Best answer by Tomasz
for NetSight/XMC to be able to manage your devices, two things must comply both sides: Telnet/SSH credentials and SNMP credentials. Out of the box, there are some default accounts on EXOS switches for all those, but their security might not be satisfying for your organization. We always recommend to use SSH instead of Telnet and SNMPv3 with both authentication and privacy (encryption) instead of SNMPv1/v2c.
First of all, prepare your switch:
- enable ssh
- disable telnet
- create account admin
- configure snmpv3 add user authentication sha privacy aes
- configure snmpv3 add group user sec-model usm
- configure snmpv3 add access sec-model usm sec-level priv read-view "defaultAdminView" write-view "defaultAdminView" notify-view "defaultAdminView"
This is just for basics but rest like SNMP Traps can be set via XMC.
Once you have this set up, you can add your devices to XMC manually or by discovery. There is third option called Zero-Touch Provisioning Plus.
Before you add your devices, you must replicate what has been done on the switches. So in XMC go to Administration -> Profiles and create SNMP credentials and CLI credentials (bottom half of the page). Then combine those into a single access profile (top half of the page) and it is ready to use.
So you can go to Network, and over there just click on the menu to select 'Add device' and you specify IP address and relevant access profile.
You can also go to a site for discovery, where you have to specify range/subnet of your interest and an access profile that has to be tested against devices visible in the network. If the device is accessible with credentials from your access profile, it is assumed that's your device you want to manage. You can also set a lot of options what to do on devices that have been successfully discovered.
Details for XMC side:
After all you can do many things from XMC itself: schedule backups, upgrade firmware, run scripts (CLI/TCL/Python), automate stuff (Tasks, Alarms), gather device/interface statistics for alarms and reports, configure XMC as Syslog and SNMP Trap target on a switch, configure AAA and security policies on a switch and many more. :)
Hope that helps,
Tomasz View original