Defining an snmp group, Command.refer to – Brocade FastIron Ethernet Switch Administration Guide User Manual

Page 142

Advertising
background image

The default engine ID guarantees the uniqueness of the engine ID for SNMP version 3. If you want to
change the default engine ID, enter the snmp-server engineid local command.

device(config)#snmp-server engineid local 800007c70300e05290ab60

Syntax: [no] snmp-server engineid local hex-string

The local parameter indicates that engine ID to be entered is the ID of this device, representing an
SNMP management entity.

NOTE
Each user localized key depends on the SNMP server engine ID, so all users need to be reconfigured
whenever the SNMP server engine ID changes.

NOTE
Since the current implementation of SNMP version 3 does not support Notification, remote engine IDs
cannot be configured at this time.

The hex-string variable consists of 11 octets, entered as hexadecimal values. There are two
hexadecimal characters in each octet. There should be an even number of hexadecimal characters in
an engine ID.

The default engine ID has a maximum of 11 octets:

• Octets 1 through 4 represent the agent's SNMP management private enterprise number as

assigned by the Internet Assigned Numbers Authority (IANA). The most significant bit of Octet 1 is
"1". For example, "000007c7" is the ID for Brocade Communications, Inc. in hexadecimal. With
Octet 1 always equal to "1", the first four octets in the default engine ID is always "800007c7" (which
is 1991 in decimal).

• Octet 5 is always 03 in hexadecimal and indicates that the next set of values represent a MAC

address.

• Octets 6 through 11 form the MAC address of the lowest port in the management module.

NOTE
Engine ID must be a unique number among the various SNMP engines in the management domain.
Using the default engine ID ensures the uniqueness of the numbers.

Defining an SNMP group

SNMP groups map SNMP users to SNMP views. For each SNMP group, you can configure a read
view, a write view, or both. Users who are mapped to a group will use its views for access control.

To configure an SNMP user group, enter a command such as the following.

device(config)#snmp-server group admin v3 auth read all write all

Syntax:[no] snmp-server group groupname v1 | v2 | v3 auth | noauth | priv [ access standard-
ACL-id ] [ read viewstring | write viewstring ]

NOTE
This command is not used for SNMP version 1 and SNMP version 2. In these versions, groups and
group views are created internally using community strings. (refer to

SNMP community strings

on

Defining an SNMP group

142

FastIron Ethernet Switch Administration Guide

53-1003075-02

Advertising
Popular Brands
Popular manuals