Snmpv3 configuration – Riello UPS NetMan 204 User Manual
Page 37
SNMPV3 CONFIGURATION
For enabling SNMPv3, is necessary to set this value on the Expert mode:
set snmpv3_enable true
For configuring SNMPv3 access, is necessary to edit snmp.conf. This file can be downloaded and
uploaded with FTP with user “admin” (default password: “admin”).
Each line of the file is parsed by NetMan 204 and must begin with one of these keyword:
•
#
: for comment, the line is skipped.
•
addUser
: for adding a new user and setting the passwords
•
addGroup
: for putting a user into a group
•
addAccessEntry
: for enabling access privileges to a group
•
addView
: for adding privileges
•
addManager
: for adding SNMP Manager which will receive SNMP traps.
The correct syntax for addUser is:
addUser <userName> <authProtocol> <privProtocol> <authPassword> <privPassword>
<userName> is the name of the user.
<authProtocol> is the protocol for authentication of this user during SNMP sessions. Possible
values are:
•
noauth
(no authentication will be used)
•
md5
(MD5 will be used for authentication)
•
sha
(SHA will be used for authentication)
<privProtocol> is the protocol for privacy of this user during SNMP sessions. Possible values are:
•
nopriv
(no privacy will be used)
•
des
(DES will be used for privacy)
<authPassword> is the password for authentication. It must be set to * when not used.
<privPassword> is the password for privacy. It must be set to * when not used.
The correct syntax for addGroup is:
addGroup <securityModel> <userName> <groupName>
<securityModel> is the security model. When using authentication and/or privacy, securityModel
must be USM. Possible values are:
•
USM
(User-based Security Model with SNMPv3)
•
v2
(SNMPv2)
•
v1
(SNMPv1)
<userName> is the name of the user, must match one of the user name defined with addUser.
<groupName> is the name of the group.
Please note that a userName can be assigned to only one group.
The correct syntax for addAccessEntry is:
addAccessEntry <groupName> <contextName> <securityModel> <securityType> <contextMatch>
<readView> <writeView> <notifyView>
<groupName> is the name of the group to which this access right applies, must match one of the
group name defined with addGroup.
<contextName> is the name of the context.
<securityModel> is the security model that must be used in order to gain access to this access
right, must match the security model defined with addGroup.
- 37 -