Configuring SNMPv3

[stunning]

I am trying to configure/update our devices to use SNMPV3. I have no idea on how to get started other than configuring the switches

snmp-server group GRP v3 priv

snmp-server user USERX GRP v3 auth md5 userxpass1 priv des userxpass1

My understanding is that we were going to need a manager? I was thinking about using our WhatsUPgold monitoring server as our manager. Am I on the right track? Anyone here have experience configuring snmpv3 for a cisco based environment?

 

[Bobacus]

This is what I'm using for my snmpv3 implementation. I'm using Nagios to monitor interface / environmental statistics on my routers, Cacti to monitor my subinterface utilization, and a custom shell script for when I need to push config changes out to my devices.

access-list 50 remark Permit SNMP
access-list 50 permit 192.168.1.0 0.0.0.255
access-list 50 deny any log
snmp-server ifindex persist
snmp-server view cfgupd ccCopyTable included
snmp-server view full iso included
snmp-server group cfg v3 priv write cfgupd access 50
snmp-server group Read v3 priv read full access 50
snmp-server user Mgmt Read v3 auth sha mypass priv aes 128 mysecret access 50
snmp-server user Config cfg v3 auth sha mypass priv aes 128 mysecret access 50

To get SNMPv3 working with Nagios, I used the 2 plugins listed below.

http://exchange.nagios.org/director...--2D-Advanced-Network-Interface-Check/details
http://exchange.nagios.org/director...arious-hardware-environmental-sensors/details

 

[stunning]

snmp-server group NETADMIN v3 auth
snmp-server user NETADMINUSER NETADMIN v3 auth md5 MYPW123 priv des MYPW123
snmp-server host 192.1.1.1 version 3 auth NETADMINUSER

We are using whatsupgold and cisco prime lms

(encryption will be changed later, once I get it implemented)

Do I need different read and write groups?

snmp-server view cfgupd ccCopyTable included
snmp-server view full iso included
^^ what do the view do?