Device Management / Security Flashcards
What is TACACS+ commonly used for?
Controlling administrator access or network devices. It’s not commonly used for end user access. That’s what RADIUS is for.
What is Cisco’s AAA server called?
ISE - Identity Services Engine
What is the difference between a:
- SNMP Manager
- SNMP Agent
- *SNMP Manager** is the server that gathers the data
- *SNMP Agent** runs on the device that is monitored/managed.
Data Variables on SNMP managed devices are organized in:
MIBs - Management Information Base
What direction can SNMP information flow?
Gets - Server asked device for data
Traps - Device pushes data to server
Difference between:
- SNMPv2c
- SNMPv3
SNMPv3 supports strong authentication and encryption
Config steps for SNMPv2:
R1(config)# snmp-server community public ro
R1(config)# snmp-server community private rw
R1(config)# snmp-server host 10.0.0.100 pulbic
R1(config)# snmp-server enable trap config (or some other type of message)
What are the 3 SNMPv3 security levels?
- NoAuthnoPriv - No authentication password. the username functions as the community string
- AuthNoPriv - password authentication is used. authentication is encrypticed but device data traffic is not
- AuthPriv - Passwords authentication is used. All communications are encrypted.
Config steps for SNMPv3:
R1(config)# snmp-server group USERGROUP v3 priv <- this will provide full read only access to this device to those users
Then need to configure users to a group:
R1(config)# snmp-server user USERNAME USERGROUP v3 auth md5 AuthenticationPASSWORD priv aes 256 EncryptionPASSWORD
What are the default permissions when SNMPv3 is configured on a device?
- Read All
- Write Nothing
- No trap notifications
Steps to configure a span port on a switch
SW1(config)# monitor session 1 source vlan 1 both or
SW1(config)# monitor session 1 source interface fast 0/1 rx
SW1(config)# monitor session 1 destination interfast fast 0/2
Command to view active span monitoring sessions?
SW1# show monitor
