SNMPv3 sample config (3750)

Answered Question
Dec 5th, 2007
User Badges:

Does anyone have a short sample config for SNMPv3 I can use as a model on a 3750? I'm wanting to collect stats and push/pull config and IOS changes with CW2000 using SNMPv3.


Thanks,

Correct Answer by Joe Clarke about 9 years 5 months ago

Sorry:


snmp-server group v3group v3 auth context vlan-177

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Joe Clarke Wed, 12/05/2007 - 11:29
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

snmp-server group v3group v3 auth write v1default

snmp-server user v3user v3group v3 auth md5 v3user123


Since the 3750 is a switch, you will also need to add a group entry for each VLAN context (if you want Campus Manager to work with it). Use the "show snmp context" command to see all contexts. For each one, you need to add:


snmp-server group v3group v3 context CONTEXT


Where CONTEXT is one of the contexts seen in the output of "show snmp context".

jackremboldt Wed, 12/05/2007 - 11:34
User Badges:

Thanks,


Is it the same on a 6509? (Modular IOS) as far as the CONTEXT and vlans?



Joe Clarke Wed, 12/05/2007 - 11:38
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

Yes.

jackremboldt Wed, 12/05/2007 - 11:45
User Badges:

For some reason it doesn't like the (context) key word. Am I missing a something?






#snmp-server group v3group v3 context vlan-177

^

% Invalid input detected at '^' marker.






snmp-server group v3group v3 ?

auth group using the authNoPriv Security Level

noauth group using the noAuthNoPriv Security Level

priv group using SNMPv3 authPriv security level




Correct Answer
Joe Clarke Wed, 12/05/2007 - 11:48
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

Sorry:


snmp-server group v3group v3 auth context vlan-177

jackremboldt Wed, 12/05/2007 - 12:46
User Badges:

CW2000 is still not collecting, do I need the SNMP-server engineID remote command? And if so, do you know the syntax?


Is there a way to see if CW2000 is trying and the switch is refusing?


Thanks,

Joe Clarke Wed, 12/05/2007 - 13:43
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

No, you do not need to configure the remote engineID. You can use a sniffer trace to see if LMS is properly querying the switch.

Actions

This Discussion