SNMP v3 optionally supports authentication and privacy protocols.

Before you begin

SNMP configuration for ESXi requires the ESXCLI command set. See Getting Started with vSphere Command-Line Interfaces for more information on how to access ESXCLI.

About this task

Authentication is used to ensure the identity of users. Privacy allows for encryption of SNMP v3 messages to ensure confidentiality of data. These protocols provide a higher level of security than is available in SNMP v1 and v2c, which use community strings for security.

Both authentication and privacy are optional. However, you must enable authentication in order to enable privacy.

The SNMP v3 authentication and privacy protocols are licensed vSphere features and might not be available in some vSphere editions.

If you use ESXCLI commands through vCLI, you must supply connection options that specify the target host and login credentials. If you use ESXCLI commands directly on a host using the ESXi Shell, you can use the commands as given without specifying connection options. For more information on connection options see vSphere Command-Line Interface Concepts and Examples.

Procedure

  1. (Optional) : To configure authentication, type esxcli system snmp set --authentication protocol.

    Replace protocol with either none (for no authentication), SHA1, or MD5.

  2. (Optional) : To configure privacy, type esxcli system snmp set --privacy protocol.

    Replace protocol with either none (for no privacy) or AES128.