Switch Admin Config

By certskills December 16, 2011 11:30

Today’s topic: All lot of administrative settings on a switch, particularly access passwords, that you need to set up when you first install a switch.  Enjoy!

The Network, Initial State, and Rules

This VM piece uses the simple LAN shown in Figure 1. It shows two switches, connected by a link, with a router on the side.

Figure 1 – Lab Topology

This lab begins with a pretty clean slate. Here are the notes for the initial state:

  • The router has been configured already, and is working.
  • The router is connected to other links, not shown; those links are completely unimportant to the lab.
  • The two LAN switches have no configuration; just before this lab, their config was erased, and the switches were reloaded.
  • This lab uses only ICND1/CCENT concepts, so the link between the two switches is not a VLAN trunk, and only the default VLAN (VLAN 1) is in use.

Problem: Configure Passwords and Administrative Settings

Your tasks for this VM piece are relatively straightforward. For the most part, you need to configure passwords, plus a few other administrative settings. Note that this lab does not ask you to configure IP addressing (that will be in the next VM that I post), but go ahead and prepare the switches for people to telnet and SSH into the switches.

The requirements are as follows. Just write up your answers on paper, or if you have a lab or simulator handy, feel free to configure on the gear or simulator.

  1. On both switches, protect the console using password “fred”.
  2. On switch SW1, allow telnet but not SSH into the switch, with simple password protection without using a username. Use password “sw1”.
  3. On switch SW2, allow both telnet and SSH into the switch, with both a username and password.
  4. On both SW1 and SW2, do not yet configure IP details; defer that work until the router folks tell you what IP addresses to use.
  5. Give each switch a hostname to match the figure.
  6. Document in the configuration the name of the device on the end of each of the links shown in the figure.
  7. On switch SW1, password protect privileged mode using the older style (and easier to break) password. Make this password “sw1bad”.
  8. On switch SW2, password protect privileged mode using the newer style (and more secure) password. Make this password “sw2good”.
STP Puzzle #2 - Answer
Answer: Switch Admin Config
By certskills December 16, 2011 11:30
Write a comment


  1. Chris September 7, 11:05

    Quick question; I’m very new to Cisco training, and I’ve read through the first two parts of your book, but when it comes to the Config Labs here, it was a little tricky finding one that I felt met my skill level. I chose this one – Switch Admin Config – as my first. Here’s the question, do you have a particular order you would recommend someone still wet behind the ears should do these labs in?

    Reply to this comment
    • CCENTSkills September 8, 07:16

      Hi Chris,
      Sure, couple of suggestions.
      First, these config labs are useful once you’ve read about the topic elsewhere, so I agree with you – you need a way to identify labs that are useful after you reach a certain point in your study.

      How to? Well, the labs are organized by book chapter and part from my ICND1 100-105 book (and ICND2 200-105 book for the labs in the certskills.com/ccnaskills blog.) Just go to the top left two menu items at the blog, and in one, you’ll see a list of book parts, and in the other, a list of book chapters. If you just finished reading a chapter, click that chapter, and you’ll see labs whose topics have been covered by the book in that chapter.

      Similarly, if you want to use these labs at the end of a book part, for part review, click on a book part. You’ll see the same labs, just a larger set: all those for an entire book part. (The book organizes the chapters into 3, 4, or 5 related chapters as a “part” of the book.)

      Follow-up if you have more questions!

      Reply to this comment
      • Chris September 15, 15:07

        Perfect, thanks so much. I had looked in those areas for the first few chapters but only saw the Q&A posts, not the config lab posts.

        Reply to this comment
  2. rapluwi September 17, 12:04

    Glad i saw this comment. I too was kinda lost going around this blog. 🙂

    Reply to this comment
  3. Satish Ahuja June 10, 03:17

    hey!! i’m new to learning ccna ,i’ve just started my preparation some days ago.I’m getting problem to understand what lab work means? In my perspective the lab work comprises configuring switches/routers or something else but i’m in little confusion what does lab work means?

    i did complete my starting 5 chapters but i don’t know how what should i do for lab.I go on top menu options as you earlier said to someone nut i didn’t understand what to do?

    when i go book chapters option and go with chapter 1 there was a article based on a question,so i just wanna know that what does lab work means?

    Reply to this comment
    • CCENTSkills June 13, 09:38

      Hi Satish,
      I’m not sure which specific reference to “lab work” that you’re referencing, since you didn’t say where you read that. However, I think I can help, assuming you’re asking in the context of also having a copy of my ICND1 or ICND2 book.

      Open the book, and look in the introduction, to around page xlix. You’ll see a heading there for “About Building Hands-on Skills”. There’s 4-5 pages of details about available tools, with pointers of where else to read. And yes, that means to do commands on the CLI of real, virtual, or simulated devices. Those pages discuss some options.

      You mentioned the first 5 chapters in the ICND1 book. If you look closely, you’ll see that those chapters cover concepts, but no commands. So, the chapter review section at the ends of those chapters do not direct you to do any labs. Chapter 8 is the first chapter that mentions for you to do labs, and that’s just a reminder to use the tools identified in the introduction to practice the commands seen there.

      The quickest and best way to be productive learning hands-on skills for these exams is the CCNA simulator. It has lots of lab exercises that you can do that exercise the commands in each chapter (at least each chapter that mentions specific commands.)

      Hope this helps,

      Reply to this comment
      • Satish Ahuja June 25, 09:33

        thanks you so much…sir,,

        Reply to this comment
      • Satish Ahuja June 25, 09:54

        one another thing i wanna know that, is packet tracer sufficient to do lab practice?

        because i’m very familier with that but having some problem,some commands like show interface status is not working,show mac address-table is not showing mac address table connected to switch

        Reply to this comment
        • CCENTSkills July 5, 09:05

          Hi Satish,
          Don’t know that I can be much help with opinions on PT – maybe ask your Network Academy instructor. PT is a tool created by and for Networking Academy students, so I’m guessing your question is one that’s come up before in class.

          Reply to this comment
  4. Ol85 October 16, 14:16

    Hello, where is the question tell about username barney?

    Reply to this comment
    • CCENTSkills October 24, 13:00

      Hi Ol85,
      There’s no mention of Barney as the specific username – only a request to use a username and password. I chose Barney out of habit.

      Reply to this comment
  5. Elías May 7, 15:07

    Hi Mr Odom,

    For this exercise is there a packet tracer file or do we need to create it from scratch?

    Reply to this comment
    • certskills Author May 8, 06:14

      Hi Elias,
      No packet tracer file. The series was designed to be simple paper exercises, available to all, but you can indeed build it in any Sim (from scratch), but you’ll often need to use other interfaces ids, as the example may use interface ids that you cannot recreate in a sim like packet tracer.

      Reply to this comment
View comments

Write a comment

Comment; Identify w/ Social Media or Email


Subscribe to our mailing list and get interesting stuff and updates to your email inbox.

Thank you for subscribing.

Something went wrong.