BigIron RX Series Configuration Guide 99953-1001986-01Configuring your NMS 36Syntax: [no] snmp-server group <groupname>v1 | v2c | v3auth | noauth | priv[access <standard-acl-id>] [read <viewstring>] [write <viewstring>]NOTEThis command is not used for SNMP version 1 and SNMP version 2. In these versions, groups andgroup views are created internally using community strings. (Refer to “Establishing SNMPcommunity strings” on page 995.) When a community string is created, two groups are created,based on the community string name. One group is for SNMP version 1 packets, while the other isfor SNMP version 2 packets.The group <groupname> parameter defines the name of the SNMP group to be created.The v1, v2c, or v3 parameter indicates which version of SNMP is used. In most cases, you will beusing v3, since groups are automatically created in SNMP versions 1 and 2 from communitystrings.The auth | noauth parameter determines whether or not authentication will be required to accessthe supported views. If auth is selected, then only authenticated packets are allowed to access theview specified for the user group. Selecting noauth means that no authentication is required toaccess the specified view. Selecting priv means that an authentication password will be requiredfrom the users.The auth | noauth | priv parameter is available when you select v3, not v1 or v2.The access <standard-acl-id> parameter is optional. It allows incoming SNMP packets to be filteredbased on the standard ACL attached to the group.The read <viewstring> | write <viewstring> parameter is optional. It indicates that users whobelong to this group have either read or write access to the MIB.The <viewstring> variable is the name of the view to which the SNMP group members have access.If no view is specified, then the group has no access to the MIB.The value of <viewstring> is defined using the snmp-server view command. The SNMP agentcomes with the "all" view, the default view that provides access to the entire MIB; however, it mustbe specified when creating the group. The "all" view also allows SNMP version 3 to be backwardscompatibility with SNMP version 1 and version 2.NOTEIf you will be using a view other than the "all" view, that view must be configured before creating theuser group. Refer to “Defining SNMP views” on page 1002, especially for details on the include |exclude parameters.Defining an SNMP user accountThe snmp-server user command does the following:• Creates an SNMP user.• Defines the group to which the user will be associated.• Defines the type of authentication to be used for SNMP access by this user.• Specifies one of the following encryption types used to encrypt the privacy password:• Data Encryption Standard (DES) – A symmetric-key algorithm that uses a 56-bit key.