Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

snmpwalk -v3 for noAuthNoPriv

800 views
Skip to first unread message

B V Narasimhulu

unread,
Apr 17, 2009, 5:37:05 AM4/17/09
to

Hi,

snmpwalk -v3 is failing for -l noAuthNoPriv security level. I'm using 5.4.1 net-snmp. According to google search this issue was fixed in this particular release.

root@Node98:~/ML100# snmpwalk -v3 -l noAuthNoPriv -u bonarasi localhost 1.3.6
Error in packet
Reason: authorizationError (access denied to that object)
root@Node98:

Please let me know how to fix this problem. I'm able to do snmpealk for authNoPriv and authPriv security levels.

Thanks & Regards,
Narasi


Add more friends to your messenger and enjoy! Go to http://messenger.yahoo.com/invite/

------------------------------------------------------------------------------
Stay on top of everything new and different, both inside and
around Java (TM) technology - register by April 22, and save
$200 on the JavaOne (SM) conference, June 2-5, 2009, San Francisco.
300 plus technical and hands-on sessions. Register today.
Use priority code J9JMT32. http://p.sf.net/sfu/p
_______________________________________________
Net-snmp-coders mailing list
Net-snm...@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders

Dave Shield

unread,
Apr 17, 2009, 5:46:58 AM4/17/09
to
2009/4/17 B V Narasimhulu <bvn...@yahoo.co.in>:

> snmpwalk -v3 is failing for -l noAuthNoPriv security level.

How have you configured access control for the user "bonarasi"?

Dave

Wes Hardaker

unread,
Apr 17, 2009, 8:59:37 AM4/17/09
to
>>>>> On Fri, 17 Apr 2009 10:45:49 +0100, Dave Shield <D.T.S...@liverpool.ac.uk> said:

>> snmpwalk -v3 is failing for -l noAuthNoPriv security level.

DS> How have you configured access control for the user "bonarasi"?

I suspect he has but he needs to reconfigure it to allow noAuthNoPriv
(the default is authNoPriv)
--
Wes Hardaker
Please mail all replies to net-snm...@lists.sourceforge.net

Dave Shield

unread,
Apr 17, 2009, 12:53:49 PM4/17/09
to
[ First - *please* don't mail me privately, without copying
any responses to the mailing list. I don't have the time
or inclination to offer private, unpaid, SNMP consultancy.
Keep discussions to the list, where others can both learn
and offer advice. Thanks. ]

2009/4/17 B V Narasimhulu <bvn...@yahoo.co.in>:

> I have only the following entries on the snmpd.conf file.
>
> rouser =A0 bonarasi
> createUser =A0 =A0 =A0 bonarasi =A0 =A0 =A0 =A0MD5 =A0 =A0 12345678

Please read the section describing "rouser" in the
snmpd.conf(5) man page. As Wes has said, the
default is to allow authenticated SNMPv3 requests.
If you want to allow noauth, then you need to specify
this explicitly.

See the man page for details.


> Actullay I tried add the following two entries also.
> But when I added these line. I am not able to parse any mib.
>
>
> # =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0sec.model =A0sec.name
> group =A0bonarasi =A0usm =A0 =A0 =A0 =A0bonarasi
>
> # =A0 =A0 =A0 =A0 =A0 =A0 =A0context model level =A0 prefix =A0read =A0 =
=A0write =A0notify
> access =A0bonarasi "" =A0any =A0noauth =A0exact =A0 all =A0 =A0 all =A0 =
=A0none

No - don't try to mix group/access configuration with rouser.
The two approaches will just get in each others way.

Stick to "rouser", but look at the documentation a little more
closely. That can do what you require.

Dave

---------------------------------------------------------------------------=
---
Stay on top of everything new and different, both inside and =

around Java (TM) technology - register by April 22, and save
$200 on the JavaOne (SM) conference, June 2-5, 2009, San Francisco.

300 plus technical and hands-on sessions. Register today. =

0 new messages