Important Notes

Changing the Default Values of SNMP Community Strings

The controller has commonly known default values of “public” and “private” for the read-only and read-write SNMP community strings. Using these standard values presents a security risk. Therefore, Cisco strongly advises that you change these values.

Using the GUI to Change the SNMP Community String Default Values

Follow these steps to change the SNMP community string default values through the controller GUI.

Step 1

Click Management and then Communities under SNMP. The SNMP v1 / v2c Community page appears.

Step 2

If “public” or “private” appears in the Community Name column, click Remove to delete this

 

community.

Step 3

Click New to create a new community.

Step 4

When the SNMP v1 / v2c Community > New page appears, enter a unique name containing up to 16

 

alphanumeric characters in the Community Name field. Do not enter “public” or “private.”

Step 5

In the remaining fields, enter the IP address from which this device accepts SNMP packets with the

 

associated community and the IP mask, choose Read Only or Read/Write to specify the access level

 

for this community, and choose Enable or Disable to specify the status of this community.

Step 6

Click Apply to commit your changes.

Step 7

Click Save Configuration to save your settings.

Step 8

Repeat this procedure if a “public” or “private” community still appears on the SNMP v1 / v2c

 

Community page.

 

 

Using the CLI to Change the SNMP Community String Default Values

Follow these steps to change the SNMP community string default values through the controller CLI.

Step 1 To see the current list of SNMP communities for this controller, enter this command:

show snmp community

Step 2 If “public” or “private” appears in the SNMP Community Name column, enter this command to delete this community:

config snmp community delete name

The name parameter is the community name (in this case, “public” or “private”).

Step 3 To create a new community, enter this command:

config snmp community create name

Enter up to 16 alphanumeric characters for the name parameter. Do not enter “public” or “private.”

Step 4 To enter the IP address from which this device accepts SNMP packets with the associated community, enter this command:

config snmp community ipaddr ip_address ip_mask name

Release Notes for Cisco Wireless LAN Controllers and Lightweight Access Points for Release 3.2.171.6

 

OL-11567-02

7

 

 

 

Page 6 Page 8
Page 7
Image 7
Cisco Systems OL-11567-02 manual Changing the Default Values of Snmp Community Strings, Show snmp community
Page 6 Page 8
Top Page Image Contents