Technical Configuration Guide for SNMP | v2.0 | December 2006 |
8. Configuration Example Using SNMPv3
| SNMPv3 |
User 1 | Access |
| |
User 2 |
|
For this configuration example, we wish to accomplish the following:
•Add User 1 to USM table with authentication protocol of MD5 and privacy protocol of DES, i.e. authPriv)
•Allow User 1 full MIB views with full permission starting the existing view “org”
•Add User 2 to USM table authentication protocol of MD5 with no privacy protocol, i.e. authNoPriv
•Allow User 2 full MIB read permission starting from the exiting “org” level, but exclude write permission from all Private Enterprise MIB’s
To accomplish the above, please follow the steps below.
A)Load the DES module:
1.Assuming the DES module has been installed on the ERS 8600 switch, enter the following command:
•ERS-8610:5# config load-encryption-module DES /flash/p80c3700.des
B)Add User 1 to USM table. In this example, we will use a user name of ‘user1’, a MD5 password of ‘user1234’, and a DES privacy password of ‘userpriv’
•
Or via 4.1.1
•
C)Add User 1 to USM group. In this configuration example, we will add ‘user1’ to USM group named “group_1”
1.Add ‘user1’ to group ‘group_1’:
•ERS-8610:5# config snmp-v3 group-member create user1 usm group_1
D)Assign Access Level to USM group:
1.Assign access level of ‘authPriv’ to USM group ‘group_1’
•ERS-8610:5# config snmp-v3 group-access create group_1 "" usm authPriv
E)Assign the Read and Write view to the USM group:
1.Assign to usm group ‘group_1’ read and write view to ‘org’:
______________________________________________________________________________________________________
NORTEL | External Distribution | 34 |