Configuring Read/Write Community String through Group Policy

Is there any way of configuring the Read/Write community strings trhough Group Policy?  We have Windows 2003 and what to configure all servers with the same SNMP community settings.  Some of our monitoring tools require Read/Write such as HP System Management.
madhourAsked:
Who is Participating?
 
WTDCConnect With a Mentor Commented:
0
 
MidnightOneCommented:
For HP Systems management, we've discovered it requires at least two community strings with read-only access: public and private, with the loopback address being a trap destination. Without it, HP Insight Manager tends to fail rather badly - the front page will not load properly.

THAT said, you can configure SNMP via group policy. Try this:

In the left pane, go to:
Computer Configuration
      Administrative Templates
            Network
                  SNMP
                  
In the right pane, right click Communities and choose Properties
Click the radiobutton Enabled
Click the button Show
Click the button Add...
add the SNMP community strings

In the right pane, right click Permitted Managers and choose Properties
Click the radiobutton Enabled
Click the button Show
Click the button Add...
add the Ip addresses or hostnames for the managers of this device

In the right pane, right click Traps for public community and choose Properties
Click the radiobutton Enabled
Click the button Show
Click the button Add...
Add the trap destinations
0
 
madhourAuthor Commented:
This does not seem to be working.  I thought a Public community string is not great for Server Security.

This is my settings:

Traps tab
Community Name:  public
Trap destinations:  blah

Security tab
Accepted community names:  
blah        READ ONLY
myCmtName    READ ONLY

Accept SNMP packet
localhost
myserver
                                                 
0
Cloud Class® Course: Ruby Fundamentals

This course will introduce you to Ruby, as well as teach you about classes, methods, variables, data structures, loops, enumerable methods, and finishing touches.

 
MidnightOneCommented:
Using public and private for community strings isn't good, but unfortunately they're a requirement for HSIM to function properly.
0
 
madhourAuthor Commented:
I don't think I will use HP System Management then.  Is there anyway to add read/write community string via Group Policy?
0
 
MidnightOneCommented:
As far as I've been able to determine, the default SNMP GPO only adds READ-ONLY community strings.
0
 
madhourAuthor Commented:
Yes.  That is correct.  I was hoping someone can post if there is an alternative way to put the read/write entry
0
 
Felicity_HarteCommented:
Comment:

With HP Sim although it is a requirement to use snmp community names they can be either read or write, but you can choose anynames you want and not just have to use the default Public and Private.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.