Shulou(Shulou.com)06/01 Report--

This article introduces how to configure SNMPv3 protocol in ubuntu14.04, the content is very detailed, interested friends can refer to, hope to be helpful to you.

Why SNMPv3 is needed

Although the added encryption capabilities of SNMPv3 do not affect the protocol level, new text conventions, concepts, and terminology make it look very different.

SNMPv3 enhances security and remote configuration capabilities on top of SNMP.

Initially, the biggest disadvantage of SNMP is its weak security. In the first and second versions of SNMP, authentication was nothing more than passing a plaintext password between the administrator and the agent. Currently, the information of each SNMPv3 contains security parameters that are encoded into octal. The specific meaning of these security parameters is determined by the selected security model.

SNMPv3 provides important security features:

Confidentiality-encrypts packets to prevent unauthorized source snooping.

Integrity-the integrity of the data ensures that the data is not interfered with during transmission and includes an optional data response protection mechanism.

Authentication-check whether the data comes from a legitimate source.

Install SNMP server and client in ubuntu

Open the terminal and run the following command

Sudo apt-get install snmpd snmp

The following changes need to be made after the installation is complete.

Configure SNMPv3

Gain access from an external daemon

The default installation only provides local access, and if you want external access, open the file / etc/default/snmpd.

Sudo vi / etc/default/snmpd

Change the following

Set

SNMPDOPTS='-Lsd-Lf / dev/null-u snmp-g snmp-I-smux,mteTrigger,mteTriggerConf-p / var/run/snmpd.pid'

Change to

SNMPDOPTS='-Lsd-Lf / dev/null-u snmp-I-smux-p / var/run/snmpd.pid-c / etc/snmp/snmpd.conf'

Finally restart snmpd

Sudo / etc/init.d/snmpd restart

Define SNMPv3 users, authentication, and encryption parameters

The "securityLevel" parameter makes SNMPv3 have many different uses.

NoAuthNoPriv-No authorization, encryption or any security protection!

AuthNoPriv-authentication is required, but data sent over the network is not encrypted.

AutoPriv-the most reliable mode. Authentication is required and the data is encrypted.

The configuration and settings of snmpd are saved in the file / etc/snmp/snmpd.conf. Use the editor to edit the file:

Sudo vi / etc/snmp/snmpd.conf

Add the following at the end of the file:

# createUser user1createUser user2 MD5 user2passwordcreateUser user3 MD5 user3password DES user3encryption#rouser user1 noauth 1.3.6.1.2.1.1rouser user2 auth 1.3.6.1.2.1rwuser user3 priv 1.3.6.1.2.1

Note: if you need to use your own username / password pair, please note that the minimum length of passwords and encrypted phrases is 8 characters.

At the same time, you need to do the following configuration so that snmp can listen for connection requests from any interface.

Set

# agentAddress udp:161,udp6: [:: 1]: 161

Change to

AgentAddress udp:161,udp6: [:: 1]: 161

Save the changed snmpd.conf file and restart the daemon:

Sudo / etc/init.d/snmpd restart on how to configure the SNMPv3 protocol in ubuntu14.04 is shared here. I hope the above content can be of some help to you and learn more knowledge. If you think the article is good, you can share it for more people to see.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.