Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 484

An engineer is configuring device-hardening on a router in order to prevent credentials from being seen if the router configuration was compromised. Which command should be used?

Answer options

• A. service password-encryption
• B. username <username> privilege 15 password <password>
• C. username <username> password <password>
• D. service password-recovery

Correct answer: A

Explanation

The command 'service password-encryption' is used to encrypt passwords in the router's configuration, thus preventing them from being visible if the configuration is compromised. The other options either set user privileges or are related to password recovery, which do not provide the necessary hardening against credential exposure.