Question 876 of 952 from exam 200-125: Cisco Certified Network Associate Exam

Question 876 of 952 from exam 200-125: Cisco Certified Network Associate Exam


Which three features are added in SNMPv3 over SNMPv2?



A. B. C. D. E.


SNMPv3 (Simple Network Management Protocol version 3) is an improved version of SNMPv2 with added security features to ensure secure transmission of network management data. The three primary features added to SNMPv3 over SNMPv2 are message integrity, authentication, and encryption.

  1. Message Integrity: Message integrity ensures that the message received is not altered during transmission. It checks the message's content for any changes, and if any modification is detected, it flags the message as tampered. SNMPv3 uses a hash-based Message Authentication Code (MAC) to add message integrity to the SNMP messages.

  2. Authentication: SNMPv3 provides authentication to verify the identity of the device or user who is sending the SNMP messages. Authentication ensures that the message is coming from a trusted source and not from an unauthorized entity. SNMPv3 uses a username and password-based authentication mechanism that is more secure than the community string-based authentication mechanism used in SNMPv1 and SNMPv2.

  3. Encryption: Encryption is the process of converting plain text data into an unreadable form to prevent unauthorized access to sensitive data. SNMPv3 uses the Advanced Encryption Standard (AES) encryption algorithm to provide confidentiality and protect the SNMP messages from eavesdropping.

SNMPv3 also includes error detection capabilities that help detect any transmission errors or issues in the SNMP messages. However, compression is not added as a feature in SNMPv3, so option B is not correct.

In summary, the three features added in SNMPv3 over SNMPv2 are Message Integrity, Authentication, and Encryption, making SNMPv3 a more secure protocol for network management.