Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1178
Views
0
Helpful
2
Replies

Encrypting community string name.

abahl
Level 1
Level 1

‎06-11-2004 12:32 AM - edited ‎02-20-2020 11:27 PM

Greetings!

I have reduced the command privilege as follows:

"privilege exec level 1 show startup-config"

Now any user with level 1 access can see the startup configuration, but with that he is also able see the snmp community strings in clear text.

Enable passwords and secrets are encrypted by using following command:

"service password-encryption"

But this command does not encryt snmp community string.

I need to encrypt snmp community string in the show startup-config output.

Please advice.

Cordially,

Anuj

0 Helpful
2 Replies 2

jsivulka
Level 5
Level 5

‎06-17-2004 05:19 AM

I do not think the community string can be encrypted using service password-encryption. however, for security, you could attach a restrictive access-list to the command.

0 Helpful

rmushtaq
Level 8
Level 8

‎06-19-2004 04:06 PM

SNMP community strings cannot be encrypted. You can configure a SNMP community-based ACL to allow SNMP access to the device only from the trusted network management workstations. This will prevent the device being polled from non-trusted hosts.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card