Security Models and Levels for SNMPv1, v2, and v3
The security level determines if an SNMP message needs to be protected from disclosure and if the message
needs to be authenticated. The various security levels that exist within a security model are as follows:
• noAuthNoPriv—Security level that does not provide authentication or encryption. This level is not
supported for SNMPv3.
• authNoPriv—Security level that provides authentication but does not provide encryption.
• authPriv—Security level that provides both authentication and encryption.
Three security models are available: SNMPv1, SNMPv2c, and SNMPv3. The security model combined with
the security level determine the security mechanism applied when the SNMP message is processed.
Table 24: SNMP Security Models and Levels
What HappensEncryptionAuthenticationLevelModel
Uses a community
string match for
authentication.
NoCommunity stringnoAuthNoPrivv1
Uses a community
string match for
authentication.
NoCommunity stringnoAuthNoPrivv2c
Provides
authentication based
on the Hash-Based
Message
Authentication Code
(HMAC) Message
Digest 5 (MD5)
algorithm or the
HMAC Secure Hash
Algorithm (SHA).
NoHMAC-MD5 or
HMAC-SHA
authNoPrivv3
Provides
authentication based
on the HMAC-MD5
or HMAC-SHA
algorithms. Provides
Data Encryption
Standard (DES)
56-bit encryption in
addition to
authentication based
on the Cipher Block
Chaning (CBC)
DES (DES-56)
standard.
DESHMAC-MD5 or
HMAC-SHA
authPrivv3
Cisco Nexus 5600 Series NX-OS System Management Configuration Guide, Release 7.x
OL-31641-01 151
Configuring SNMP
SNMPv3
To Next Page
Loading...
