Nortel Networks 8600 manual SNMPv3 Group Access Policy Configuration Example

Sub-Context: service

Current Context:

accesslevel <level> access-strict <truefalse> create

delete disable enable

host <ipaddr> info

mode <mode> name <name> network <addr/mask> precedence <precedence>

snmp-group-add <group name> <model> snmp-group-del <group name> <model> snmp-group-info

username <string>

ERS-8610:5#config sys access-policy policy 1 service ?

Sub-Context:

Current Context:

ftp <enabledisable> http <enabledisable> info

rlogin <enabledisable> snmpv3 <enabledisable> ssh <enabledisable> telnet <enabledisable> tftp <enabledisable>

3.3.1 SNMPv3 Group Access Policy: Configuration Example

For this example, we wish to create a policy for read-write-all access and only allow telnet and SNMPv3 access only for SNMPv3 usm group named group_example. Please see Section 5 in regards to how to configure SNMPv3.

a)Enable access policies globally

•ERS-8606:5#config sys access-policy enable true

b)Assuming no access policies have been created, we can start with policy 2 and name the policy policy2.

•ERS-8606:5#config sys access-policy policy 2 create

•ERS-8606:5#config sys access-policy policy 2 name policy2

c)Add read/write/all access level to policy 2:

•ERS-8606:5#config sys access-policy policy 2 accesslevel rwa

d)Add the usm group ‘group_example’ to policy 2:

______________________________________________________________________________________________________