View-based access control model configuration, View-based access control model configuration 199, Cfg/sys/ssnmp/snmpv3/access – Nortel Networks ALTEON OS BMD00007 User Manual

Page 197

Advertising
background image

Alteon OS Command Reference

The Configuration Menu

„

199

BMD00007, November 2007

/cfg/sys/ssnmp/snmpv3/access

View-based Access Control Model Configuration

The view-based Access Control Model defines a set of services that an application can use for
checking access rights of the user. Access control is needed when the user has to process
SNMP retrieval or modification request from an SNMP entity.

[SNMPv3 vacmAccess 1 Menu]

name - Set group name

prefix - Set content prefix

model - Set security model

level - Set minimum level of security

match - Set prefix only or exact match

rview - Set read view index

wview - Set write view index

nview - Set notify view index

del - Delete vacmAccess entry

cur - Display current vacmAccess configuration

Table 6-13 View-based Access Control Model Menu Options (/cfg/sys/ssnmp/
snmpv3/access)

Command Syntax and Usage

name

<32 character name>

Defines the name of the group.

prefix

<32 character name>

Defines the name of the context. An SNMP context is a collection of management information that
an SNMP entity can access. An SNMP entity has access to many contexts. For more information
on naming the management information, see RFC2571, the SNMP Architecture document. The
view-based Access Control Model defines a table that lists the locally available contexts by con-
textName.

model usm|snmpv1|snmpv2

Allows you to select the security model to be used.

level noAuthNoPriv|authNoPriv|authPriv

Defines the minimum level of security required to gain access rights. The level noAuthNoPriv
means that the SNMP message will be sent without authentication and without using a privacy pro-
tocol. The level authNoPriv means that the SNMP message will be sent with authentication but
without using a privacy protocol. The authPriv means that the SNMP message will be sent both
with authentication and using a privacy protocol.

match exact|prefix

If the value is set to exact, then all the rows whose contextName exactly matches the prefix are
selected. If the value is set to prefix then the all the rows where the starting octets of the con-
textName exactly match the prefix are selected.

Advertising
Popular Brands
Popular manuals