C
ONFIGURING
THE
S
WITCH
3-58
Configuring SNMPv3 Management Access
To configure SNMPv3 management access to the switch, follow these
steps:
1. If you want to change the default engine ID, do so before configuring
other SNMP parameters.
2. Specify read and write access views for the switch MIB tree.
3. Configure SNMP user groups with the required security model (i.e.,
SNMP v1, v2c or v3) and security level (i.e., authentication and privacy).
4. Assign SNMP users to groups, along with their specific authentication
and privacy passwords.
Setting an Engine ID
An SNMPv3 engine is an independent SNMP agent that resides on the
switch. This engine protects against message replay, delay, and redirection.
The engine ID is also used in combination with user passwords to generate
the security keys for authenticating and encrypting SNMPv3 packets.
A local engine ID is automatically generated that is unique to the switch.
This is referred to as the default engine ID. If the local engineID is deleted
or changed, all SNMP users will be cleared. You will need to reconfigure all
existing users.
A new engine ID can be specified by entering 1 to 26 hexadecimal
characters. If less than 26 characters are specified, trailing zeroes are added
to the value. For example, the value “1234” is equivalent to “1234”
followed by 22 zeroes.