2009/3/25 Max Malzkuhn <[email protected]>: > I have a couple of different configs that > I > use to send v3 traps. One has authNoPriv set and one has authPriv set. > Can I use the same user for both?
Yes. > If I get the user configured as authPriv, That doesn't really make sense. The security level (noAuth, authNoPriv or authPriv) relates to a *request* (GET*, SET or notification) - not a user. When you create an SNMPv3 user, you would typically specify the authentication and privacy algorithms (and passwords) associated with that user. But this doesn't mean that you *must* use that level of security. If you've defined a user including both auth and privacy settings, then you can use that user with noAuth, authNoPriv or authPriv requests (assuming the access control is configured appropriately). If you only specify the authentication settings when you create the user, then you can't subsequently use that user with authPriv requests, because there's no way to give the correct encryption password. Mostly because there *isn't* a correct encryption password to give! > will it accept traps of a lesser security level? Yes. (Assuming the trap receiver is configured to accept auth or noauth notifications). That's the important thing here - the security level of the access control directives, not the settings used to create the user initially. Dave ------------------------------------------------------------------------------ _______________________________________________ Net-snmp-users mailing list [email protected] Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
