RE: Using Context-Name in Snmpv3 returns Authorization Error

Thu, 19 Jul 2012 08:52:34 -0700 

> "Password"

>        This really belongs in the /var/net-snmp/snmpd.conf  file

Actually I am running server as

#/usr/local/sbin/snmpd -C -c "/root/snmpd.conf" -fV

/var/net-snmp/snmpd.conf  says don't edit the file



>The one thing that I'd suggest would be to have this *as well* as the original 
>access line - to allow the agent to be queried without a context, as well as 
>with it.

>   As it stands, the agent will *only* respond to requests with this context - 
> the default context is not authorised.

I have added the original access line and tried. But same timeout happens.



> proxy -Cn context-name -v 3 -u V3User -a md5 -A "Password" -l  authnopriv 
> localhost .1.3.6.1

>Hmmm...   you are taking any requests received for .1.3.6.1 (with the 
>specified context)

>and passing them back to the same agent (but with the default (empty) context) 
>So it's the same agent answering with the same information.

>The only difference is the lack of an explicit context.  Is that correct?

Help me here, I am confused.





>In which case, you almost certainly do need the access control settings to 
>allow requests with the default (empty) context.

>Try with the two "access" lines.

Added both lines.

access v3_group "" any authNoPriv  exact  v3_view v3_view all

access v3_group context-name any authNoPriv  prefix  v3_view v3_view all



>What *exactly* is the request that the application is sending?

>Have you tried querying the agent using the Net-SNMP command-line tools?

>That might be useful while you're trying to get things responding properly.



Without context name

#snmpget -v 3 -u V3User -a md5 -A "Password" -l authnopriv 10.140.185.228 
1.3.6.1.2.1.2.2.1.1.1

IF-MIB::ifIndex.1 = INTEGER: 1



#snmpget -v 3 -u V3User -n context-name -a md5 -A "Password" -l authnopriv 
10.140.185.228 1.3.6.1.2.1.2.2.1.1.1

Timeout: No Response from 10.140.185.228.





Thanks,

Basil Joseph.

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Net-snmp-coders mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders

Reply via email to