I found some commands in this Cisco document (ID 44800) for reading BRIDGE-MIB objects on a per-VLAN basis. I have also found information in the furoms and elsewhere about SNMPv3 access to such information.
My understanding is that, one must configure each and every VLAN in a context to allow an SNMPv3 user access to them.
Is that a correct and current understanding?
If so, it seems to be difficult to scale accross a few hundreds of devices. What is the best practice for allowing an SNMPv3 user access to all things on all devices?
In the past it was required to configure access to each "vlan-*" context. Newer versions of switch code support a "match prefix" syntax that makes scalability easier. To allow all VLANs configure something like the following:
snmp-server group v3group v3 auth context vlan- match prefix
Hi!Need to find network devices but not want to open SSH and do show cdp nei, show lldp nei and then need to sh cdp nei gig0/1 det and more.... ?Now You can do from PowerShell.\cdplldp.exe -v v3 -u <SNMPv3 user> -a SHA -w <SNMPv3 authkey> -pp ...
Community Live slides- Getting to know Cisco SD-WAN
(Live event - formerly known as Webcast- Wednesday December 11, 2019 at 10 am Pacific/ 1 pm Eastern / 7 pm Paris)
This event had place on Wednesday 11th, December 2019 at 10hrs PDT
To participate in this event, please use the button to ask your questions
This topic is a chance to clarify your questions about the Cisco Software-Defined WAN (SD-WAN) solution, its historical roo...
Starting from NFVIS 3.12 versions, the deploy option does not depict all the SR-IOV VFs(Virtual Functions) available in a physical interface. This change is introduced as (i) the number of VFs of ENCS platform on LANs side is increased to 24 and (ii) the...