Configuring System Administrator Settings : Configuring SNMP Settings
  
Configuring SNMP Settings
You configure SNMP contact and trap receiver settings to allow events to be reported to an SNMP entity in the Administration > System Settings: SNMP Basic page.
Traps are messages sent by an SNMP entity that indicate the occurrence of an event. The default system configuration doesn’t include SNMP traps.
RiOS provides support for these SNMP versions:
•  Version 1
•  Version 2c
•  SNMP Version 3, which provides authentication through the User-based Security Model (USM).
•  View-Based Access Control Mechanism (VACM), which provides richer access control.
•  SNMP Version 3 authentication using AES 128 and DES encryption privacy.
You set the default community string on the SNMP Basic page.
To set general SNMP parameters
1. Choose Administration > System Settings: SNMP Basic to display the SNMP Basic page.
Figure: SNMP Basic Page
2. Under SNMP Server Settings, complete the configuration as described in this table.
Control
Description
Enable SNMP Traps
Enables event reporting to an SMNP entity.
System Contact
Specify the username for the SNMP contact.
System Location
Specify the physical location of the SNMP system.
Read-Only Community String
Specify a password-like string to identify the read-only community: for example, public. This community string overrides any VACM settings.
Community strings can’t contain the pound sign (#).
3. Click Apply to apply your changes to the running configuration.
4. Click Save to Disk to save your settings permanently.
To add or remove a trap receiver
1. Under Trap Receivers, complete the configuration as described in this table.
Control
Description
Add a New Trap Receiver
Displays the controls to add a new trap receiver.
Receiver
Specify the destination IPv4 or IPv6 address or hostname for the SNMP trap.
Destination Port
Specify the destination port.
Receiver Type
Select SNMP v1, v2c, or v3 (user-based security model).
Remote User
(Appears only when you select v3.) Specify a remote username.
Authentication
(Appears only when you select v3). Optionally, select either Supply a Password or Supply a Key to use while authenticating users.
Authentication Protocol
(Appears only when you select v3.) Select an authentication method from the drop-down list:
•  MD5 - Specifies the Message-Digest 5 algorithm, a widely used cryptographic hash function with a 128-bit hash value. This is the default value.
•  SHA - Specifies the Secure Hash Algorithm, a set of related cryptographic hash functions. SHA is considered to be the successor to MD5.
Password/Password Confirm
(Appears only when you select v3 and Supply a Password.) Specify a password. The password must have a minimum of eight characters. Confirm the password in the Password Confirm text box.
Security Level
(Appears only when you select v3.) Determines whether a single atomic message exchange is authenticated. Select one of these levels from the drop-down list:
•  No Auth - Doesn’t authenticate packets and doesn’t use privacy. This is the default setting.
•  Auth - Authenticates packets but doesn’t use privacy.
•  AuthPriv - Authenticates packets using AES 128 and DES to encrypt messages for privacy.
Note: A security level applies to a group, not to an individual user.
Privacy Protocol
(Appears only when you select v3 and AuthPriv.) Select either the AES or DES protocol from the drop-down list. AES uses the AES128 algorithm.
Privacy
(Appears only when you select v3 and AuthPriv.) Select Same as Authentication Key, Supply a Password, or Supply a Key to use while authenticating users. The default setting is Same as Authentication Key.
Privacy Password
(Appears only when you select v3 and Supply a Password.) Specify a password. The password must have a minimum of eight characters. Confirm the password in the Privacy Password Confirm text box.
MD5/SHA Key
(Appears only when you select v3 and Authentication as Supply a Key.) Specify a unique authentication key. The key is either a 32-hexadecimal digit MD5 or a 40-hexadecimal digit SHA digest created using md5sum or sha1sum.
Privacy MD5/SHA Key
(Appears only when you select v3 and Privacy as Supply a Key.) Specify the privacy authentication key. The key is either a 32-hexadecimal digit MD5 or a 40-hexadecimal digit SHA digest created using md5sum or sha1sum.
Community
For v1 or v2 trap receivers, specify the SNMP community name. For example, public or private v3 trap receivers need a remote user with an authentication protocol, a password, and a security level.
Enable Receiver
Select to enable the new trap receiver. Clear to disable the receiver.
Add
Adds a new trap receiver to the list.
Remove Selected
Select the check box next to the name and click Remove Selected.
2. Click Save to Disk to save your settings permanently.
To test an SNMP trap
1. Choose Administration > System Settings: SNMP Basic to display the SNMP Basic page.
2. Under SNMP Trap Test, click Run.