What should you do for improved security?

You are configuring SNMPv1/v2c on a WLC. What should you do for improved security?

You are configuring SNMPv1/v2c on a WLC. What should you do for improved security?

A.
Remove the default SNMPv1 community.

B.
Remove the default SNMPv1 and SNMPv2 communities.

C.
Remove the default SNMPv2 community.

D.
Remove the default SNMPv3 users.



Leave a Reply 2

Your email address will not be published. Required fields are marked *


nephelai

nephelai

v1 – v2

The controller has commonly known default values of “public” and ‘private’ for the read-only and read-write SNMP community strings. Using these standard values presents a security risk. If you use the default community names. and since these are known. the community names could be used to communicate to the controller using SNMP. Therefore, we strongly advise that you change these values. Step 1 Choose Management and then Communities under SNMP. The SNMP v1 / v2c Community page appears. Step 2 If ‘public” or ‘private’ appears in the Community Name column, hover your cursor over the blue drop-down arrow for the desired community and choose Remove to delete this community. Step 3 Click New to create a new community. The SNMP v1 / v2c Community > New page appears. Step 4 In the Community Name text box. enter a unique name containing up to 16 alphanumeric characters. Do not enter “public’ or “private.” Step 5 In the next two text boxes, enter the IPv4/1Pv6 address and IP Mask/Prefix Length from which this device accepts SNMP packets with the associated community and the IP mask. Step 6 Choose Read Only or Read/Whte from the Access Mode drop-down list to specify the access level for this community. Step 7 Choose Enable or Disable from the Status drop-down list to specify the status of this community. Step 8 Click Apply to commit your changes. Step 9 Click Save Configuration to save your settings. Step 10 Repeat this procedure if a “public” or “private” community still appears on the SNMP v1 / v2c Community page.