Table of Contents
Advertisement
3
Configuring the Switch
• Enable Authentication Traps – Issues a trap message to specified IP trap
managers whenever authentication of an SNMP request fails. (Default: Enabled)
• Enable Link-up and Link-down Traps – Issues a trap message whenever a port
link is established or broken. (Default: Enabled)
Web – Click SNMP, Configuration. Enter the IP address and community string for
each management station that will receive trap messages, specify the UDP port and
SNMP version, and then click Add. Select the trap types required using the check
boxes for Authentication and Link-up/down traps, and then click Apply.
CLI – This example adds a trap manager and enables authentication traps.
Console(config)#snmp-server host 10.1.19.23 batman private version 2c
udp-port 162
Console(config)#snmp-server enable traps authentication
Configuring SNMPv3 Management Access
To configure SNMPv3 management access to the switch, follow these steps:
1.
Configure an SNMP engine ID.
2.
Specify read and write access views for the switch MIB tree.
3.
Configure SNMP user groups with the required security model (i.e., SNMP v1,
v2c or v3) and security level (i.e., authentication and privacy).
4.
Assign SNMP users to groups, along with their specific authentication and
privacy passwords.
Setting an Engine ID
An SNMPv3 engine is an independent SNMP agent that resides on the switch. This
engine protects against message replay, delay, and redirection. The engine ID is
also used in combination with user passwords to generate the security keys for
authenticating and encrypting SNMPv3 packets.
3-38
Figure 3-24 Configuring SNMP Trap Managers
4-117
4-118
- Quick Links:
- Connecting to the Switch
Hide quick links:
Advertisement
Table of Contents
