I also add rouser and rwuser configuration lines accordingly. Through my interactive CLI, I will be querying the user to enter the details like username, groupname, Whether wants to have authentication enabled, if so the authphrase, similarly the privacy etc. Once I have all these details, I will be writing these details into snmpd.conf and will be sending a SIGHUP signal to re-read the snmpd.conf.
The problem for me here is, before storing the snmpv3 users into the snmpd.conf, I will be storing that Info in a persistant file. So whenever my switch is restarted, everytime, the entries from this persistant file is Copied into the snmpd.conf. so if we add snmpv3 users from external managers, those user entries might be lost because When the switch comes up it rewrites the info. From my persistant file. Thanks & Regards, Bharath Kumar -----Original Message----- From: Thomas Anders [mailto:[EMAIL PROTECTED] Sent: Thursday, February 08, 2007 8:21 PM To: Bharath Yadlapalli (WT01 - Computing Systems & Storage) Cc: [email protected] Subject: Re: Preventing users from writing into SnmoUsmMib and SnmpVacmMib [EMAIL PROTECTED] wrote: > Is there any mechanism to prevent users from writing to the snmpUsmMIB and the snmpVacmMIB. These are handled by snmpd so it may take some patch to that code to accomplish that. > The scenario is I have my own CLI interface to create the snmpv3 users, all it does is writing the user info into snmpd.conf. > So in order to allow only my CLI to create the snmpV3 users, I want to restrict other EMS or NMS from doing that or even preventing the snmpusm tool from doing that. What exactly is your CLI writing into snmpd.conf? Just *creating* users (by means of createUser/usmUser lines) will not add access control settings for them, so they wouldn't be allowed to do anything by default. But you haven't said anything about your overall configuration yet, unfortunately. +Thomas -- Thomas Anders (thomas.anders at blue-cable.de) ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier. Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Net-snmp-users mailing list [email protected] Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
