Configuring SNMP on CUCM and Switches

Overview

9Line utilizes SNMP to communicate with switches and the Cisco Unified Communications Manager servers. When used with switches, 9Line can determine which switch port a particular phone is plugged into. The switch must support CDP or LLDP for this functionality. When used with CUCM, 9Line can determine the IP Subnet a phone belongs to.

These examples are Cisco-focused and not exhaustive; we recommend reviewing vendor documentation for additional configuration assistance and examples.

While 9Line supports SNMP v2c, using this version is no longer recommended. Instead, customers should deploy version 3 with security capabilities enabled.

Configuring SNMP v3 (recommended)

Configuration	Description
sw(config)# access-list 10 permit host 10.56.10.9	Create an access list entry restricting access to the 9Line Agent IP address. In this example, 10.56.10.9 is the 9Line Agent.
sw(config)# snmp-server group 9lineAuthPriv v3 priv	Define a group called 9lineAuthPriv and use the authPriv security model.
sw(config)# snmp-server user 9line 9lineAuthPriv v3 auth sha 9lineauth priv aes 128 9linepriv access 10.	Creates a user "9line" Sets the user in group "9lineAuthPriv" Set version 3 SHA-1 for authentication protocol Uses AES-128 for privacy protocol Attaches ACL 10 to restrict access to the 9Line Agent.

Verify SNMP v3 Configuration

sw(config)# show snmp user
User name: 9line
Engine ID: 800000090300382056543901
storage-type: nonvolatile active access-list: 10
Authentication Protocol: SHA
Privacy Protocol: AES128
Group-name: 9lineGroup
 
sw(config)#show snmp group
groupname: 9lineGroup security model:v3 priv 
contextname: storage-type: nonvolatile
readview : v1default writeview: 
notifyview: 
row status: active

Video Tutorial: Configuring SNMP v3 on CUCM

Updated 7 months ago