Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
794
Views
0
Helpful
4
Replies

Cisco Switch 9500 Nexus snmp v2c

Go to solution
mrjelly
Level 1
Level 1

‎02-12-2024 04:09 AM

Hello,

I am attempting to setup a Nexus 9500 with SNMP v2c. However the switch has auto added the local logins as SNMP users.

I therefore am getting incorrect user errors when attempted GET requested from my monitoring software.

Is there a reason it added users automatically, is there a way to allow for no authentication SNMP v2c using the community name?

 

thank you

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
pieterh
VIP
VIP
In response to mrjelly

‎02-12-2024 04:50 AM - edited ‎02-12-2024 05:13 AM

ALL users can be used to authenticate for snmpv3, not only on Nexus, also on other models
including AAA users

Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 10.1(x) - Configuring SNMP [Cisco Nexus 9000 Series Switches] - Cisco
- The device supports SNMPv1, SNMPv2c, and SNMPv3. Both SNMPv1 and SNMPv2c use a community-based form of security.
If you create or delete a user using either SNMP or the CLI, the user is created or deleted for both SNMP and the CLI.

-> if you get an incorrect user error, it looks like your monitoring software is using snmpv3 instead of snmpv2

View solution in original post

0 Helpful
4 Replies 4

Go to solution
pieterh
VIP
VIP

‎02-12-2024 04:26 AM

????
AFAIK snmpv2c uses community name only
usernames are used by snmpv3!

=> your monitoring software has switched to snmpv3
or   your snmp-server command has been changed to
     snmp-server host <ip-addr> version 3 priv < username> 
-> change back to snmp-server host <ip-addr> version 2c <community> (if IOS allows)

 

0 Helpful

Go to solution
mrjelly
Level 1
Level 1
In response to pieterh

‎02-12-2024 04:33 AM

Yes that was my confusion, my command on the switch is still v2c and the monitoring (PRTG) is set to v2c.

I wondered if this was some sort of Nexus kwerk where it auto adds users that confuses things if you are using v2c.

Thank you

0 Helpful

Go to solution
pieterh
VIP
VIP
In response to mrjelly

‎02-12-2024 04:50 AM - edited ‎02-12-2024 05:13 AM

ALL users can be used to authenticate for snmpv3, not only on Nexus, also on other models
including AAA users

Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 10.1(x) - Configuring SNMP [Cisco Nexus 9000 Series Switches] - Cisco
- The device supports SNMPv1, SNMPv2c, and SNMPv3. Both SNMPv1 and SNMPv2c use a community-based form of security.
If you create or delete a user using either SNMP or the CLI, the user is created or deleted for both SNMP and the CLI.

-> if you get an incorrect user error, it looks like your monitoring software is using snmpv3 instead of snmpv2

0 Helpful

Go to solution
mrjelly
Level 1
Level 1
In response to pieterh

‎02-12-2024 07:38 AM

Thank you for your help on this, I have relooked and there was a setting part way down an inherited setting to make it SNMP v3.

SNMP v2c was at the top level.

0 Helpful
Top