Connected: An Internet Encyclopedia
2.13. SNMPv2 Access Control Policy

Up: Connected: An Internet Encyclopedia
Up: Requests For Comments
Up: RFC 1445
Up: 2. Elements of the Model
Prev: 2.12. SNMPv2 Management Communication Class
Next: 3. Elements of Procedure

2.13. SNMPv2 Access Control Policy

2.13. SNMPv2 Access Control Policy

A SNMPv2 access control policy is a specification of a local access policy in terms of a SNMPv2 context and the management communication classes which are authorized between a pair of SNMPv2 parties. Architecturally, such a specification comprises four parts:

Conceptually, a SNMPv2 access policy is represented by a collection of ASN.1 values with the following syntax:

        AclEntry ::= SEQUENCE {
          aclTarget
             OBJECT IDENTIFIER,
          aclSubject
             OBJECT IDENTIFIER,
          aclResources
             OBJECT IDENTIFIER,
          aclPrivileges
             INTEGER
        }

For each such value that represents one part of a SNMPv2 access policy, the following statements are true:

The application of SNMPv2 access control policy only occurs on receipt of management communications; it is not applied on transmission of management communications. Note, however, that ASN.1 values, having the syntax AclEntry, are also used in determining the destinations of a SNMPv2-Trap [2].


Next: 3. Elements of Procedure

Connected: An Internet Encyclopedia
2.13. SNMPv2 Access Control Policy