Connectivity Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4048-ON

101

102

103

104

105

106

107

108

109

110

• Assign users to groups and congure SNMPv3-specic authentication and encryption settings, and optionally, localized security keys

and ACL-based access.

Conguring SNMP consists of these tasks in any order:

• Congure SNMP engine ID

• Congure SNMP views

• Congure SNMP groups

• Congure SNMP users

Congure SNMP engine ID

The engine ID identies the SNMP local agent on a switch. The engine ID is an octet colon-separated number; for example,

80:00:02:b8:04:61:62:63 .

The local engine ID is used to create a localized authentication and/or privacy key for greater security in SNMPv3 messages. You generate

a localized authentication and/or privacy key when you congure an SNMPv3 user.

Congure a remote device and its engine ID to allow a remote user to query the local SNMP agent. The remote engine ID is included in the

query and used to generate the authentication and privacy password keys to access the local agent. If you do not congure the remote

engine ID, remote users' attempts to access the local agent fail.

NOTE: Be sure to create a remote engine ID with the snmp-server engineID command before you congure a remote user

with the snmp-server user command. If you change the congured engine ID for a remote device, you must recongure the

authentication and privacy passwords for all remote users associated with the remote engine ID.

snmp-server engineID [local engineID] [remote ip-address {[udp-port port-number] remote-

engineID}]

To display the localized authentication and privacy keys in an SNMPv3 user conguration, enter the show snmp engineID local

command.

Generate SNMPv3 localized keys

OS10(config)# snmp-server engineID local 80:00:02:b8:04:61:62:63

OS10(config)# snmp-server engineID remote 1.1.1.2 udp-port 432 0xabeecc

Display localized keys

OS10# show snmp-server engineID local

Local default SNMP engineID: 80:00:02:b8:04:61:62:63

Congure SNMP views

Congure a read-only, read-write, or notify view of the MIB tree structure in the SNMP agent on the switch.

The oid-tree value species the OID in the MIB tree hierarchy at which a view starts. Enter included or excluded to include or

exclude the rest of the sub-tree MIB contents in the view. If necessary, re-enter the command to exclude tree entries in the included

content.

snmp-server view view-name oid-tree [included | excluded]

Congure read-only view

OS10(config)# snmp-server view readonly 1.3.6.1.2.1.31.1.1.1.6 included

System management

105