Configuring SNMP
Download this chapter
Configuring SNMPConfiguring SNMP
 Feedback

Configuring SNMP

Configuring SNMP (CLI)


Note
To view the controller trap log, choose Monitor and click View All under “Most Recent Traps” on the controller GUI.
    Step 1   Enter the config snmp community create name command to create an SNMP community name.
    Step 2   Enter the config snmp community delete name command to delete an SNMP community name.
    Step 3   Enter the config snmp community accessmode ro name command to configure an SNMP community name with read-only privileges. Enter config snmp community accessmode rw name to configure an SNMP community name with read-write privileges.
    Step 4   Enter the config snmp community ipaddr ip-address ip-mask name command to configure an IP address and subnet mask for an SNMP community.
    Note   

    This command behaves like an SNMP access list. It specifies the IP address from which the device accepts SNMP packets with the associated community. An AND operation is performed between the requesting entity’s IP address and the subnet mask before being compared to the IP address. If the subnet mask is set to 0.0.0.0, an IP address of 0.0.0.0 matches to all IP addresses. The default value is 0.0.0.0.

    Note   

    The controller can use only one IP address range to manage an SNMP community.

    Step 5   Enter the config snmp community mode enable command to enable a community name. Enter the config snmp community mode disable command to disable a community name.
    Step 6   Enter the config snmp trapreceiver create name ip-address command to configure a destination for a trap.
    Step 7   Enter the config snmp trapreceiver delete name command to delete a trap.
    Step 8   Enter the config snmp trapreceiver ipaddr old-ip-address name new-ip-address command to change the destination for a trap.
    Step 9   Enter the config snmp trapreceiver mode enable command to enable traps. Enter the config snmp trapreceiver mode disable command to disable traps.
    Step 10   Enter config snmp syscontact syscontact-name to configure the name of the SNMP contact. Enter up to 31 alphanumeric characters for the contact name.
    Step 11   Enter the config snmp syslocation syslocation-name command to configure the SNMP system location. Enter up to 31 alphanumeric characters for the location.
    Step 12   Use the show snmpcommunity and the show snmptrap commands to verify that the SNMP traps and communities are correctly configured.
    Step 13   Use the show trapflags command to see the enabled and disabled trap flags. If necessary, use the config trapflags command to enable or disable trapflags.
    Step 14   Configure when the warning message should be displayed after the number of clients or RFID tags associated with the controller hover around the threshold level by entering this command:

    config trapflags {client | rfid} max-warning-threshold {threshold-between-80-to-100 | enable | disable}

    The warning message is displayed at an interval of 600 seconds (10 minutes).

    Step 15   Configure the SNMP engine ID by entering the config snmp engineID engine-id-string command to configure the SNMP engine ID.
    Note   

    The engine ID string can be a maximum of 24 characters.

    Step 16   Use the show engineID command to view the engine ID.

    SNMP Community Strings

    The controller has commonly known default values of "public" and "private" for the read-only and read-write SNMP community strings. Using these standard values presents a security risk. If you use the default community names, and since these are known, the community names could be used to communicate to the controller using the SNMP protocol. Therefore, we strongly advise that you change these values.

    Changing the SNMP Community String Default Values (GUI)

      Step 1   Choose Management and then Communities under SNMP. The SNMP v1 / v2c Community page appears.
      Step 2   If “public” or “private” appears in the Community Name column, hover your cursor over the blue drop-down arrow for the desired community and choose Remove to delete this community.
      Step 3   Click New to create a new community. The SNMP v1 / v2c Community > New page appears.
      Step 4   In the Community Name text box, enter a unique name containing up to 16 alphanumeric characters. Do not enter “public” or “private.”
      Step 5   In the next two text boxes, enter the IP address from which this device accepts SNMP packets with the associated community and the IP mask.
      Step 6   Choose Read Only or Read/Write from the Access Mode drop-down list to specify the access level for this community.
      Step 7   Choose Enable or Disable from the Status drop-down list to specify the status of this community.
      Step 8   Click Apply to commit your changes.
      Step 9   Click Save Configuration to save your settings.
      Step 10   Repeat this procedure if a “public” or “private” community still appears on the SNMP v1 / v2c Community page.

      Changing the SNMP Community String Default Values (CLI)

        Step 1   See the current list of SNMP communities for this controller by entering this command:

        show snmp community

        Step 2   If "public" or "private" appears in the SNMP Community Name column, enter this command to delete this community:

        config snmp community delete name

        The name parameter is the community name (in this case, “public” or “private”).

        Step 3   Create a new community by entering this command:

        config snmp community create name

        Enter up to 16 alphanumeric characters for the name parameter. Do not enter “public” or “private.”

        Step 4   Enter the IP address from which this device accepts SNMP packets with the associated community by entering this command:

        config snmp community ipaddr ip_address ip_mask name

        Step 5   Specify the access level for this community by entering this command, where ro is read-only mode and rw is read/write mode:

        config snmp community accessmode {ro | rw} name

        Step 6   Enable or disable this SNMP community by entering this command:

        config snmp community mode {enable | disable} name

        Step 7   Enter the save config command to save your changes.
        Step 8   Repeat this procedure if you still need to change the default values for a “public” or “private” community string.