Which recommended security practice prevents attackers from performing password recovery on a Cisco IOS router for the purpose of gaining access to the privileged EXEC mode?

Which recommended security practice prevents attackers from performing password recovery on a Cisco IOS router for the purpose of gaining access to the privileged EXEC mode?

• Locate the router in a secure locked room that is accessible only to authorized personnel.
• Configure secure administrative control to ensure that only authorized personnel can access the router.
• Keep a secure copy of the router Cisco IOS image and router configuration file as a backup.
• Provision the router with the maximum amount of memory possible.
• Disable all unused ports and interfaces to reduce the number of ways that the router can be accessed.

Explanation: Of the three areas of router security, physical security, router hardening, and operating system security, physical security involves locating the router in a secure room accessible only to authorized personnel who can perform password recovery.

Exam with this question: CCNA Security Chapter 2 Exam Answers
Exam with this question: Module 4: Quiz – Secure Device Access Network Security
Exam with this question: CCNA Security Chapter 2 Exam (CCNAS v1.2)