You recently implemented SNMPv3 to increase the security of your network management system. A partial output of the show run command displays the following output that relates to SNMP.snmp-server group NORMAL v3 noauth read NORMAL write NORMAL

Last Updated on August 1, 2021 by Admin 1

300-410 : All Parts

300-410 : Implementing Cisco Enterprise Advanced Routing and Services (ENARSI) : All Parts
300-410 Part 01	300-410 Part 06
300-410 Part 02	300-410 Part 07
300-410 Part 03	300-410 Part 08
300-410 Part 04	300-410 Part 09
300-410 Part 05	300-410 Part 10

You recently implemented SNMPv3 to increase the security of your network management system. A partial output of the show run command displays the following output that relates to SNMP.<output omitted>snmp-server group NORMAL v3 noauth read NORMAL write NORMAL

Which of the following statements is true of this configuration?

it provides encryption, but it does not provide authentication
it provides neither authentication nor encryption
it provides authentication, but it does not provide encryption
it provides both authentication and encryption

Explanation:
It provides neither authentication nor encryption. In SNMPv3 there are three combinations of security that can be used:
noAuthNoPriv- no authentication and no encryption noauth keyword in the configuration
AuthNoPriv – messages are authenticated but not encrypted auth keyword in the configuration
AuthPriv – messages are authenticated and encrypted priv keyword in the configuration
In this case, the keyword noauth in the configuration indicates that no authentication and no encryption are provided. This makes the implementation no more secure than SNMPv1 or SNMPv2.

In SNMPv1 and SNMPv2, authentication is performed using a community string. When you implement SNMP using the noauth keyword, it does not use community strings for authentication. Instead it uses the configured user or group name (in this case NORMAL). Regardless, it does not provide either authentication or encryption.

Objective:
Infrastructure Services
Sub-Objective:
Configure and verify SNMP

300-410 : All Parts

300-410 : Implementing Cisco Enterprise Advanced Routing and Services (ENARSI) : All Parts
300-410 Part 01	300-410 Part 06
300-410 Part 02	300-410 Part 07
300-410 Part 03	300-410 Part 08
300-410 Part 04	300-410 Part 09
300-410 Part 05	300-410 Part 10

0 0 votes

Article Rating

0 Comments

Inline Feedbacks

View all comments

You recently implemented SNMPv3 to increase the security of your network management system. A partial output of the show run command displays the following output that relates to SNMP.<output omitted>snmp-server group NORMAL v3 noauth read NORMAL write NORMAL

Which of the following statements is true of this configuration?

You Might Also Like

Which of the following refers to the proving of mathematical theorems by a computer program?

Your network contains an Active Directory domain that is synced to Microsoft Azure Active Directory (Azure AD). You have a Microsoft Office 365 subscription.

_________ intrusion detection involves comparing traffic to known characteristics of malicious traffic, known as attack signatures.