cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
5303
Views
10
Helpful
1
Replies

VLAN, BRIDGE-MIB and SNMPv3 contexts

ww9rivers
Level 1
Level 1

I found some commands in this Cisco document (ID 44800) for reading BRIDGE-MIB objects on a per-VLAN basis. I have also found information in the furoms and elsewhere about SNMPv3 access to such information.

My understanding is that, one must configure each and every VLAN in a context to allow an SNMPv3 user access to them.

Is that a correct and current understanding?

If so, it seems to be difficult to scale accross a few hundreds of devices. What is the best practice for allowing an SNMPv3 user access to all things on all devices?

1 Reply 1

Joe Clarke
Cisco Employee
Cisco Employee

In the past it was required to configure access to each "vlan-*" context.  Newer versions of switch code support a "match prefix" syntax that makes scalability easier.  To allow all VLANs configure something like the following:

snmp-server group v3group v3 auth context vlan- match prefix
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco