User`s guide
9030944 E10 Introduction
1-7
Security Issues
SNMP Security
The following table shows the privileges that are given by ECM community
strings.
SNMP Security
Enterprise Configuration Manager is bound by the security measures of the
network management protocol. SNMP provides a second tier of security for
your network. SNMP security allows you to restrict access on a device-by-
device basis by setting the community name on the device and in the
SPECTRUM database. When the community name in the SPECTRUM
database does not match the community name on the device, the user is not
granted access to that device.
The system administrator can also control access to a device with the read/
write privileges that are specified in the SNMP community name. Both read
and write access are necessary to run all ECM operations. If the SNMP
community name on the device specifies read-access only, the user will not be
able to load configurations to the device.
Community
String ECM Privileges Windows Accessed
ECM,0 - 1 View, Verify, and
Load Configurations
Create/Edit
Templates and
Configurations
The user can access all operations
in all ECM windows.
ECM,2 View and Verify
Configurations
Create/Edit
Templates and
Configurations
The user can access all ECM
operations except Load. The Load
and Clear Load Status buttons/
options in the Main window are
grayed-out.
ECM,3 - 4 View, Verify, and
Load Configurations
The user can access all operations
in the ECM Main window. Access
to the ECM Configurations and
ECM Templates windows is
denied.
ECM,5 - 9 View and Verify
Configurations
The user can access only limited
operations in the ECM Main
window. The Load and Clear Load
Status buttons/options in the Main
window are grayed-out. Access to
the ECM Configurations and ECM
Templates windows is denied.