What exactly "snmp-server user ... remote <ip>" is used for?

Answered Question

What exactly "snmp-server user ... remote <ip>" is used for?

Does it have something to do with sending SNMPv3 traps/informs?

Correct Answer by Joe Clarke about 8 years 4 months ago

With an inform, it's the manager whose engineID is authoritative, so it will be the manager's engineID that is hashed with the remote user, and sent from the agent to the manager. In this case, with net-snmp, you would create a new snmptrapd user tied to the manager's local engineID:

createUser informUser MD5 informPass123

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Joe Clarke Thu, 10/02/2008 - 06:27

Yes. This is for informs to specify a remote SNMPv3 user. They are associated with the remote engineID for the specified host.

Is it needed to send SNMPv3 traps?

BTW, is the following a v3 trap (or v2 trap):

v3 packet security model: v3 security level: auth

username: trapuser

snmpEngineID: 800000090300001DE5195603

snmpEngineBoots: 3 snmpEngineTime: 1192

SNMP: V2 Trap, reqid 1, errstat 0, erridx 0

sysUpTime.0 = 122017

snmpTrapOID.0 = snmpTraps.3

ifIndex.10001 = 10001

ifDescr.10001 = FastEthernet0/1

ifType.10001 = 6

lifEntry.20.10001 = administratively down

Joe Clarke Thu, 10/02/2008 - 06:45

The engineID, boots, and engine time are used. The authoritative engineID is the agent, so, yes, the manager needs to be configured with its engineID. For net-snmp, I add something like the following to var/net-snmp/snmptrapd.conf:

createUser -e 080000000323456789 v3user MD5 v3pass123

Correct Answer
Joe Clarke Thu, 10/02/2008 - 07:03

With an inform, it's the manager whose engineID is authoritative, so it will be the manager's engineID that is hashed with the remote user, and sent from the agent to the manager. In this case, with net-snmp, you would create a new snmptrapd user tied to the manager's local engineID:

createUser informUser MD5 informPass123

Actions

This Discussion