HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

Issue with snmpd V3 user ID - snmpwalk: Unknown user name (Sub-id not found: (top)

 
MikeL_4
Super Advisor

Issue with snmpd V3 user ID - snmpwalk: Unknown user name (Sub-id not found: (top)

I have coded the /etc/SnmpAgent.d/snmpd.conf file to add a user id for v3 authentication called: zenoss

 

=>cat /etc/SnmpAgent.d/snmpd.conf
# Setup a basic SNMPv3
sysContact  "Hewlett-Packard Company"
usmUserEntry  localSnmpID root usmHMACMD5AuthProtocol \
    usmDESPrivProtocol nonVolatile anywhereTag \
    "authpass" \
    "privpass"
usmUserEntry  localSnmpID TemplateSHAAES usmHMACSHAAuthProtocol \
    usmAesCfb128Protocol nonVolatile nowhere \
    "TemplateSHAAES AuthPassword" \
    "TemplateSHAAES PrivPassword"
usmUserEntry  localSnmpID zenoss usmHMACMD5AuthProtocol \
    usmDESPrivProtocol nonVolatile anywhereTag \
    "zenoss12345" \
    ""
vacmSecurityToGroupEntry  usm root Administrator nonVolatile
vacmSecurityToGroupEntry  usm zenoss Administrator nonVolatile
vacmAccessEntry  Administrator - usm noAuthNoPriv exact restrictedView - \
    restrictedView nonVolatile
vacmViewTreeFamilyEntry  restrictedView system - included nonVolatile
snmpTargetAddrEntry  anywhere snmpUDPDomain 0.0.0.0:0 0 0 \
    anywhereTag none nonVolatile 0.0.0.0:0
contact: Hewlett-Packard Company
#
=>

 

When I do a test snmpwalk afterwards, the root ID works, but the zenoss fails with:

  snmpwalk: Unknown user name (Sub-id not found: (top) -> sysUpTime)

 

root snmpwalk command:

=>snmpwalk -v 3 -u root -l authNoPriv -a MD5 -A authpass localhost sysUpTime.0
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (1269) 0:00:12.69

=>

 

zenoss snmpwalk command:

=> snmpwalk -v 3 -u zenoss -l authNoPriv -a MD5 -A zenoss12345 localhost sysUpTime.0

snmpwalk: Unknown user name (Sub-id not found: (top) -> sysUpTime)
=>

 

Can anyone help with what I may be coding wrong for this ID...

1 REPLY
MikeL_4
Super Advisor

Re: Issue with snmpd V3 user ID - snmpwalk: Unknown user name (Sub-id not found: (top)

As a follow-on, it doesn't look like the zenoss user entry is getting generated in the file: /etc/srconf/agt/snmpd.cnf

 

#Entry type: usmUserEntry
#Format:  usmUserEngineID  (octetString)
#         usmUserName  (text)
#         usmUserAuthProtocol  (OID)
#         usmUserPrivProtocol  (OID)
#         usmUserStorageType  (nonVolatile, permanent, readOnly)
#         usmTargetTag  (text)
#         AuthKey  (octetString)
#         PrivKey  (octetString)
usmUserEntry  localSnmpID root usmHMACMD5AuthProtocol usmDESPrivProtocol \
    nonVolatile anywhereTag 05:69:85:fb:61:f5:96:9f:43:d1:af:30:97:08:80:05 \
    1b:a1:16:c4:bc:34:b2:b6:70:0c:17:a4:ef:96:b3:91
usmUserEntry  localSnmpID TemplateSHAAES usmHMACSHAAuthProtocol \
    usmAesCfb128Protocol nonVolatile nowhere \
    59:0a:c5:37:c6:13:85:a4:cb:eb:c7:bb:2d:f4:11:46:1a:c5:17:2e \
    c4:e3:27:ed:60:81:66:50:0c:44:bf:d0:e1:6e:30:b2


#Entry type: vacmSecurityToGroupEntry
#Format:  vacmSecurityModel  (snmpv1, snmpv2c, usm)
#         vacmSecurityName  (text)
#         vacmGroupName  (text)
#         vacmSecurityToGroupStorageType  (nonVolatile, permanent, readOnly)
vacmSecurityToGroupEntry  usm root Administrator nonVolatile
vacmSecurityToGroupEntry  usm netcracker Administrator nonVolatile


#Entry type: vacmAccessEntry