Enable SNMPv3 on Cisco Devices

  Networking, SNMP

Based on the CBTNuggets video: CBT Nuggest SNMPv3

References

  • SNMPv2c
  • cisco snmp object navigator

Overview

  • Configure the view
  • Configure a group
  • Configure a User

Configure views

R1(config)#snmp-server view <view-name> <MIB-family-name> included

  • For the MIB-family-name, you can use the OID or the ‘sensor’s name
  • The MIB-family-name is Case Sensitive!  You must type this in exactly as shown!
R1(config)#snmp-server view ALL-ACCESS iso included
R1(config)#snmp-server view INT-ACCESS ifEntry included
  • iso = access to everything iso and below.
  • ifEntry = access to everything related to interfaces.

Create Groups

R1(config)#snmp-server group <groupname> <snmp-version> <access-method> <access-type> <view-name>

SNMP Version:

  • v1
  • v2c
  • v3

Access methods:

  • auth: Authentication but no encryption
  • noauth: No authentication
  • priv: Authentication with encryption
snmp-server group GROUP1 v3 priv read ALL-ACCESS

Create a User

R1(config)#snmp-server user  <username> <groupname> <snmp-version> <auth-type> <encryption-type> <password> <pass-storage-method> <pass-encryption-method> <shared-secret-key>

snmp-server user thomas GROUP1 v3 auth sha cisco priv des cisco1

.

LEAVE A COMMENT