Version 2

    PURPOSE: Simplified guide for Brocade FastIron Ethernet Switch SNMPv3 Configuration

     

    Reference: Brocade SNMPv3 Overview

         This guide is to provide a technical breakdown of the configuration so that you have a better understanding for setting up SNMPv3. Configuration Example at the bottom.

     

    Notes for the Guide:

    Username: TestSNMPv3User

    Password: P@$$w0rd

    View Name:  TestSNMPv3View

    Group Name: TestSNMPv3Group

     

        1. Create the View
            • Example Command: SNMP-Server view TestSNMPv3View Internet included

            1. If you see %Bad OID, then Internet does not exist, use ISO (if exists), or 1.3.6
              • Included MIB Family is included in the view
              • Excluded MIB Family is excluded from the view
        2. Create the Group
            • Example Command: SNMP-Server group TestSNMPv3Group v3 priv Read TestSNMPv3View Notify TestSNMPv3View
              1. Everything under here currently verifying
                1. v1: Group using the v1 security model
                2. v2c: Group using the v2c security model
                3. v3: Group using the User security model (SNMPv3)
                4. Auth: Group using the authNoPriv Security Model
                5. Noauth: Group using the noAuthNoPriv Security Model
                6. Priv: Group using the authPriv Security Model
                7. Access: Specify an access-list associated with this group
                8. Context: Specify a context to associate these views for the group
                9. Notify: Specify a notify view for the Group – Send a syslog every time a view is touched
                10. Read: Specify a read view for the group
                11. Write: Specify a write view for the group
        3. Create the User (usually do not see the user in Show Run/Show Start configurations)
            • Example Command: SNMP-Server user TestSNMPv3User TestNMPv3Group v3 Auth AES P@$$w0rd priv P@$$w0rd
                1. Everything under here currently verifying
              1. Remote: Specify a remote SNMP entity to which the user belongs
              2. v1: Group using the v1 security model
              3. v2c: Group using the v2c security model
              4. v3: Group using the User security model (SNMPv3)
              5. Access: Specify an access-list associated with this group
              6. Auth: Authentication parameters for the user
              7. Encrypted: Specifying passwords as MD5 or SHA digests
              8. MD5: Use HMAC MD5 algorithm for authentication
              9. SHA: Use HMAC SHA1 algorithm for authentication
              10. 3DES: Use 168 bit 3DES algorithm for encryption
              11. AES: Use AES 128, 192, or 256 bit algorithm for encryption
              12. DES: Use 56 but DES algorithm for encryption
        4. Send to Destination Host:
            1. Example Command: SNMP-Server host 10.10.1.161 version 3 privacy TestSNMPv3User

    Note: 10.10.1.161 is the Solarwinds server. If the Server is not in the list, then you will not be able to add the Device

     

    Example Configuration

    SNMP-Server group TestSNMPv3Group v3 priv Read all Notify all

    SNMP-Server user TestSNMPv3User TestNMPv3Group v3 Auth AES P@$$w0rd priv P@$$w0rd

    SNMP-Server host 10.10.1.161 version 3 privacy TestSNMPv3User

     

     

    For more information, please see Brocade's Documentation:

    http://www.brocade.com/downloads/documents/html_product_manuals/FI_ICX6650_07500_AG/FI_Security_SNMP3.08.8.html