Packet Tracer – Configuring Secure Passwords and SSH – Instructions Answers

Packet Tracer – Configuring Secure Passwords and SSH (Instructor Version)


Addressing Table



The network administrator has asked you to prepare RTA for deployment. Before it can be connected to the network, security measures must be enabled.


  • Configure IP addressing on PCA according to the Addressing Table.
  • Console into RTA from the Terminal on PC-A.
  • Configure IP addressing on RTA and enable the interface.
  • Configure the hostname as RTA.
  • Encrypt all plaintext passwords.
    RTA(config)# service password-encryption
  • Set a strong secret password of your choosing.
  • Set the domain name to RTA.com (case-sensitive for scoring in PT).
    RTA(config)# ip domain-name RTA.com
  • Create a user of your choosing with a strong password.
    RTA(config)# username any_user password any_password
  • Generate 1024-bit RSA keys.
    Note: In Packet Tracer, enter the crypto key generate rsa command and press Enter to continue.

    RTA(config)# crypto key generate rsa
  • Block anyone for three minutes who fails to log in after four attempts within a two-minute period.
    RTA(config)# login block-for 180 attempts 4 within 120
  • Configure the VTY lines for SSH access and use the local user profiles for authentication.
    RTA(config)# line vty 0 4
    RTA(config-line)# transport input ssh
    RTA(config-line)# login local
  • Save the configuration to NVRAM.
  • Be prepared to demonstrate to your instructor that you have established SSH access from PCA to RTA.


Configure IP address in PCA

Configure IP address in PCA

 Console into RTA from the Terminal on PC-A

Console into RTA from the Terminal on PC-A


Router#configure terminal
Router(config)#interface gigabitEthernet0/0
Router(config-if)#ip add
Router(config-if)#no shutdown

Router(config)#hostname RTA
RTA(config)#service password-encryption

RTA(config)#enable secret cl@ss

RTA(config)#ip domain-name RTA.com
RTA(config)#username any_user password cisco
RTA(config)#crypto key generate rsa
How many bits in the modulus [512]: 1024

RTA(config)#login block-for 180 attempts 4 within 120
RTA(config)#line vty 0 4
RTA(config-line)#transport input ssh
RTA(config-line)#login local

RTA#copy running-config startup-config

Download Packet Tracer (.pka) file:

Notify of

Inline Feedbacks
View all comments
Would love your thoughts, please comment.x