Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

ovt Bronze
Bronze

SNMPv3 granular access control for traps and reads?

Is it possible to create a SNMPv3 user which can only be used for traps (SNMP GET requests will not be allowed from the same NMS)?

It seems that creating "notify group" also allows reads:

snmp-server group trapgroup v3 auth notify v1default

show snmp group

groupname: trapgroup security model:v3 auth

readview : v1default writeview: <no writeview specified>

notifyview: v1default

row status: active

  • Network Management
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: SNMPv3 granular access control for traps and reads?

Sure, just create a bogus read view. For example:

snmp-server view noread iso excluded

snmp-server group notifGroup v3 auth notify v1default read noread

2 REPLIES
Cisco Employee

Re: SNMPv3 granular access control for traps and reads?

Sure, just create a bogus read view. For example:

snmp-server view noread iso excluded

snmp-server group notifGroup v3 auth notify v1default read noread

ovt Bronze
Bronze

Re: SNMPv3 granular access control for traps and reads?

brilliant!

126
Views
0
Helpful
2
Replies
This widget could not be displayed.