Alcatel-Lucent ls 6248 User Guide
Configuring SNMP
89
3
The predefined default groups and view can be deleted from the system.
Enabling SNMP
The Engine ID Page permits the enabling of both SNMP and Authentication
notifications.
An SNMPv3 engine is an independent SNMP agent that resides on the switch. This
engine protects against message replay, delay, and redirection. The engine ID is
also used in combination with user passwords to generate the security keys for
authenticating and encrypting SNMPv3 packets.
A local engine ID is automatically generated that is unique to the switch. This is
referred to as the default engine ID. If the local engine ID is deleted or changed, all
SNMP users will be cleared. You will need to reconfigure all existing users.
A new engine ID can be specified by entering 1 to 26 hexadecimal characters. If less
than 26 characters are specified, trailing zeroes are added to the value. For
example, the value “1234” is equivalent to “1234” followed by 22 zeroes.
SNMP is enabled by default.
notifications.
An SNMPv3 engine is an independent SNMP agent that resides on the switch. This
engine protects against message replay, delay, and redirection. The engine ID is
also used in combination with user passwords to generate the security keys for
authenticating and encrypting SNMPv3 packets.
A local engine ID is automatically generated that is unique to the switch. This is
referred to as the default engine ID. If the local engine ID is deleted or changed, all
SNMP users will be cleared. You will need to reconfigure all existing users.
A new engine ID can be specified by entering 1 to 26 hexadecimal characters. If less
than 26 characters are specified, trailing zeroes are added to the value. For
example, the value “1234” is equivalent to “1234” followed by 22 zeroes.
SNMP is enabled by default.
Command Attributes
• Local Engine ID (10-64 Hex Characters) — Displays the local device Engine ID.
The field value is a hexadecimal string. Each byte in hexadecimal character strings
is two hexadecimal digits. Each byte can be separated by a period or a colon. The
Engine ID must be defined before SNMPv3 is enabled. Select a default Engine ID
that is comprised of an Enterprise number and the default MAC address.
is two hexadecimal digits. Each byte can be separated by a period or a colon. The
Engine ID must be defined before SNMPv3 is enabled. Select a default Engine ID
that is comprised of an Enterprise number and the default MAC address.
• Use Default — Uses the device-generated Engine ID. The default Engine ID is
based on the device MAC address and is defined per standard as:
• First 4 octets — First bit = 1, the rest is IANA Enterprise number.
• Fifth octet — Set to 3 to indicate the MAC address that follows.
Table 3-4. SNMPv3 Security Models and Levels
Model
Level
Group
Read View
Write View
Security
v1
noAuthNoPriv DefaultROGroup defaultview
none
Community string only
v1
noAuthNoPriv
DefaultRWGroup defaultview
defaultview
Community string only
v1
noAuthNoPriv
user defined
user defined user defined Community string only
v2c
noAuthNoPriv
DefaultROGroup defaultview
none
Community string only
v2c
noAuthNoPriv
DefaultRWGroup defaultview
defaultview
Community string only
v2c
noAuthNoPriv
user defined
user defined user defined Community string only
v3
noAuthNoPriv
user defined
user defined user defined A user name match only
v3
AuthNoPriv
user defined
user defined user defined Provides user authentication
via MD5 or SHA algorithms
v3
AuthPriv
user defined
user defined user defined Provides user authentication
via MD5 or SHA algorithms
and data privacy using DES
56-bit encryption