Snmpv3 configuration – Riello UPS NetMan 204 User Manual

Page 37

Advertising
background image

SNMPV3 CONFIGURATION

For enabling SNMPv3, is necessary to set this value on the Expert mode:

set snmpv3_enable true

For configuring SNMPv3 access, is necessary to edit snmp.conf. This file can be downloaded and

uploaded with FTP with user “admin” (default password: “admin”).

Each line of the file is parsed by NetMan 204 and must begin with one of these keyword:

#

: for comment, the line is skipped.

addUser

: for adding a new user and setting the passwords

addGroup

: for putting a user into a group

addAccessEntry

: for enabling access privileges to a group

addView

: for adding privileges

addManager

: for adding SNMP Manager which will receive SNMP traps.

The correct syntax for addUser is:

addUser <userName> <authProtocol> <privProtocol> <authPassword> <privPassword>

<userName> is the name of the user.

<authProtocol> is the protocol for authentication of this user during SNMP sessions. Possible

values are:

noauth

(no authentication will be used)

md5

(MD5 will be used for authentication)

sha

(SHA will be used for authentication)

<privProtocol> is the protocol for privacy of this user during SNMP sessions. Possible values are:

nopriv

(no privacy will be used)

des

(DES will be used for privacy)

<authPassword> is the password for authentication. It must be set to * when not used.

<privPassword> is the password for privacy. It must be set to * when not used.

The correct syntax for addGroup is:

addGroup <securityModel> <userName> <groupName>

<securityModel> is the security model. When using authentication and/or privacy, securityModel

must be USM. Possible values are:

USM

(User-based Security Model with SNMPv3)

v2

(SNMPv2)

v1

(SNMPv1)

<userName> is the name of the user, must match one of the user name defined with addUser.

<groupName> is the name of the group.

Please note that a userName can be assigned to only one group.

The correct syntax for addAccessEntry is:

addAccessEntry <groupName> <contextName> <securityModel> <securityType> <contextMatch>

<readView> <writeView> <notifyView>

<groupName> is the name of the group to which this access right applies, must match one of the

group name defined with addGroup.

<contextName> is the name of the context.

<securityModel> is the security model that must be used in order to gain access to this access

right, must match the security model defined with addGroup.

- 37 -

Advertising