Manualshelf

System information

ManualsBrandsMotorola ManualsComputer equipmentBSR 64000
121122123124125126127128129130
BSR 64000 Configuration and Management Guide
4-16
Configuring SNMP Access Levels
Access to an SNMP Server by an SNMP client is determined by a specified access
level. You can set access levels using the following methods:
The community name method of access control and View-based Access Control
Method (VACM) are used with SNMPv1 and SNMPv2. A community name is a
text string used to authenticate messages between a management station and an
SNMP client.
The User-based Security Model (USM) and VACM are used with SNMPv3. USM
establishes user names and passwords and provides encryption. VACM
determines whether to permit access from a management station to a managed
object on the local SNMP client.
Figure 4-1 provides an overview of the SNMP access level configuration process and
the SNMP version (v1, v2c, or v3) that supports each snmp-server command.
Defining a Community Name
The community name access method, used predominantly with SNMPv1 and
SNMPv2, uses an SNMP Community Table that identifies those communities that
have read-only, read-write, or administrative permission to the SNMP MIB stored on
a particular server. You must define at least one SNMP community string. The
community string acts like a password to permit access to the SNMP Agent.
Optionally, you can specify one or more of the following characteristics associated
with the string:
An access list of IP addresses of the SNMP managers that are permitted to use the
community string to gain access to the agent.
A MIB view that defines the subset of all MIB objects accessible to the given
community. Refer to Configuring a MIB View, later in this chapter.
Read-write or read-only permission for the MIB objects accessible to the
community.