Which two statements about VTP passwords are true? (Choose two)
Click on the arrows to vote for the correct answerA. B. C. D. E. F.
VLAN Trunking Protocol (VTP) is a Cisco proprietary protocol that enables the sharing of VLAN information between switches in a domain. To ensure secure communication between switches, VTP passwords can be configured. Here are the explanations for the two statements that are true regarding VTP passwords:
A. The VTP password can only be configured when the switch is in Server mode: This statement is true. In VTP, switches can operate in three modes: Server, Client, and Transparent. Only switches in Server mode can configure and manage the VTP domain, including configuring the VTP password. When a password is set on a Server, it is sent to all other switches in the domain.
F. The VTP password can only be configured when the switch is in Client mode: This statement is false. VTP passwords can only be configured on a Server, not on a Client. Clients receive VTP updates from the Server, including any VTP password changes.
B. The VTP password is sent in the summary advertisements: This statement is false. VTP passwords are not sent in the summary advertisements. Instead, the password is sent in a separate message called the VTP message digest, which is a hash of the password that is sent along with the VTP updates.
C. The VTP password is encrypted for confidentiality using 3DES: This statement is false. VTP passwords are not encrypted for confidentiality using 3DES or any other encryption algorithm. Instead, as mentioned earlier, the password is hashed using the MD5 algorithm to preserve authenticity.
D. VTP is not required to be configured on all switches in the domain: This statement is true. While it is recommended to configure VTP on all switches in a domain to ensure consistent VLAN information, it is not required.
E. The VTP password is hashed to preserve authenticity using the MD5 algorithm: This statement is true. VTP passwords are hashed using the MD5 algorithm to preserve authenticity. When a password is configured on a VTP Server, the switch creates an MD5 hash of the password and includes this hash in all VTP updates. Other switches in the domain compare this hash to the hash of the password they have stored, and if they match, the update is accepted.