Lab Objective:
The objective of this lab exercise is for you to learn how to implement the SNMP protocol using v3.
Lab Purpose:
Configuring and applying the Simple Network Management Protocol (SNMP) is a fundamental skill for any network administrator in order to monitor and gather information about your Cisco device. As a Cisco engineer, as well as in the Cisco CCNA exam, you will be expected to know how to implement SNMP.
Certification Level:
This lab is suitable for ICND2 and CCNA certification exam preparation.
Lab Difficulty:
This lab has a difficulty rating of 7/10.
Readiness Assessment:
When you are ready for your certification exam, you should complete this lab in no more than 10 minutes.
Lab Topology:
Please use the following topology to complete this lab exercise:
Task 1:
Configure hostnames on R1 as illustrated in the topology.
Task 2:
Configure IP addresses on the Gig0/0 interface of R1 as illustrated in the topology.
Task 3:
Create an SNMPv3 group that uses authentication and encryption named Read-Access to provide full Read permissions (make sure only the 192.168.1.2 server can access this SNMPv3 group).
Task 4:
Create an SNMPv3 user named CCNA-Admin; it will belong to the SNMPv3 group Read-Access and it will use SHA as the authentication mechanism, with the password set as Cisco and Cisco123 as the Des-256 encryption key.
Task 5:
Run the show snmp user and show snmp group commands and, finally, make sure that the right user and group settings are created.
Configuration and Verification
Task 1:
For reference information on configuring hostnames, please refer to earlier labs.
Task 2:
For reference information on configuring IP addressing, please refer to earlier labs.
Task 3:
R1(config)#access-list 10 permit 192.168.1.2 R1(config)#snmp-server group Read-Access v3 priv access 10
Task 4:
R1(config)#snmp-server user CCNA-Admin Read-Access v3 auth sha Cisco priv des256 Cisco123
Task 5:
R1#sh snmp user User name: CCNA-Admin Engine ID: 800000090300C00117120000 storage-type: nonvolatile active Authentication Protocol: SHA Privacy Protocol: DES Group-name: Read-Access R1#sh snmp group groupname: Read-Access security model:v3 priv readview : v1default writeview: <no writeview specified> notifyview: <no notifyview specified> row status: active access-list: 10