Comtrol eCos User Manual
Page 627
Chapter 47. SNMP for eCos
#
sec.model
sec.name
group mygroup v1
mynet
group mygroup v2c
mynet
group mygroup usm
mynet
group local
v1
local
group local
v2c
local
group local
usm
local
group public
v1
public
group public
v2c
public
group public
usm
public
#
incl/excl subtree
mask
view all
included
.1
80
view system included
system
fe
view mib2
included
.iso.org.dod.internet.mgmt.mib-2 fc
#
context sec.model sec.level prefix read
write notify
access mygroup ""
any
noauth
exact
mib2
none
none
access public
""
any
noauth
exact
system none
none
access local
""
any
noauth
exact
all
all
all
Default VACM model
The default configuration of the agent, as shipped, is functionally
equivalent to the following entries:
com2sec
public
default
public
group
public
v1
public
group
public
v2c
public
group
public
usm
public
view
all
included
.1
access
public
""
any
noauth
exact
all
none none
SNMPv3 CONFIGURATION
engineID STRING
The
snmpd
agent
needs
to
be configured with an
engineID to be able to respond to SNMPv3
messages.
With
this
configuration
file
line, the engineID
will be configured from STRING.
The default
value
of
the
engineID
is
configured with the first IP
address found for the hostname of the machine.
createUser username (MD5|SHA) authpassphrase [DES]
[priv-
passphrase]
This directive should be placed into the "/var/ucd-
snmp"/snmpd.conf
file
instead of the other normal
locations.
The reason is that the
information
is
read
from
the
file
and then the line is removed
(eliminating the storage of the master password for
that
user)
and
replaced
with
the
key
that is
derived from it.
This key is a localized
key,
so
that
if
it is stolen it can not be used to access
other agents.
If the password is stolen,
however,
it can be.
MD5
and
SHA
are the authentication types to use,
523