Configuring SNMP
12-12 Configuring SNMP
The following example is an SNMPv3 configuration using the steps in Procedure 12-2. It shows
how to
• Create the user Enterasys_user, specifying authentication, encryption, and security
credentials.
• Assign Enterasys_user to the Enterasys group and associate it to the SNMPv3 security model,
usm.
• Specify that, if SNMP messages are received with authentication and encryption, the view,
readView for read requests, and the view writeView for write requests will be applied to this
user group based on the USM security model.
• For the view writeView, include the MIB subtree denoted with OID 1, and exclude the subtree
denoted by OID 1.3.6.1.4.1.5624.1.2.16 (which is the Configuration Management MIB).
• Assign an SNMPv3 target parameters entry named enterasysn to the Enterasys_user using
the USM security model.
• Create a target address entry named Enterasys_Networks at IP address 172.29.10.1 which will
use security and authorization criteria contained in a target parameters entry called
enterasysn, and bind these parameters together with a tag entry called v3TrapTag.
enterasys(su)-> set snmp user Enterasys_user privacy my_privacy authentication md5
my_authentication
enterasys(su)-> set snmp group Enterasys user Enterasys_user security-model usm
enterasys(su)-> set snmp access Enterasys security-model usm privacy read readView
write writeView
enterasys(su)-> set snmp view viewname readView subtree 1
enterasys(su)-> set snmp view viewname writeView subtree 1
enterasys(su)-> set snmp view viewname writeView subtree 1.3.6.1.4.1.5624.1.2.16
excluded
enterasys(su)-> set snmp targetparams enterasysn user Enterasys_user
security-model usm message-processing v3
enterasys(su)-> set snmp targetaddr Enterasys_Networks 172.29.10.1 param
enterasysn taglist v3TrapTag
6. Set the SNMP target address for notification
message generation.
• If not specified, udpport will be set to 162.
• If not specified, mask will be set to
255.255.255.255.
• If not specified, timeout will be set to 1500 (15
seconds).
• If not specified, number of retries will be set
to 3.
•If taglist is not specified, none will be set.
• If not specified, storage type will be
nonvolatile.
set snmp targetaddr targetaddr
ipaddr param param [udpport udpport]
[mask mask] [timeout timeout]
[retries retries] [taglist taglist]
[volatile | nonvolatile]
7. Set SNMP notification parameters.
• If not specified, message type will be set to
trap.
• If not specified, storage type will be set to
nonvolatile.
set snmp notify notify tag tag [trap
| inform] [volatile | nonvolatile
]
Procedure 12-2 SNMPv3 Configuration (continued)
Step Task Command(s)
To Next Page
Loading...
Need help?
General