MattClausen wrote:
SNMPv3 and Cisco switches require a little bit more configuration in order to get SPECTRUM to see the connection data. Basically you have to configure each and every VLAN in a context to allow an SNMPv3 User to access them (check out Cisco document ID 44800 for reading BRIDGE-MIB objects on a per-VLAN basis). If you have later versions of the IOS code, you can use a "match prefix" syntax that makes scalability easier. To allow all VLANs configure something like the following:
snmp-server group v3group v3 auth context vlan-
This is an issue though on the switch side not the SPECTRUM side since by default a SNMPv3 user can't read the bridge table.
Matt,
Thanks for the reply.
If I understand you correctly, you're saying that Spectrum will only need the V3 authorisation to read through ALL the context names, right?
I'll assume it's grabbing the context names from somewhere like entLogicalContextName in the ENTITY-MIB (this, currently, shows all of our context names), am I correct in this asumption?
We're still working on it but no joy yet.
Iain Hamilton