Home » Cisco » 350-080 » Which security features are provided in Cisco NX-OS SNMPv3?
Cisco NX-OS Software supports SNMPv1, SNMPv2c, and SNMPv3. Both SNMPv1 and SNMPv2c use a community-based form of security. SNMPv3 provides secure access to devices by a combination of authenticating and encrypting frames over the network. Which security features are provided in Cisco NX-OS SNMPv3? (Choose three.)
A. encryption — scrambles the packet contents to prevent them from being seen by unauthorized sources
B. password — a password (community string) sent in clear text between a manager and agent for added protection
C. authentication — determines that the message is from a valid source
D. message integrity — ensures that a packet has not been tampered with while it was in transit
E. user — to determine if user authentication is used instead of community strings
Correct Answer: ACD
Explanation/Reference:
Explanation:
SNMPv3 provides secure access to devices by a combination of authenticating and encrypting frames over the network. The security features provided in SNMPv3 are the following:
Message integrity — Ensures that a packet has not been tampered with in-transit.
Authentication — Determines the message is from a valid source.
Encryption — Scrambles the packet contents to prevent it from being seen by unauthorized sources.
SNMPv3 provides for both security models and security levels. A security model is an authentication strategy that is set up for a user and the role in which the user resides. A security level is the permitted level of security within a security model. A combination of a security model and a security level determines which security mechanism is employed when handling an SNMP packet.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/configuration/guide/cli/CLIConfigurationGuide/sm_snmp.html(snmpv3)
