How to Configure SNMPv3 on Cisco iOS Switches – Cisco Networking Series Part 2

marcos-mayer-735961-unsplash

Photo by marcos mayer on Unsplash

Configuring SNMPv3 can be a daunting task compared to earlier questions, just from the copious amount of authentication parameters compared to earlier SNMP versions. In this short primer I’ll walk you through the steps necessary to set it up to get the same functionality as earlier SNMP versions, but with real (at least compared to SNMPv2c) security. I’m totally skipping the lesser security models, and moving directly to the Auht/Priv model.


First we need to enter the configuration context

Switch1>enable
Password:
Switch1# conf t
Switch1(config)#

Then we need to create a user group with the right privileges

Switch1(config)#snmp-server group SNMPV3 v3 priv read V3Read write V3Write

Then we need to create the user that uses this group, feel free to use a higher AES level if you so desire (128, 192 or 256 bits)

Switch1(config)#snmp-server user SNMPV3User v3 auth sha [auth password] priv aes 128 [priv password]

Then we need to assign the read and write groups the right priviledges to actually read and write to the SNMP objects.

Switch1(config)#snmp-server view V3Read iso included
Switch1(config)#snmp-server view V3Write iso included

Test that everything works, and write the configuration to memory

Switch1# copy running-config startup-config

Advertisements


Categories: Networks, Tech

Tags: , , , , , , , , ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: