Support User Manuals

Nortel Networks 8600 Switch User Manual

Open as PDF

of 41

Technical Configuration Guide for SNMP v2.0 December 2006

______________________________________________________________________________________________________

NORTEL External Distribution

13

TrustedHostUserName: none

AccessLevel: readWriteAll

AccessStrict: false

Usage: 385

• ERS-8610:5# show sys access-policy snmp-group-info

snmpv3-groups :

Policy 1 snmpv3-groups:

Group Name Snmp-Model

Policy 2 snmpv3-groups:

Group Name Snmp-Model

readgrp snmpv1

readgrp snmpv2c

v1v2grp snmpv1

v1v2grp snmpv2c

3.3.3 SNMP Community Strings

For security reasons, the SNMP agent validates each request from an SNMP manager before

responding to the request. This is accomplished by verifying that the manager belongs to a valid

SNMP community. An SNMP community is a logical relationship between an SNMP agent and

one or more SNMP managers (the manager software implements the protocols used to exchange

data with SNMP agents). You define communities locally at the agent.

The agent establishes one community for each combination of authentication and access control

characteristics that you choose. You assign each community a unique name (community string),

and all members of a community have the same access privileges, either read-only or read-write:

• Read-only: members can view configuration and performance information.

• Read-write: members can view configuration and performance information, and also

change the configuration.

By defining a community, an agent limits access to its MIB to a selected set of management

stations. By using more than one community, the agent can provide different levels of MIB access

to different management stations.

SNMP community strings are required for access to the switch using Device Manager or other

SNMP-based management software. You set the SNMP community strings using the CLI. If you

have read/write/all access authority, you can modify the SNMP community strings for access to

the device through Device Manager.

In the ERS 8000 Series switch software release 3.7, the CLI command save config creates a

hidden and encrypted file that contains the SNMP community table information. The SNMP

community strings are not referenced in the ERS 8600 configuration file. Please see publication

number 317177-A titled Release Notes for the ERS 8000 Series Switch Software Release 3.7 for

more details regarding upgrading SNMP to release 3.7.

Caution: For security reasons, Nortel Networks recommends that you set the passwords to

values other than the factory defaults.

previous next