Configuring SNMPv3
Configuring SNMPv3 from the CLI
To configure SNMPv3 from the command-line interface (CLI), perform this task in privileged mode:
Task
Step 1
Set the SNMP-Server EngineID
name for the local SNMP engine.
Step 2
Configure the MIB views.
Step 3
Set the access rights for a group
with a certain security model in
different security levels.
Step 4
Specify the target addresses for
notifications.
Step 5
Set the snmpTargetAddrEntry in
the target address table.
Step 6
Set the SNMP parameters used to
generate a message to a target.
Step 7
Configure a new user.
Step 8
Relate a user to a group using a
specified security model.
Step 9
Configure the community table for
the system default part, which
maps community strings of
previous versions of SNMP to
SNMPv3.
Step 10
Configure the community table for
mappings between different
community strings and security
models with full permissions.
Step 11
Verify the SNMP configuration.
This example shows how to set a MIB view to interfacesMibView:
Console> (enable) set snmp view interfacesMibView 1.3.6.1.2.1.2 included
Snmp view name was set to interfacesMibView with subtree 1.3.6.1.2.1.2 included,
nonvolatile.
Catalyst 6000 Family Software Configuration Guide—Releases 6.3 and 6.4
36-12
Command
set snmp engineid engineid
set snmp view [-hex] {viewname} {subtree} [mask] [included |
excluded] [volatile | nonvolatile]
set snmp access [-hex] {groupname} {security-model v3}
{noauthentication | authentication | privacy} [read [-hex]
{readview}] [write [-hex] {writeview}] [notify [-hex]
{notifyview}] [context [-hex] {contextname} [exact | prefix]]
[volatile | nonvolatile]
set snmp notify [-hex] {notifyname} tag [-hex] {notifytag}
[trap | inform] [volatile | nonvolatile]
set snmp targetaddr [-hex] {addrname} param [-hex]
{paramsname} {ipaddr} [udpport {port}] [timeout {value}]
[retries {value}] [volatile | nonvolatile] [taglist {[-hex] tag}
[[-hex] tag]]
set snmp targetparams [-hex] {paramsname} user [-hex]
{username} {security-model v3} {message-processing v3}
{noauthentication | authentication | privacy} [volatile |
nonvolatile]
set snmp user [-hex] {username} [remote {engineid}]
[{authentication [md5 | sha] {authpassword}] [privacy
{privpassword}] [volatile | nonvolatile]
set snmp group [-hex] {groupname} user [-hex] {username}
{security-model v1 | v2 | v3} [volatile | nonvolatile]
set snmp community {read-only | read-write | read-write-all}
[community_string]
set snmp community index {index_name} name
[community_string] security {security_name} context
{context_name} transporttag {tag_value} [volatile |
nonvolatile]
show snmp
Chapter 36
Configuring SNMP
78-13315-02