beautypg.com

Configuring your nms, Defining the engine id – Brocade Virtual ADX Administration Guide (Supporting ADX v03.1.00) User Manual

Page 127

background image

Brocade Virtual ADX Administration Guide

115

53-1003249-01

Using the user-based security mode

4

Message stream modification

Disclosure of information

Furthermore, SNMP version 3 supports View-Based Access Control Mechanism (RFC 2575) to
control access at the PDU level. It defines mechanisms for determining whether or not access to a
managed object in a local MIB by a remote principal should be allowed.

Configuring your NMS

To be able to use the SNMP version 3 features, perform the following steps.

1. Make sure that your Network Manager System (NMS) supports SNMP version 3.

2. Configure your NMS agent with the necessary users.

3. Configure the SNMP version 3 features in the Brocade Virtual ADX.

Configuring SNMP version 3 on the Brocade Virtual ADX

To configure SNMP version 3 on the Brocade Virtual ADX, do the following:

1. Enter an engine ID for the management process using the snmp-server engineid command if

you will not use the default engine ID. See

“Defining the engine ID”

on page 115.

2. Create views that will be assigned to SNMP user groups using the snmp-server view command.

3. Create user groups using the snmp-server group command. See

“Defining an SNMP group”

on

page 116.

4. Create user accounts and associate these accounts to user groups using the snmp-server user

command. See

“Defining an SNMP user account”

on page 117.

If SNMP version 3 is not configured, then community strings by default are used to authenticate
access.

Even if SNMP version 3 users are configured on the device, the system will still accept SNMP
version 1, 2c and 3 PDUs from the remote manager.

Defining the engine ID

A default engine ID is generated during system start up.The format of the default engine ID is
derived from RFC 2571 (Architecture for SNMP frameworks) within the MIB description for object
SnmpEngineID.

To determine what the default engine ID of the device is, enter the show snmp engineid command
and find the following line.

Local SNMP Engine ID: 800007c70300e05290ab60

See the section

“Displaying the engine ID”

on page 118 for details.

The default engine ID guarantees the uniqueness of the engine ID for SNMP version 3. If you want
to change the default engine ID, enter a command such as the following:

Virtual ADX(config)#snmp-server engineid local 800007c70300e05290ab60

Syntax: [no] snmp-server engineid local hex-string

See also other documents in the category Brocade Computer Accessories: