam Cram
642-501)
Learn More

Buy


Download 228.77 Kb.

Share with your friends:
1   2   3   4   5   6   7   8   9   10   11



The database is protected by copyright ©ininet.org 2024
send message
    Main page
following rules