How do you handle the case of a user created via snmp from a remote
station? In this case the GUI would have no idea about that user. Do you
simply not allow rwusers? or rwcommunities if you are also supporting 1,2c?
On Thu, Oct 20, 2011 at 1:03 PM, Gary Dunlap <gary.dun...@dothill.com>wrote:
> Are you talking about snmpd? I just edit/recreate snmpd.conf to match
> the users defined in the GUI, then give snmpd the interrupt to re-read
> snmpd.conf. As far as which snmpd.conf, it’s the one supplied when starting
> snmpd, in my case “-c/cfg/etc/config/snmpd.conf”.****
>
> ** **
>
> Gary****
>
> ** **
>
> *From:* Brian Jones [mailto:babe...@gmail.com]
> *Sent:* Thursday, October 20, 2011 1:46 PM
> *To:* net-snmp-users@lists.sourceforge.net
> *Subject:* net-snmp security conundrum****
>
> ** **
>
> I am trying to write a GUI for net-snmp on a FreeBSD based appliance and I
> am struggling with the security model. The way I see it, I can
> create/modify usmUsers in one of two ways.
>
> 1) via directly editing the static and persistent config files
> 2) via commands like snmpuser
>
>
> If I chose method 1, then I need some way to associate the rouser/rwuser
> line in the static config with the appropriate usmUser line in the
> persistent config, and I can't seem to find a way to do that.
>
> If I choose method 2, then I need to have an rwuser for use by the GUI
> whose password can only be modified from localhost. I suspect this might be
> possible to do using views, but I sure haven't been able to figure it out
> yet.
>
>
> Thoughts, comments, opinions, please.
>
> ****
>
------------------------------------------------------------------------------
The demand for IT networking professionals continues to grow, and the
demand for specialized networking skills is growing even more rapidly.
Take a complimentary Learning@Cisco Self-Assessment and learn
about Cisco certifications, training, and career opportunities.
http://p.sf.net/sfu/cisco-dev2dev
_______________________________________________
Net-snmp-users mailing list
Net-snmp-users@lists.sourceforge.net
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users
