Hi,

I`m getting the following issue under some Nexus family switches [5K,7K,9K] whether I have configured role based access with lower privileges. I cannot read the snmp community using the command show snmp community.

SW18# show snmp community
User does not have permission to view community strings.

If I try the show run snmp, I can read the community, however, we have an automated application that needs to read under the show snmp community.

SW18# show run snmp

!Command: show running-config snmp

snmp-server user admin network-admin auth md5 0x7d6b157f4975d717d8813d091406f3ce priv 0x7d6b157f4975d717d8813d091406f3ce localizedkey
snmp-server host 149.131.144.168 traps version 2c UWYh007MFzSDO3
rmon event 1 description FATAL(1) owner PMON@FATAL
rmon event 2 description CRITICAL(2) owner PMON@CRITICAL
rmon event 3 description ERROR(3) owner PMON@ERROR
rmon event 4 description WARNING(4) owner PMON@WARNING
rmon event 5 description INFORMATION(5) owner PMON@INFO
snmp-server enable traps hsrp state-change
snmp-server enable traps snmp authentication
snmp-server community COMMUNITY group network-operator
snmp-server community COMMUNITY use-ipv4acl SNMP

As I`m using Radius to authenticate I`ve created the following role permissions to users from this Radius-group.

role name user
  rule 4 permit read
  rule 3 deny command reload *
  rule 2 deny command configure *
  rule 1 permit command *

I`ve recently added rule number 4 (I was reading through some other forums) but the result is the same.

Does anyone have any idea or tips on how to get this sorted out?