Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2185
Views
0
Helpful
2
Replies

SNMPV3 can not work on Cisco 72000

angelyouyou
Level 1
Level 1

‎09-18-2020 08:05 AM - edited ‎09-18-2020 08:10 AM

Cisco IOS Software, 7200 Software (C7200-ADVENTERPRISEK9-M), Version 15.2(4)M11, RELEASE SOFTWARE (fc2)

 

hi I'm trying to config and run SNMPv3 for first time I but it doesn't work. now I have an router on my lab and a server with multiple snmp manager apps and server can router my router directly so I wont have any security issue during this test. my configuration for snmp V3 is:

 

R1#show run | in snmp
snmp-server group v3group v3 auth read iso-view write iso-view notify iso-view
snmp-server group v3group v3 priv read iso-view write iso-view notify iso-view
snmp-server view iso-view iso included
snmp-server community rw RW
snmp-server location nanjing
snmp-server contact wangchong
snmp-server enable traps entity-sensor threshold
snmp-server host 192.168.10.254 version 3 priv cisco

 

here is the debugging:

process_mgmt_req_int: UDP packet being de-queued

*Sep 18 23:08:50.411: SNMP: Packet received via UDP from 192.168.10.254 on GigabitEthernet0/0SrParseV3SnmpMessage: No matching Engine ID.
SrParseV3SnmpMessage: Failed.
SrDoSnmp: authentication failure, Unknown Engine ID

*Sep 18 23:08:50.423:
Incoming SNMP packet
*Sep 18 23:08:50.423: v3 packet security model: v3 security level: noauth
*Sep 18 23:08:50.423: username:
*Sep 18 23:08:50.423: snmpEngineID: 800000090300CA014EE40006
*Sep 18 23:08:50.423: snmpEngineBoots: 0 snmpEngineTime: 0
*Sep 18 23:08:50.423: SNMP: Report, reqid 11, errstat 0, erridx 0
internet.6.3.15.1.1.4.0 = 5
R1#
*Sep 18 23:08:50.427: SNMP: Packet sent via UDP to 192.168.10.254
process_mgmt_req_int: UDP packet being de-queued

*Sep 18 23:08:50.487: SNMP: Packet received via UDP from 192.168.10.254 on GigabitEthernet0/0SrParseV3SnmpMessage: Failed.
findContextInfo: Authentication failed no local context exists for the Context Provided .
SrDoSnmp: authentication failure, Unknown Context.

 

SNMP info:

R1#show snmp user

User name: cisco
Engine ID: 800000090300CA014EE40006
storage-type: nonvolatile active
Authentication Protocol: MD5
Privacy Protocol: DES
Group-name: v3group

User name: v3usr
Engine ID: 800000090300CA014EE40006
storage-type: nonvolatile active
Authentication Protocol: MD5
Privacy Protocol: DES
Group-name: v3grp

 

R1#show snmp engineID
Local SNMP engineID: 800000090300CA014EE40006
Remote Engine ID IP-addr Port

 

Labels:
Preview file
35 KB
Preview file
20 KB
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎09-18-2020 08:31 AM

 

findContextInfo: Authentication failed no local context exists for the Context Provided .
SrDoSnmp: authentication failure, Unknown Context.

 

As per above messages something missing in configuration, athhentication and Context.

Please post full configuration to look, also tell us how you doing snmpwalk command other side.

 

or refer below sameple config :

https://thwack.solarwinds.com/t5/NPM-Discussions/SNMP-v3-need-help-with-credentials/m-p/197656

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

angelyouyou
Level 1
Level 1
In response to balaji.bandi

‎09-18-2020 05:07 PM

thanks very much.

i have update my configuration to delete the 'context name', but it doesn't work fine.please help me to check it.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents