8-29
Cisco 4700 Series Application Control Engine Appliance Administration Guide
OL-11157-01
Chapter 8 Configuring SNMP
Defining SNMP Communities
•
password2
—Encryption password for the user. The AES
priv
password can
have a minimum of eight characters. If the passphrases are specified in clear
text, you can specify a maximum of 64 alphanumeric characters. If you use
the localized key, you can specify a maximum of 130 alphanumeric
characters. Spaces are not allowed. The ACE supports the following special
characters in a password:
, . / = + - ^ @ ! % ~ # $ * ( )
Note that the ACE encrypts clear text passwords in the running-config.
For example, to set the user information, enter:
host1/Admin#
config
Enter configuration commands, one per line. End with CNTL/Z
host1/Admin(config)#
snmp-server user joe Network-Monitor auth sha
abcd1234
host1/Admin(config)#
snmp-server user sam Network-Monitor auth md5
abcdefgh
host1/Admin(config)#
snmp-server user Bill Network-Monitor auth sha
abcd1234 priv abcdefgh
To disable the SNMP user configuration or to remove an SNMP user, use the
no
form of the command. For example:
host1/Admin(config)#
no snmp-server user Bill Network-Monitor auth sha
abcd1234 priv abcdefgh
Defining SNMP Communities
Each SNMP device or member is part of a community. An SNMP community
determines the access rights for each SNMP device. SNMP uses communities to
establish trust between managers and agents.
You supply a name to the community. After that, all SNMP devices assigned to
that community as members have the same access rights (as described in
RFC 2576). The ACE allows read-only access to the MIB tree for devices
included in this community. The read-only community string allows a user to read
data values, but prevents that user from modifying modify the data.
Use the
snmp-server community
command in configuration mode to create or
modify SNMP community names and access privileges.