Public komunita u cmu-snmpd
David Rohleder
davro na ics.muni.cz
Čtvrtek Leden 27 10:19:18 CET 2000
svarc na datakom.cz (Zdenek Svarc) writes:
> Pokud ten kofigurak schazi, pracuje ucd-snmpd pro public komunitu read-only.
> Pokud jsem se dobre dival, prejmenovat public komunitu lze pouze pres
> mapovani na sucurity name - a to jsem neuchodil. Tebou popisovany zpusob si
> nedokazu predstavit.
>
> zd
Zajimave, ze kdyz jsem to v tom konfiguraku udelal, tak to fungovalo
(ale ten konfigurak byl vytvoreny .deb balikem a byla tam komunita
zadana)
priklad konfigurace:
# sec.name source community
com2sec theworld default <tady_je_tva_komunita>
com2sec nazapis default <zapisovaci_komunita>
####
# Second, map the security names into group names:
# sec.model sec.name
group MyRWGroup any nazapis
group MyROGroup any theworld
####
# Third, create a view for us to let the groups have rights to:
# incl/excl subtree mask
view all included .1 80
view system included .iso.org.dod.internet.mgmt.mib-2.system
####
# Finally, grant the 2 groups access to the 1 view with different
# write permissions:
# context sec.model sec.level prefix read write notif
access MyRWGroup "" any noauth 0 all all none
#access MyROGroup "" any noauth 0 all none none
access MyROGroup "" any noauth 0 system none none
--
-------------------------------------------------------------------------
David Rohleder davro na ics.muni.cz
Institute of Computer Science, Masaryk University
Brno, Czech Republic
-------------------------------------------------------------------------
Další informace o konferenci Linux