Previous SNMP versions could be enabled without the use of user names or passwords. SNMPv3 requires user name and password authentication. The process for how and where to configure these credentials can be unclear. Use the following steps to perform basic setup and configuration of SNMPv3 authentication credentials.
NOTE: A screenshot of the areas mentioned in these steps is attached to this article for reference purposes.
- Create a user, or select an existing user to become the SNMP user name. Use that user to log on to ESM.
- Open the ESM System Properties.
- Open the SNMP Configuration tab.
- Click to enable Allow SNMPv3.
- Make sure that Security Level, Authentication Protocol, Privacy Protocol match the settings used by the third-party SNMP software that connects to ESM. For example, if the software chosen uses MD5 for the Authentication protocol, make sure that a compatible setting is selected in the ESM.
- Add any trusted IP addresses, to be used with SNMP, to the Trusted IP Address list. For example, if a network monitoring device is using IP address 10.10.10.10, that IP address needs to be added to the Trusted IP Address list.
- Click OK or Apply.
- Add the McAfee user name and password to the third-party software. The user name is the same as the user that was logged into ESM when SNMP was set up. If the third-party software has separate privacy/encryption and authentication passwords, use the same password in both places. The password is the one in the Use this password with the current user name when sending SNMP traps and health requests.