Description:

This article describes how to configure an SNMP user on a switch with LCOS SX 5.xx and monitor the switch with the LANmonitor via SNMPv3. Of course It is also possible to use any other monitoring tool which supports SNMPv3.

If a monitoring tool other than LANmonitor is used, it is possible, that some parameters have to be configured differently (e.g. the encryption). Please contact the respective manufacturer regarding the necessary settings. 


Requirements:


Procedure:

1) Configuring the SNMP user on the Switch:

1.1) Connect to the webinterface of the device and go to the menu Menü System → Advanced Configuration → SNMP → User Security Model

1.2) Click Add to create a new user.

Screenshot of a technical configuration interface displaying settings related to SNMP user security, MIB access control, and server configurations, with navigation options for different data entries. The table within the interface is labeled as empty.

1.3) Modify the following parameters and click Submit:

  • User Name: Enter a descriptive user name.
  • Group Name: Enter one the prefabricated groups in the menu Access Control Group (in this example DefaultWrite). The permissions are referenced in the menu View Entry
    • The following groups are available:
      • DefaultRead: Standard read permissions
      • DefaultSuper: Extended read and write permissions
      • DefaultWrite: Standard read and write permissions
  • Authentication Method: In the dropdown menu select the option SHA-256
  • Password: Enter a  password for the authentication . In conjunction with the user name it is used for the login.
  • Privacy: In the dropdown menu select the option  AES-256 . This enables data encryption.
  • Authentication Key: Enter a  Password for data encryption.

You can also create an own SNMP group in the menu Access Control Group with the desired permissions. Be sure to enter the correct Group Name when you create the SNMP user.

When creating an own SNMP group the options Unsecure and All for the Group Access Rights must not be used as otherwise LANmonitor access won't be possible.

Image showing a configuration menu for adding a new SNMP user with fields for EngineID type, EngineID, UserName, GroupName, Authentication Method, and corresponding password and authentication key entries.

1.4) Click on Save Configuration in the upper right corner to save the configuration as the start configuration.

The   start configuration   is retained even if the device is restarted or there is a power failure.

Image displaying a user interface with partial text related to LAN configuration, specifically focusing on QoS and Diffserv service settings.

1.5) Acknowledge the save process by clicking OK .

Image of a technical configuration screen displaying a prompt asking if the user wants to save the system configuration, with options to proceed or cancel.



2) Monitoring the switch via LANmonitor:

2.1) Connect to the switch via the LANmonitor, make sure, that the protocol  SNMP3  is selected and enter the  login credentials for the SNMP user entered in step 1.3)

Screenshot of a device configuration menu displaying error messages about missing login data and options for network protocol settings, including encrypted and unencrypted data transmission.

2.2) The switch can now be monitored via the LANmonitor and various status information can be read out. If write permissions are given, individual ports can be deactivated and reactivated, for example.

Image displaying a configuration screen for a network device with multiple Gigabit Ethernet ports and options for SNMP monitoring and encryption settings.

 

All LANCOM products and software versions are subject to LANCOM Software Lifecycle Management.
You can find information on our website at https://www.lancom-systems.com/products/firmware/software-lifecycle-management

© 2025 LANCOM Systems GmbH