Security Models and Levels for SNMPv1, v2, v3
The security level determines if an SNMP message needs to be protected from disclosure and if the message
needs to be authenticated. The various security levels that exist within a security model are as follows:
• noAuthNoPriv—Security level that does not provide authentication or encryption.
• authNoPriv—Security level that provides authentication but does not provide encryption.
• authPriv—Security level that provides both authentication and encryption.
Three security models are available: SNMPv1, SNMPv2c, and SNMPv3. The security model combined with
the security level determine the security mechanism applied when the SNMP message is processed.
Table 38: SNMP Security Models and Levels, on page 360 identifies what the combinations of security models
and levels mean.
Table 38: SNMP Security Models and Levels
What HappensEncryptionAuthenticationLevelModel
Uses a community
string match for
authentication.
NoCommunity stringnoAuthNoPrivv1
Uses a community
string match for
authentication.
NoCommunity stringnoAuthNoPrivv2c
Uses a username
match for
authentication.
NoUsernamenoAuthNoPrivv3
Provides
authentication based
on the
HMAC
4
-MD5
5
algorithm or the
HMAC-SHA
6
.
NoHMAC-MD5 or
HMAC-SHA
authNoPrivv3
Cisco ASR 9000 Series Aggregation Services Router System Management Configuration Guide, Release 5.1.x
360
Implementing SNMP
SNMP Versions
To Next Page
Loading...
Need help?
General
