|
Jeff, This should do the trick – been using
it for years – servers that the GPO is applied to will need a reboot
after the import. Save as SNMP.adm Mark /SNIP ; ;Custom ADM Settings ; CLASS MACHINE CATEGORY "Custom Windows Settings" CATEGORY
"Server Settings" CATEGORY
"SNMP" POLICY
"SNMP Communties" EXPLAIN
!!SNMPCommunities KEYNAME
"System\CurrentControlSet\Services\SNMP\Parameters\ PART
"Public community" DROPDOWNLIST NOSORT VALUENAME
"public" ITEMLIST NAME
"Remove public community" VALUE DELETE DEFAULT NAME
"NONE" VALUE NUMERIC 1 NAME
"NOTIFY" VALUE NUMERIC 2 NAME
"READ-ONLY" VALUE NUMERIC 4 END
ITEMLIST END
PART PART
"Alert community" DROPDOWNLIST NOSORT VALUENAME
"alertsnmp" ITEMLIST NAME
"Not added" VALUE DELETE DEFAULT NAME
"NONE" VALUE NUMERIC 1 NAME
"NOTIFY" VALUE NUMERIC 2 NAME
"READ ONLY" VALUE NUMERIC 4 NAME
"READ WRITE" VALUE NUMERIC 8 END
ITEMLIST END
PART PART
"Monitor community" DROPDOWNLIST NOSORT VALUENAME
"monsnmp" ITEMLIST NAME
"Remove monitor community" VALUE DELETE NAME
"NONE" VALUE NUMERIC 1 NAME
"NOTIFY" VALUE NUMERIC 2 NAME
"READ ONLY" VALUE NUMERIC 4 DEFAULT NAME
"READ WRITE" VALUE NUMERIC 8 END
ITEMLIST END
PART PART
"Manage community" DROPDOWNLIST NOSORT VALUENAME
"mansnmp" ITEMLIST NAME
"Remove manage community" VALUE DELETE NAME
"NONE" VALUE NUMERIC 1 NAME
"NOTIFY" VALUE NUMERIC 2 NAME
"READ ONLY" VALUE NUMERIC 4 NAME
"READ WRITE" VALUE NUMERIC 8 DEFAULT END
ITEMLIST END
PART END
POLICY END
CATEGORY END
CATEGORY END CATEGORY [strings] SNMPCommunities="Allows the SNMP Communities for Read
& Write to be set" /ENDSNIP From: Jeff, I didn’t see a very easy way to do
what you’re asking ‘out of the box’. You could check
out RegToADM which will take an exported reg file and make an ADM file for
you. It could help you with configuring your custom ADM file. I
tried it with some sample settings and it seems like it could work for
you. I’d probably change the ADM file it creates a bit to clean up
the format and make it more readable once you add it to the GPO. Of
course, test it thoroughly. Remember you have to enable the GPO Editor
to see these keys as they are preferences rather than policies which also means
that once the server gets the settings, it won’t automatically undo
itself if you remove the GPO. Have a great day! Robert Williams From: I have been looking at a way to ensure
that SNMP is configured on all of our servers the same way. Looking at
the GPO's there is a shortfall. We have a custom community name that we set
with the allowed managers that you can look at on the security tab of SNMP
service. We need a Custom Community name under
TRAPS tab of the SNMP service with the allowed destinations. The only
current GPO setting I can find just adds destinations for the
"Public" community which we are not allowed to use here. Anyone know of a custom ADM template that
would allow the creation/setup of Traps for a custom community. Jeff 2006-09-26, 15:20:31 |
- [ActiveDir] forest disaster recovery ... Yann
- [ActiveDir] Configuring SNMP via... Cothern, Jeffrey D Mr CTR USSOCOM HQ
- RE: [ActiveDir] Configuring ... Williams, Robert
- RE: [ActiveDir] Configur... Mark Parris
- RE: [ActiveDir] forest disaster ... Grillenmeier, Guido
- Re: [ActiveDir] forest disaster ... Al Mulnick
- RE : Re: [ActiveDir] forest ... Yann
- Re: RE : Re: [ActiveDir]... Al Mulnick
