Chapter 27
Configuring SNMP
Before using alarm profiles to set the Catalyst 2955 switch to send SNMP alarm trap notifications to an
Note
SNMP server, you must first enable SNMP by using the snmp-server enable traps alarms global
configuration command.
When configuring SNMP, follow these guidelines:
•
•
•
•
•
•
Disabling the SNMP Agent
Beginning in privileged EXEC mode, follow these steps to disable the SNMP agent:
Command
Step 1
configure terminal
Step 2
no snmp-server
Step 3
end
Step 4
show running-config
Step 5
copy running-config startup-config
The no snmp-server global configuration command disables all running versions (Version 1,
Version 2C, and Version 3) on the device. No specific Cisco IOS command exists to enable SNMP. The
first snmp-server global configuration command that you enter enables all versions of SNMP.
78-11380-12
When configuring an SNMP group, do not specify a notify view. The snmp-server host global
configuration command autogenerates a notify view for the user and then adds it to the group
associated with that user. Modifying the group's notify view affects all users associated with that
group. See the Cisco IOS Configuration Fundamentals Command Reference for Release 12.1 for
information about when you should configure notify views.
To configure a remote user, specify the IP address or port number for the remote SNMP agent of the
device where the user resides.
Before you configure remote users for a particular agent, configure the SNMP engine ID, using the
snmp-server engineID global configuration with the remote option. The remote agent's SNMP
engine ID and user password are used to compute the authentication and privacy digests. If you do
not configure the remote engine ID first, the configuration command fails.
When configuring SNMP informs, you need to configure the SNMP engine ID for the remote agent
in the SNMP database before you can send proxy requests or informs to it.
If a local user is not associated with a remote host, the switch does not send informs for the auth
(authNoPriv) and the priv (authPriv) authentication levels.
Changing the value of the SNMP engine ID has important side effects. A user's password (entered
on the command line) is converted to an MD5 or SHA security digest based on the password and the
local engine ID. The command-line password is then destroyed, as required by RFC 2274. Because
of this deletion, if the value of engineID changes, the security digests of SNMPv3 users become
invalid, and you need to reconfigure SNMP users by using the snmp-server user username global
configuration command. Similar restrictions require the reconfiguration of community strings when
the engine ID changes.
Purpose
Enter global configuration mode.
Disable the SNMP agent operation.
Return to privileged EXEC mode.
Verify your entries.
(Optional) Save your entries in the configuration file.
Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide
Configuring SNMP
27-7