Dell FCX624-S Laptop User Manual


  Open as PDF
of 1494
 
1370 PowerConnect B-Series FCX Configuration Guide
53-1002266-01
Using the user-based security model
40
Defining the engine id
A default engine ID is generated during system start up. To determine what the default engine ID of
the device is, enter the show snmp engineid command and find the following line:
Local SNMP Engine ID: 800007c70300e05290ab60
See the section “Displaying the Engine ID” on page 1377 for details.
The default engine ID guarantees the uniqueness of the engine ID for SNMP version 3. If you want
to change the default engine ID, enter a command such as the following.
PowerConnect(config)#snmp-server engineid local 800007c70300e05290ab60
Syntax: [no] snmp-server engineid local <hex-string>
The local parameter indicates that engine ID to be entered is the ID of this device, representing an
SNMP management entity.
NOTE
Each user localized key depends on the SNMP server engine ID, so all users need to be reconfigured
whenever the SNMP server engine ID changes.
NOTE
Since the current implementation of SNMP version 3 does not support Notification, remote engine
IDs cannot be configured at this time.
The <hex-string> variable consists of 11 octets, entered as hexadecimal values. There are two
hexadecimal characters in each octet. There should be an even number of hexadecimal characters
in an engine ID.
The default engine ID has a maximum of 11 octets:
Octets 1 through 4 represent the agent's SNMP management private enterprise number as
assigned by the Internet Assigned Numbers Authority (IANA). The most significant bit of Octet 1
is "1". With Octet 1 always equal to "1", the first four octets in the default engine ID is always
“800007c7” (which is 1991 in decimal).
Octet 5 is always 03 in hexadecimal and indicates that the next set of values represent a MAC
address.
Octets 6 through 11 form the MAC address of the lowest port in the management module.
NOTE
Engine ID must be a unique number among the various SNMP engines in the management domain.
Using the default engine ID ensures the uniqueness of the numbers.
Defining an SNMP group
SNMP groups map SNMP users to SNMP views. For each SNMP group, you can configure a read
view, a write view, or both. Users who are mapped to a group will use its views for access control.
To configure an SNMP user group, enter a command such as the following.
PowerConnect(config)#snmp-server group admin v3 auth read all write all
Syntax: [no] snmp-server group <groupname> v1 | v2 | v3 auth | noauth | priv [access
<standard-ACL-id>] [read <viewstring> | write <viewstring>]