1. 安装yum install net-snmp-utils net-snmpchkconfig snmpd on 2. 建立用户语法:ceateUser username (MD5|SHA) authpassphrase [DES|AES] [privpassphrase] authentication是用户密码,加密用MD5或sha加密 privacy是通讯报文加密,用DES或AES 除MD5外, SHA,DES和AES需要OpenSSL支持(MD5不算是真正的加密) 密码必须8位以上 特别注意: 1) 处于安全考虑 该配置需放到独立的配置文件中/var/net-snmp/snmpd.conf 2) snmpd启动后,该配置文件被重写 3) 要先停掉snmpd后更改改文件,因为该文件随时会被覆盖 3. 定义权限rouser USER [noauth|auth|priv]rwuser USER [noauth|auth|priv] 分别是不加密,用户认证和报文加密 4. exampleservice snmpd stopcat /var/net-snmp/snmpd.conf createUser snmp_ro SHA pwd4readonly createUser snmp_rw SHA pwd4readwrite DES pwd4content cat snmpd.conf rouser snmp5ro auth rwuser snmp5rw priv service snmpd start 5. 测试只读用户snmpwalk -v 3 -l authNoPriv -u snmp_ro -a sha -A pwd4readonly 127.0.0.1 读写用户 snmpwalk -v 3 -l authPriv -u snmp_rw -a sha -A pwd4readwrite -x DES -X pwd4content localhost 转载请保留固定链接: https://linuxeye.com/configuration/809.html |