Lab 104: Configuring SNMPv3

Oct 24, 2017 Last Updated: Oct 24, 2017 120 Labs CCNA No Comments
Tweet Share Pin it

Lab Objective:

The objective of this lab exercise is for you to learn how to implement the SNMP protocol using v3.

Lab Purpose:

Configuring and applying the Simple Network Management Protocol (SNMP) is a fundamental skill for any network administrator in order to monitor and gather information about your Cisco device. As a Cisco engineer, as well as in the Cisco CCNA exam, you will be expected to know how to implement SNMP.

Certification Level:

This lab is suitable for ICND2 and CCNA certification exam preparation.

Lab Difficulty:

This lab has a difficulty rating of 7/10.

Readiness Assessment:

When you are ready for your certification exam, you should complete this lab in no more than 10 minutes.

Lab Topology:

Please use the following topology to complete this lab exercise:

Lab 104: Configuring SNMPv3 1

Task 1:

Configure hostnames on R1 as illustrated in the topology.

Task 2:

Configure IP addresses on the Gig0/0 interface of R1 as illustrated in the topology.

Task 3:

Create an SNMPv3 group that uses authentication and encryption named Read-Access to provide full Read permissions (make sure only the 192.168.1.2 server can access this SNMPv3 group).

Task 4:

Create an SNMPv3 user named CCNA-Admin; it will belong to the SNMPv3 group Read-Access and it will use SHA as the authentication mechanism, with the password set as Cisco and Cisco123 as the Des-256 encryption key.

Task 5:

Run the show snmp user and show snmp group commands and, finally, make sure that the right user and group settings are created.

Configuration and Verification

Task 1:

For reference information on configuring hostnames, please refer to earlier labs.

Task 2:

For reference information on configuring IP addressing, please refer to earlier labs.

Task 3:

R1(config)#access-list 10 permit 192.168.1.2 
R1(config)#snmp-server group Read-Access v3 priv access 10

Task 4:

R1(config)#snmp-server user CCNA-Admin Read-Access v3 auth sha Cisco priv des256 Cisco123

Task 5:

R1#sh snmp user 

User name: CCNA-Admin 
Engine ID: 800000090300C00117120000 
storage-type: nonvolatile     active 
Authentication Protocol: SHA 
Privacy Protocol: DES 
Group-name: Read-Access 

R1#sh snmp group                                           

groupname: Read-Access                      security model:v3 priv
readview : v1default                        writeview: <no writeview specified> 
notifyview: <no notifyview specified>        
row status: active    access-list: 10
Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x