1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. Catalyst 2000
  6. Configuration handbook

Cisco Catalyst 2000 Configuration Handbook page 223

Catalyst series lan switching
Hide thumbs
Table of Contents

Advertisement

202 Cisco LAN Switching Configuration Handbook
c. (Optional) Limit the switch operations controlled by SNMP.
(packet authentication, no encryption), noauth (no packet authentication), or
priv (packet authentication with encryption).
You can also specify SNMP views to limit MIB access for the group, using the
keywords read (view readview defines readable objects; defaults to all Internet
1.3.6.1 OID space), write (view writeview defines writeable objects; no default
write access), and notify (view notifyview defines notifications that can be
sent to the group; no default). You can use an optional standard IP access list
acc-list to further limit SNMP access for the group.
(Optional) Define SNMP users and access methods.
For SNMPv1 or SNMPv2c, apply a user to a group by entering the following:
(global) snmp-server user username groupname [remote ip-address] {v1 | v2c}
[access acc-list]
A user username is defined to belong to the group template groupname. The
IP address of the remote SNMP manager where the user belongs can be speci-
fied with the remote keyword. The version of SNMP must be specified with
the v1 or v2c keywords. You can use a standard IP access with the access key-
word to enable only specific source addresses for the SNMP user.
For SNMPv3, apply a user to a group and security policies by entering the fol-
lowing:
(global) snmp-server user username groupname [remote ip-address] v3
[encrypted] [auth {md5 | sha} auth-password] [access acc-list]
A user username is defined to belong to the group template groupname. The
IP address of the remote SNMP manager where the user belongs can be speci-
fied with the remote keyword. SNMP version 3 must be specified with the v3
keyword. You can use a standard IP access list with the access keyword to
enable only specific source addresses for the SNMP user.
By default passwords for the user are input as text strings. If the encrypted
keyword is given, passwords must be input as MD5 digests (already encrypt-
ed). An authentication password for the user is specified with the auth key-
word, the type of authentication as keywords md5 (HMAC-MD5-96 Message
Digest 5) or sha (HMAC-SHA-96), and a text string auth-password (up to 64
characters).
Enable use of the SNMP reload operation:
(global) snmp-server system-shutdown
By default, you cannot use SNMP to issue a reload operation to the switch. If
this function is desired, you can use this command to enable reload control.
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Cisco Catalyst 2000

Related Products for Cisco Catalyst 2000

This manual is also suitable for:

Catalyst 3000Catalyst 3560-eCatalyst 2940Catalyst 2975Catalyst 2960Catalyst 4948 ... Show all

Table of Contents