ACL File Format
An ACL file contains an acl group defining community and manager access rights and a trap group defining the community and hosts for sending traps.
Format of the acl Group
The acl group contains one or more lists of community configurations.
acl = {
list1
list2
...
listN
}
Each list has the following format:
{
communities = communityList
access = accessRights
managers = hostList
}
The communityList is a list of SNMP community names to which this access control applies. The community names in this list are separated by commas.
The accessRights specifies the rights to be granted to all managers running on the machines specified in the managers item. There are two possible values: either read-write or read-only.
The hostList item specifies the host machines of the managers to be granted the access rights. The hostList is a comma-separated list of hosts, each of which can be expressed as any one of the following:
-
A host name
-
An IP address
-
A subnet mask
Note -
To distinguish between IP addresses and subnet masks in an ACL file, each integer in a subnet mask is separated by an exclamation mark (!) instead of a dot.
Format of the trap Group
The trap group specifies the hosts to which the agent can send traps. This group contains a one or more trap community definitions.
trap = {
community1
community2
...
communityN
}
Each defines the association between a set of hosts and the SNMP community string in the traps to be sent to them. Each trap definition has the following format:
{
trap-community = trapCommunityString
hosts = trapInterestHostList
}
The trapCommunityString item specifies the SNMP community string. It will be included in the traps sent to the hosts specified in the hosts item.
The trapInterestHostList item specifies a comma-separated list of hosts. Each host must be identified by its name or complete IP address.
- © 2010, Oracle Corporation and/or its affiliates