Access Control Group

Use the Access Control Group page to configure SNMP (Simple Network Management Protocol) access control groups. These SNMP groups allow network managers to assign different levels of authorization and access rights to specific device features and their attributes. The SNMP group can be referenced by the SNMP community to provide security and context for agents receiving requests and initiating traps as well as for management systems and their tasks. An SNMP agent will not respond to a request from a management system outside of its configured group, but an agent can be a member of multiple groups at the same time to allow communication with SNMP managers from different groups. Several default SNMP groups are preconfigured on the system.

To access this page, click System > Advanced Configuration > SNMP > Access Control Group in the navigation menu.

Use the buttons to perform the following tasks:

To add an SNMP group, click Add and specify the desired setting.
To remove one or more SNMP groups, select each entry to delete and click Remove. You must confirm the action before the entry is deleted.

Access Control Group Fields

Field	Description
Group Name	The name that identifies the SNMP group.
Context Name	The SNMP context associated with the SNMP group and its views. A user or a management application specifies the context name to get the performance information from the MIB objects associated with that context name. The Context EngineID identifies the SNMP entity that should process the request (the physical router), and the Context Name tells the agent in which context it should search for the objects requested by the user or the management application.
SNMP Version	The SNMP version associated with the group.
Security Level	The security level associated with the group, which is one of the following: No Auth No Priv: No authentication and no data encryption (no security). This is the only Security Level available for SNMPv1 and SNMPv2 groups. Auth No Priv: Authentication, but no data encryption. With this security level, users send SNMP messages that use an MD5 (Message-Digest algorithm 5) key/password for authentication, but not a DES key/password for encryption. Auth Priv: Authentication and data encryption. With this security level, users send an MD5 key/password for authentication and a DES key/password for encryption.
Read	The level of read access rights for the group. The menu includes the available SNMP views. When adding a group, select the checkbox to allow the field to be configured, then select the desired view that restricts management access to viewing the contents of the agent.
Write	The level of write access rights for the group. The menu includes the available SNMP views. When adding a group, select the checkbox to allow the field to be configured, then select the desired view that permits management read-write access to the contents of the agent but not to the community.
Notify	The level of notify access rights for the group. The menu includes the available SNMP views. When adding a group, select the checkbox to allow the field to be configured, then select the desired view that permits sending SNMP traps or informs.

If you change any of the parameters, click Submit to apply the changes to the system. If you want the switch to retain the new values across a power cycle, you must save the configuration.

Published October 2018prev | next

Email this topic

Print this page Print this page

Leave feedback Feedback