cancel
Showing results for 
Search instead for 
Did you mean: 
Create Post
Level 7

What's SNMPv3 Context?

Jump to solution

I am planning to add some Cisco switches later today on NPM 9.5 I was wondering what's the SNMPv3 context section about? I know you can leave it blank.... I hope but I was wondering if I had to fill that in what would go in there

It would be good to know for future knowledge

 

Thanks

Tags (2)
0 Kudos
1 Solution
Product Manager
Product Manager

From http://tools.ietf.org/html/rfc5343

An SNMP context is a collection of management information accessible
by an SNMP entity.  An item of management information may exist in
more than one context and an SNMP entity potentially has access to
many contexts [RFC3411].  A context is identified by the snmpEngineID
value of the entity hosting the management information (also called a
contextEngineID) and a context name that identifies the specific
context (also called a contextName).

View solution in original post

4 Replies
Product Manager
Product Manager

From http://tools.ietf.org/html/rfc5343

An SNMP context is a collection of management information accessible
by an SNMP entity.  An item of management information may exist in
more than one context and an SNMP entity potentially has access to
many contexts [RFC3411].  A context is identified by the snmpEngineID
value of the entity hosting the management information (also called a
contextEngineID) and a context name that identifies the specific
context (also called a contextName).

View solution in original post

Level 12

A quick explaination of SNMPv3 is below:

SNMP Version 3 (SNMPv3) adds security and remote configuration capabilities to the previous versions. The SNMPv3 architecture introduces the User-based Security Model (USM) for message security and the View-based Access Control Model (VACM) for access control. The architecture supports the concurrent use of different security, access control, and message processing models. More specifically:

Security

authentication and privacy

authorization and access control 

Administrative Framework

naming of entities

people and policies

usernames and key management

notification destinations

proxy relationships

remotely configurable via SNMP operations

SNMPv3 also introduces the ability to dynamically configure the SNMP agent using SNMP SET commands against the MIB objects that represent the agent's configuration. This dynamic configuration support enables addition, deletion, and modification of configuration entries either locally or remotely.

Ref: http://www.javvin.com/protocolSNMPv3.html

Here is a table from Cisco:

Table 1 SNMP Security Models and Levels

Model
Level
Authentication
Encryption
What Happens

v1

noAuthNoPriv

Community String

No

Uses a community string match for authentication.

v2c

noAuthNoPriv

Community String

No

Uses a community string match for authentication.

v3

noAuthNoPriv

Username

No

Uses a username match for authentication.

v3

authNoPriv

MD5 or SHA

No

Provides authentication based on the HMAC-MD5 or HMAC-SHA algorithms.

v3

authPriv

MD5 or SHA

DES

Provides authentication based on the HMAC-MD5 or HMAC-SHA algorithms. Provides DES 56-bit encryption in addition to authentication based on the CBC-DES (DES-56) standard.

ref: http://www.cisco.com/en/US/docs/ios/12_0t/12_0t3/feature/guide/Snmp3.html

 

Hope this helps out!

0 Kudos

And another source is:  http://www.snmp.com/snmpv3/v3white.shtml

0 Kudos
Level 14

jogray,

Andy McBride has written up the following technical overview of SNMPv3 with respect to requirements for SolarWinds products: "Implementing SNMPv3".

HTH