Results from a vulnerability analysis indicate that all enabled virtual terminals on a router can be accessed
using the same password. The company’s network device security policy mandates that at least one
virtual terminal have a different password than the other virtual terminals. Which of the following sets of
commands would meet this requirement?

A.
line vty 0 6 P@s5W0Rd password line vty 7 Qwer++!Y password

B.
line console 0 password password line vty 0 4 password P@s5W0Rd

C.
line vty 0 3 password Qwer++!Y line vty 4 password P@s5W0Rd

D.
line vty 0 3 password Qwer++!Y line console 0 password P@s5W0Rd

Explanation:
The VTY lines are the Virtual Terminal lines of the router, used solely to control inbound Telnet
connections. They are virtual, in the sense that they are a function of software – there is no hardware
associated with them.
Two numbers follow the keyword VTY because there is more than one VTY line for router access. The
default number of lines is five on many Cisco routers. Here, I’m configuring one password for all terminal
(VTY) lines. I can specify the actual terminal or VTY line numbers as a range. The syntax that you’ll see
most often, vty 0 4, covers all five terminal access lines.
Incorrect Answers:
A: The number 6 is highly unlikely to be used since the default number of lines is 5 on most Cisco routers.
B: Using a 0 vty means that there are no passwords.
D: The command will not yield a different password for the virtual terminal.

http://www.cisco.com/c/en/us/support/docs/ios-nx-os-software/ios-software-releases-110/45843-
configpasswords.html
http://www.techrepublic.com/article/basic-access-security-for-cisco-network-devices/