NoAuth means you don't want to enable authentication.
Replace one of the snmpuser with the username of your OCI service account you have created - it is our strongest possible recommendation to put the username you are using for inventory into one of those read only slots.
It is a text wizard interface, where you are prompted to either enter new values for any of the fields, or hit enter to accept the existing value. We would recommend only of the 3 read only user slots, as OCI doesn't need RW access. So, you need to put your OCI user account in one of the 6 user slots. These are not real users on the switch, and you cannot use them for performance collection by OCI, in environments where VF is in use - these users are not privileged on any VF other than the default VF, 128. OCI is going to be exclusively polling, so any verbiage about traps/informs is irrelevant to OCI.īrocade switches ship with 6 slots for SNMP v3 users - snmpuser and snmpadmin. You are done, from an *inventory* perspective.įirst SNMP - SNMP supports pushing traps aka informs for alarming, and polls for pulling information. You will be prompted to enter a password. Again, if this has been deleted, this command may error -> " -c user"
Sets the home VF to 128, which OCI honestly doesn't require (it is smart enough to deal with any home value) -> " -h 128"Īssigns OCI the role of "user", a default configured role - if this role has been deleted, this command may error -> " -r user"Īssigns OCI the chassis role of "user". Granting permissions on all possible Virtual Fabrics (they can only be numbered 1-128) -> " -l 1-128" Userconfig -add OCI -l 1-128 -h 128 -r user -c user When you create an account, you may or may not grant it. Now, if there is any chance you are going to add more VF in the future, I would recommend granting your service account permissions on all 128 VF IDs up front - otherwise, if a new VF is created that your OCI service account will not have privileges on, your OCI datasources will fail as OCI will detect the presence of a VF it is not able to fully understand.Ĭhassis role - this is a boolean state. Permissions on all the virtual fabrics configured on the physical switch. If the answer is yes, AND you are using VF, you are going to have to use SNMP v3 to gather performance. If the answer is yes - are we likely to add more VF in the future?Īre we looking to have OCI gather performance data off the switches? What you need to know about your environment before starting down the path of creating a least privilege user account for OCI to use? SSH commands for inventory/configuration data
0 kommentar(er)
