Displaying the snmp community strings, Configuring your nms, Using the user-based security model – Brocade TurboIron 24X Series Configuration Guide User Manual
Page 200
166
Brocade TurboIron 24X Series Configuration Guide
53-100305301
Establishing SNMP community strings
Displaying the SNMP community strings
To display the configured community strings, enter the following command at any CLI level.
Syntax: show snmp server
NOTE
If display of the strings is encrypted, the strings are not displayed. Encryption is enabled by default.
Using the user-based security model
SNMP version 3 (RFC 2570 through
2575) introduces a User-Based Security model (RFC 2574) for authentication and privacy services.
SNMP version 1 and version 2 use community strings to authenticate SNMP access to
management modules. This method can still be used for authentication. In SNMP version 3, the
User-Based Security model of SNMP can be used to secure against the following threats:
•
Modification of information
•
Masquerading the identity of an authorized entity
•
Message stream modification
•
Disclosure of information
SNMP version 3 also supports View-Based Access Control Mechanism (RFC 2575) to control
access at the PDU level. It defines mechanisms for determining whether or not access to a
managed object in a local MIB by a remote principal should be allowed. (refer to
Configuring your NMS
In order to use the SNMP version 3 features.
1. Make sure that your Network Manager System (NMS) supports SNMP version 3.
2. Configure your NMS agent with the necessary users.
TurboIron#show snmp server
Contact: Marshall
Location: Copy Center
Community(ro): public
Community(rw): private
Traps
Cold start: Enable
Link up: Enable
Link down: Enable
Authentication: Enable
Locked address violation: Enable
Power supply failure: Enable
Fan failure: Enable
Temperature warning: Enable
STP new root: Enable
STP topology change: Enable
ospf: Enable
Total Trap-Receiver Entries: 4
Trap-Receiver IP Address Community
1
10.95.6.211
2
10.95.5.21