I'm struggling with configuring authentication for snmpd, mainly how to configure user access
First I added the user by adding a line like this in /usr/lib/snmp/snmpd.conf
createUser myuser MD5 "pass123"
I think this was accepted because my requests went from Unknown user name to authorizationError (access denied to that object)
Now I think I'm supposed to add a line like this in /etc/snmp/snmpd.conf
rwuser myuser auth
But since this file is generated by uci I can't edit it and I can't find anywhere the uci commands to generate this configuration. I've been doing trial and error back and forth but nothing ever made it into snmpd.conf. I'm guessing there's a syntax check or something somewhere that would give me clues but I don't know where that is...
Currently I have this in /etc/config/snmpd based on something I found on google
After years of configuring and using SNMP on devices at work my advice would be to only use SNMPv3 if you absolutely have to have encryption. It's buggy, difficult to configure and in 90% of applications little to no more functionality than v2. In an enterprise environment it's easier to run SNMP on a non-routed vlan that's only accessible to privileged staff than to try and reliably run encryption on dumb devices such as UPS and PDU management cards.
Sorry that's no particular help to your specific problem, but hopefully the advice is useful generally
Thanks, that's a neat idea and I'm sure your advice is useful generally, but in my case that decision is out of my hands, I have to go with snmpv3 authentication. The "dumb device" in our case is OpenWRT so I hope we're good as soon as I got it configured right
I figured out I can simply add the 'rwuser' line in /usr/lib/snmp/snmpd.conf instead, uci would actually have been better for us but this is ok for now