Technical Configuration Guide for SNMP

v2.0

December 2006

6.4 Assigning the USM Group Access Level

The next step is to assign the access level to the USM Group. One of the following three USM access levels must be configured:

NoAuthNoPriv-Communication without authentication and privacy

AuthNoPriv-Communication with authentication (MD5 or SHA) and without privacy

AuthPriv-Communication with authentication (MD5 or SHA) and privacy (DES or AES in release 4.1)

The ERS 8600 has a number of default groups, with one default USM group named ‘initial’. The default groups can be examined by typing in the following command:

ERS-8610:5#config snmp-v3 group-access info

================================================================================

VACM Group Access Configuration

================================================================================

Group

Prefix Model

Level

ReadV

WriteV

NotifyV

--------------------------------------------------------------------------------

Group

Prefix Model

Level

ReadV

WriteV

NotifyV

--------------------------------------------------------------------------------

initial

usm

noAuthNoPriv root

root

root

initial

usm

authPriv

root

root

root

readgrp

snmpv1

noAuthNoPriv

v1v2only

 

org

readgrp

snmpv2c

noAuthNoPriv

v1v2only

 

org

v1v2grp

snmpv1

noAuthNoPriv

v1v2only

v1v2only

v1v2only

v1v2grp

snmpv2c

noAuthNoPriv

v1v2only

v1v2only

v1v2only

sBladeGrp

snmpv1

noAuthNoPriv

sBladeView

sBladeView

sBladeView

sBladeGrp

snmpv2c

noAuthNoPriv

sBladeView

sBladeView

sBladeView

OpsQosPolicyUser usm noAuthNoPriv org org org

9 out of 9 Total entries displayed------------------------------------------------

The default USM level, named ‘initial’, has both authentication and encryption (authPriv) with full read-write views. You can use this group for initial SNMPv3 access to the ERS 8600. The name of the read-write view starts at ‘org’ – please see next step in regards to setting up the MIB view.

To set the SNMP USM security level, type in the following command:

ERS-8610:5#config snmp-v3 group-access create [group name <0-32>] [prefix <0- 32>] usm [noAuthNoPrivauthNoPrivauthPriv]

Example: the following will add USM security level of ‘authPriv’ to the USM group named ‘group_example’:

ERS-8610:5#config snmp-v3 group-access create group_example "" usm authPriv

NOTE: The prefix entered above is entered using double quotes. If you wish, you can define the ‘exact’ context match that should be matched against the context of the incoming PDU; i.e. exact prefix match of read or write. There is no read or write view associated with the group yet. This will be defined in the next step.

______________________________________________________________________________________________________

NORTEL

External Distribution

25

Page 26
Image 26
Nortel Networks 8600 manual Assigning the USM Group Access Level, ERS-86105#config snmp-v3 group-access info

8600 specifications

Nortel Networks 8600 is a highly regarded member of the Nortel Ethernet routing portfolio, specifically designed to meet the demands of today's bandwidth-hungry environments. This advanced platform is a favorite for service providers and enterprises due to its scalability, reliability, and performance capabilities.

One of the standout features of the Nortel 8600 is its exceptional scalability. The platform supports a wide range of Ethernet services that can accommodate the growth of network applications without requiring significant overhaul. This scalability is driven by its ability to provide multiple 10 Gigabit and 100 Gigabit Ethernet ports, allowing organizations to expand their network as bandwidth needs increase.

The 8600 employs a robust architecture that enhances its performance. It utilizes a switching fabric that delivers high throughput and low latency, making it ideal for applications that demand real-time data transmission, such as voice over IP (VoIP) and video streaming. With support for high-density Ethernet, the 8600 can handle a large number of simultaneous connections, facilitating seamless experiences for end-users.

Another technological highlight of the Nortel 8600 is its integrated service capabilities. The platform incorporates advanced quality of service (QoS) features that prioritize bandwidth for critical applications, ensuring reliable performance even during peak usage times. The 8600 also supports comprehensive security protocols, providing peace of mind for organizations as they navigate the complexities of modern cybersecurity challenges.

Additionally, the platform offers advanced management features that simplify network administration. Built-in tools for monitoring and reporting enhance operational visibility, enabling IT teams to quickly identify and resolve issues. The 8600 is designed to integrate smoothly with existing networking environments, offering interoperability with multiple vendors and protocols, thus protecting investment in other technologies.

Energy efficiency is another characteristic of the Nortel 8600, making it a suitable choice for organizations keen on reducing operational costs and minimizing their environmental impact. The platform is built with energy-saving components and intelligent power management that allow businesses to operate sustainably.

Overall, the Nortel Networks 8600 is a sophisticated routing solution that integrates cutting-edge technologies to meet the demands of modern network environments, making it a preferred choice for organizations seeking a balance between performance, reliability, and cost-effectiveness.