SNMP V3 and CiscoWorks

Unanswered Question
Jul 4th, 2007

Hi,


today I configered a router (1760) for snmp v3:

snmp-server view ReadView internet included

snmp-server group OurGroup v3 auth read ReadView

snmp-server user xxxx OurGroup v3 auth md5 yyyy


Trying out with net-snmp works fine:

snmpwalk -v3 -u xxxx -l authNoPriv -a MD5 -A yyyy 192.168.1.1 system

...

system.sysORTable.sysOREntry.sysORUpTime.1 = Timeticks: (0) 0:00:00.00

system.sysORTable.sysOREntry.sysORUpTime.2 = Timeticks: (0) 0:00:00.00

system.sysORTable.sysOREntry.sysORUpTime.3 = Timeticks: (0) 0:00:00.00

system.sysORTable.sysOREntry.sysORUpTime.4 = Timeticks: (0) 0:00:00.00

system.sysORTable.sysOREntry.sysORUpTime.5 = Timeticks: (0) 0:00:00.00

system.sysORTable.sysOREntry.sysORUpTime.6 = Timeticks: (0) 0:00:00.00

...


Now I want to manage the router via our CiscoWorks and configuered:

Campus Manager Administration - Admin - Device Discovery - SNMP Settings

->SNMPV3

Target: 192.168.1.*

Username: xxxx

Password: yyyy

Authentication: MD5


and started discovery with result "device unreachable".


Sniffering the packets I found out, that the CW sets "AuthParam" with value NULL, while net-snmp sets some (crypted) data.

The router doesn't responde to CW.


Looks to me like that's the problem.

We're using LMS 2.6.1


Any ideas how to make it work?


Thanks in advance,

kind regards

Rolf Fischer

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
David Stanford Wed, 07/04/2007 - 08:32

I don't see write access on the device being setup...it would be something like this:


snmp-server group v3group v3 auth read v1default write v1default


snmp-server user v3user v3group v3 auth md5 v3userpass


Your's is missing write

Rolf Fischer Wed, 07/04/2007 - 08:49

That's right, I didn't configuere write-access yet. First I wanted make read-access work properly.


Just now I realize that I posted in "VPN" - my fault. I'm gonna post the problem again in Network Infrastructure.

Thanks so far.

Actions

This Discussion