On ubuntu 15.04 server, how does one configure SNMPv3?

On ubuntu 15.04 server, how does one configure SNMPv3?

SNMP is an internet standard protocol that can be used to manage devices on an IP network ". Generally, devices that support SNMP include routers, switches, servers, workstations, printers, modems, and more devices. It is most commonly used in the network management system to monitor devices connected to the network. Pay attention to the situations that require the Administrator's attention. SNMP is part of the Internet Protocol Suite defined by the Internet Engineering Task special group (IETF. It includes a set of network management standards, including the application layer protocol, database mode, and a set of data objects.

SNMP exposes the management data of the managed system in the form of variables, and the variables describe the system configuration. These changes can then be queried by the management application (sometimes set by the management application ).

Why should you use SNMPv3?

Although SNMPv3 does not change the SNMP Protocol except for encryption security, it looks very different because of the new text conventions, outlines, and terms.

SNMPv3 adds security and remote configuration improvements to SNMP.

From the very beginning, security has always been the biggest soft threat to SNMP. The authentication in SNMP versions 1 and 2 is only a password (shared string) sent in plaintext between the manager and the proxy. Each SNMPv3 message contains security parameters, which are encoded as octal strings. The meaning of these security parameters depends on the security model used.

SNMPv3 provides several important security functions:

Confidentiality-data packets are encrypted to prevent unauthorized users from spying.

Integrity-message integrity ensures that data packets are not tampered with during transmission, including an optional packet replay protection mechanism.

Verification-the message is sent from a legitimate source.

Install the SNMP server and client software in ubuntu

Open the terminal and run the following command:

sudo apt-get install snmpd snmp

After installation, you need to make the following changes.

Configure SNMPv3 in Ubuntu

Access the daemon from the outside.

By default, only access to the localhost daemon is provided. To obtain access from the outside, open the file/etc/default/snmpd in your frequently used editing tool.

sudo vi /etc/default/snmpd

Set the following line

SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -g snmp -I -smux,mteTrigger,mteTriggerConf -p /var/run/snmpd.pid'

Change

SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid -c /etc/snmp/snmpd.conf'

Then restart snmpd:

sudo /etc/init.d/snmpd restart

Define SNMPv3 user, verification, and encryption parameters

SNMPv3 can be used in many ways, depending on the "securityLevel" (Security Level) configuration parameters:

NoAuthNoPriv-no authorization, no encryption, basically no security!

AuthNoPriv-authorization is required, but the collected data sent over the network is not encrypted.

AuthPriv-this is the most secure. Authorization required. All data sent over the network is encrypted.

All snmpd configuration settings are saved in a file named/etc/snmp/snmpd. conf. Open the file with your frequently used editing tool:

sudo vi /etc/snmp/snmpd.conf

Add the following lines to the end of the file:

#createUser user1createUser user2 MD5 user2passwordcreateUser user3 MD5 user3password DES user3encryption#rouser user1 noauth 1.3.6.1.2.1.1rouser user2 auth 1.3.6.1.2.1rwuser user3 priv 1.3.6.1.2.1

Note: If you want to use your username/password combination, you must note that the length of the password and encryption phrase should be at least 8 characters long.

In addition, you need to make the following changes so that snmp can listen for connections on all interfaces:

By

#agentAddress udp:161,udp6:[::1]:161

Change

agentAddress udp:161,udp6:[::1]:161

Save the modified snmpd. conf file. Run the following command to restart the daemon:

sudo /etc/init.d/snmpd restart

Original article address: How to configure SNMPv3 on ubuntu 15.04 server