Which statement about device security is true
A. A router can have a maximum of two passwords configured.
B. The password you configure is encrypted in the running configuration by default.
C. The enable password must be used before the enable secret password.
D. If an encrypted password is lost, the NVRAM configuration must be ignored on boot.
C is true, D not so true!
Why would the answer not be C?
you can use the “enable secret” command to generate an encrypted password without ever having typed the “enable password” command.
as a matter of fact, if you type both the “enable password” and “enable secret” commands to create passwords for privileged Exec mode, it will store both in your configuration but default to using the secret password rather than the normal password.
—
I think that the answer is D because bypassing the NVRAM is the correct process for password recovery.
Totally Agreed
D is the best answer.. But not entirely true.
Encrypted passwords can be decrypted right?
If you lose a hashed password, then you have to guess or use answer D
yes but by default cisco devices does not encrypted,and can see all password on running-config and when those config file printed version