Create Access for a Group
About this task
Create access for a group in the View-based Access Control Model (VACM) table to provide access to managed objects.
Procedure
- In the navigation pane, expand .
- Click VACM Table.
- Click the Group Access Right tab.
- Click Insert.
- In the GroupName box, type a VACM group name.
- In the ContextPrefix box, select a VRF instance. This is an optional step.
- From the SecurityModel options, select a model.
- From the SecurityLevel options, select a security level.
- In the ContextMatch option, select a value to match the context name. This value is exact by default.
- Optional: In the ReadViewName box, type the name of the MIB view that forms the basis of authorization when reading objects. This is an optional step.
- Optional: In the WriteViewName box, type the name of the MIB view that forms the basis of authorization when writing objects. This is an optional step.
- Optional: In the NotifyViewName box, type MIB view that forms the basis of authorization for notifications. This is an optional step.
- Click Insert.
Group Access Right field descriptions
Use the data in the following table to use the Group Access Right tab.
Name |
Description |
---|---|
GroupName |
Specifies the name of the new group in the VACM table. The range is 1–32 characters. |
ContextPrefix |
Specifies if the contextName must match the value of the instance of this object exactly or partially. The range is an SnmpAdminString, 1–32 characters. |
SecurityModel |
Specifies the authentication checking to communicate to the switch. The security models are:
|
SecurityLevel |
Specifies the minimum level of security required to gain the access rights allowed. The security levels are:
|
ContextMatch |
Specifies if the prefix and the context name must match. If the value is exact, all rows where the contextName exactly matches vacmAccessContextPrefix are selected. If you do not select exact, all rows where the contextName with starting octets that exactly match vacmAccessContextPrefix are selected. |
ReadViewName |
Identifies the MIB view of the SNMP context to which this conceptual row authorizes read access. The default is the empty string. |
WriteViewName |
Identifies the MIB view of the SNMP context to which this conceptual row authorizes write access. The default is the empty string. |
NotifyViewName |
Identifies the MIB view of the SNMP context to which this conceptual row authorizes access for notifications. The default is the empty string. |