On 08/02/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Is there any mechanism to prevent users from writing to the snmpUsmMIB and > the snmpVacmMIB.
The standard Access Control settings apply to these tables, in exactly the same way as any other MIB. > So in order to allow only my CLI to create the snmpV3 users, I want to > restrict other EMS or NMS from doing that or even preventing the snmpusm > tool from doing that. It's not a question of which application is being used - the agent can't tell. All it sees it the incoming SNMP requests. But if you configure your CLI to use a particular SNMPv3 username, and set up the VACM tables to allow write access for this user (and this user only), then that would prevent any unauthorised manipulation. Dave ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier. Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Net-snmp-users mailing list [email protected] Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
