Configuring System Information 189
Defining SNMP Parameters
Simple Network Management Protocol (SNMP) provides a method for managing network devices.
The switch supports the following SNMP versions:
• SNMPv1 (version 1)
• SNMPv2 (version 2)
• SNMPv3 (version 3)
SNMP v1 and v2
The SNMP agents maintains a list of variables, which are used to manage the switch. The variables
are defined in the Management Information Base (MIB). The MIB presents the variables
controlled by the agent. The SNMP agent defines the MIB specification format, as well as the
format used to access the information over the network. Access rights to the SNMP agents are
controlled by access strings.
SNMPv1 and v2 are enabled by default.
SNMP v3
SNMP v3 also applies access control and a new traps mechanism to SNMPv1 and SNMPv2 PDUs.
In addition, a User Security Model (USM) is defined for SNMPv3, which includes:
•
Authentication
— Provides data integrity and data origin authentication.
•
Privacy
— Protects against disclosure message content. Cipher Block-Chaining
(CBC) is used
for encryption. Either authentication is enabled on an SNMP message, or both
authentication and privacy are enabled on an SNMP message. However privacy cannot be
enabled without authentication.
•
Timeliness
— Protects against message delay or message redundancy. The SNMP agent
compares incoming message to the message time information.
•
Key Management
— Defines key generation, key updates, and key use.
The switch supports SNMP notification filters based on Object IDs (OID). OIDs are used by the
system to manage switch features. SNMP v3 supports the following features:
• Security
• Feature Access Control
•Traps
Authentication or Privacy Keys are modified in the
User Security Model (USM)
.
SNMPv3 can be enabled on if the Local Engine ID is enabled.