Cisco WS-X6066-SLB-APC - Content Switching Module Software Manual page 640

SNMP Terminology
Table 36-1 SNMP Terminology (continued)
Term
community string
data integrity
data origin authentication
encryption
group
notification host
notify view
privacy
read view
security level
security model
Simple Network Management
Protocol (SNMP)
Simple Network Management
Protocol Version 2c
(SNMPv2c)
Catalyst 6000 Family Software Configuration Guide—Releases 6.3 and 6.4
36-2
Definition
A text string used to authenticate messages between a
management station and an SNMPv1 or SNMPv2c engine.
A condition or state of data in which a message packet has not
been altered or destroyed in an unauthorized manner.
The ability to verify the identity of a user that the message is
supposedly sent to. This ability protects users against both
message capture and replay by a different SNMP engine, and
against packets received or sent to a particular user that uses an
incorrect password or security level.
A method of hiding data from an unauthorized user by scrambling
the contents of an SNMP packet.
A set of users belonging to a particular security model. A group
defines the access rights for all the users belonging to it. Access
rights define the SNMP objects that can be read, written to, or
created. In addition, the group defines the notifications that a user
is allowed to receive.
An SNMP entity to which notifications (traps and informs) are to
be sent.
A view name (not to exceed 64 characters) for each group; the
view name defines the list of notifications that can be sent to each
user in the group.
An encrypted state of the contents of an SNMP packet; in this
state the contents are prevented from being disclosed on a
network. Encryption is performed with an algorithm called
CBC-DES (DES-56).
A view name (not to exceed 64 characters) for each group; the
view name defines the list of object identifiers (OIDs) that can be
read by users belonging to the group.
A type of security algorithm performed on each SNMP packet.
There are three levels: noauth, auth, and priv. The noauth level
authenticates a packet by a string match of the username. The auth
level authenticates a packet by using either the HMAC MD5 or
SHA algorithms. The priv level authenticates a packet by using
either the HMAC MD5 or SHA algorithms and encrypts the
packet using the CBC-DES (DES-56) algorithm.
The security strategy used by the SNMP agent. Currently, Cisco
IOS supports three security models: SNMPv1, SNMPv2c, and
SNMPv3.
A network management protocol that provides a method to
monitor and control network devices, and to manage
configurations, statistics collection, performance, and security.
Second version of SNMP. This protocol supports centralized and
distributed network management strategies and includes
improvements in the structure of management information (SMI),
protocol operations, management architecture, and security.
Chapter 36 Configuring SNMP
78-13315-02