System information
Configuring for Network Management Applications
Using SNMP Tools To Manage the Switch
SNMPv3 Group Commands
Syntax: [no] snmpv3 group
This command assigns or removes a user to a security
group for access rights to the switch. To delete an entry,
all of the following three parameters must be included
in the command.
group <group_name>
This parameter identifies the group that has the
privileges that will be assigned to the user. For more
details see “Group Access Levels” on page 15-10.
user <user_name>
This parameter identifies the user to be added to the
access group. This must match the user name added
with the snmpv3 user command.
sec-model <ver1 | ver2c | ver3>
This defines which security model to use for the added
user. A SNMPv3 access Group should only use the ver3
security model.
Group Access Levels
The switch supports eight predefined group access levels. There are four
levels for use with version 3 users and four are used for access by version 2c
or version 1 management applications.
Group Name Group Access Type Group Read View Group Write View
managerpriv Ver3 Must have Authentication ManagerReadView ManagerWriteView
and Privacy
managerauth Ver3 Must have Authentication ManagerReadView ManagerWriteView
operatorauth Ver3 Must have Authentication OperatorReadView DiscoveryView
operatornoauth Ver3 No Authentication OperatorReadView DiscoveryView
commanagerrw Ver2c or Ver1 ManagerReadView ManagerWriteView
commanagerr Ver2c or Ver1 ManagerReadView DiscoveryView
comoperatorrw Ver2c or Ver1 OperatorReadView OperatorReadView
comoperatorr Ver2c or Ver1 OperatorReadView DiscoveryView
Each view allows you to view or modify a different set of MIBs.
■ Manager Read View – access to all managed objects
■ Manager Write View – access to all managed objects except the follow-
ing: vacmContextTable, vacmAccessTable, vacmViewTreeFamilyTable
15-10