Question:
What configuration scenario would offer the most protection to SNMP get and set messages?
- SNMPv2 for in-band management with read-write community strings
- SNMPv1 with out-of-band management in a private subnet
- SNMPv3 configured with the auth security level
- SNMP community strings
Explanation: SNMPv3 supports authentication and encryption with the auth and priv security levels. SNMPv1 and SNMPv2 do not support authentication or encryption. Using a default community string is not secure because the default string of "public" is well known and would allow anyone with SNMP systems to read device MIBs.
Exam with this question: Modules 9 – 12: Optimize, Monitor, and Troubleshoot Networks Exam Answers
Please login or Register to submit your answer