SNMP Configuration and Management Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

171

172

173

174

175

176

177

178

179

180

SCF Commands for the SNMP Agent

SNMP Configuration and Management Manual—424777-006

5-9

ADD PROFILE Command

ACCESS { READONLY | READWRITE }

specifies the level of authority of an associated community to retrieve and alter

network management information:

The default is READONLY.

Considerations: ADD PROFILE

•

The value 0 is recognized as a wildcard in the host addressing scheme for the

HOSTADDR attribute. The PROFILE object only accepts a full wildcard

specification (“0.0.0.0”) or a distinct Internet address (for example,

“130.50.85.100”).

•

Each request that a NonStop agent receives from an SNMP manager includes a

community string composed of one or two discrete sections delimited by two

colons (::) as follows:

community-name[::subagent-password]

The community string included in incoming requests is part of the SNMP

manager’s configuration. The NonStop agent only compares the community-

name portion of the incoming request’s community string with the COMMUNITY

attribute values in its authentication table. Once an authenticated request has been

forwarded to a subagent, the subagent might employ additional security based on

the subagent-password portion of the community string.

•

If you start a NonStop agent process with its default WARM startup parameter (and

name the process $ZSNMP), a PROFILE object called $ZSNMP.#DEFAULT with

the following attribute values is automatically added and started:

PROFILE $ZSNMP.#DEFAULT, COMMUNITY "public",

HOSTADDR "0.0.0.0", ACCESS READONLY

Unless you explicitly stop this PROFILE object, the NonStop agent continues to

accept any incoming request originating from any manager belonging to the

“public” community, regardless of any other table entries you define to tighten

security.

•

You must configure an authentication table entry for each community other than

“public” from which the NonStop agent is to receive SNMP requests.

•

Two PROFILE objects cannot be defined with the same community (same

COMMUNITY attribute value).

READONLY The NonStop agent accepts Get and GetNext requests from

the associated community. Members of the community can

only retrieve information.

READWRITE The NonStop agent accepts Set, Get, and GetNext requests

from the associated community. Members of the community

can alter as well as retrieve information.