04-26-2020 07:16 AM
Hi
I have recently configured SNMPV3 with Cisco 4500
# snmp-server view myview iso included
# snmp-server group ciscogroup v3 auth read myview write myview
# snmp-server user cisco ciscogroup v3 auth sha usercsico
# snmp-server host 10.x.x.x traps version 3 auth cisco
# snmp-server host 10.x.x.x traps version 3 auth cisco
-SNMP Manager can not see any packets from my node even snmpwalk authentication is succeeded , when show snmp logging , there is packets out of the switch but with wrong time ! , NTP Server is configured and show clock indicated the correct time .
- is there any modification should I do to the configuration ? or the time of the logging is not related ?
04-26-2020 08:41 AM
- Have a fallback to snmp v2c for testing the snmp manager software in combination with your device. If that works have a look into the current software version running on the 4500. Snmp v3 is sometimes buggy on cisco switches. Depending on urgency and feasibility and compare the problem with more recent release(s) , if available.
M.
04-26-2020 01:19 PM
Thanks marce for your concern
I have a fallback already to v2c and it worked !
is there any chance or additional configuration to perform SNMPV3 as it is mandatory ?
Thanks
04-27-2020 01:15 AM
(also pay attention to the software versioning matter as I explained earlier).
M.
04-27-2020 02:23 AM
Version : IOS XE 3.10.3
Do you have comments on it ?
04-27-2020 03:16 AM
- Advise is to check Release Notes of subsequent versions , check for instance Resolved Caveats and look for improvements or corrections concerning snmp (you can use for instance use Find in Browser).
M.
04-26-2020 01:22 PM
Hi,
Not sure what management application you use, but here is the config needed for SW application.
HTH
04-27-2020 06:52 AM - edited 04-27-2020 06:57 AM
Hello
@MoSalah wrote:
Hi
I have recently configured SNMPV3 with Cisco 4500
# snmp-server view myview iso included
# snmp-server group ciscogroup v3 auth read myview write myview
# snmp-server user cisco ciscogroup v3 auth sha usercsico
- is there any modification should I do to the configuration ? or the time of the logging is not related ?
Try to specify athe nms host in a ACL for the user and group to use authentication, Also s that auth password correct and not a typo?
ip access-list standard snmp_acl
remark NMS server
permit ip 1.1.1.1
snmp-server group ciscogroup v3 auth read myview write myview access snmp_acl
snmp-server user cisco ciscogroup v3 auth sha usercsico usercsio
@MoSalah wrote:
Thanks marce for your concern
I have a fallback already to v2c and it worked
Makes me think ,Does the nms host support SHA authentication?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide