Configuring Read/Write Community String through Group Policy

Posted on 2008-06-24
Last Modified: 2009-01-21
Is there any way of configuring the Read/Write community strings trhough Group Policy?  We have Windows 2003 and what to configure all servers with the same SNMP community settings.  Some of our monitoring tools require Read/Write such as HP System Management.
Question by:madhour
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 26

Expert Comment

ID: 21856022
For HP Systems management, we've discovered it requires at least two community strings with read-only access: public and private, with the loopback address being a trap destination. Without it, HP Insight Manager tends to fail rather badly - the front page will not load properly.

THAT said, you can configure SNMP via group policy. Try this:

In the left pane, go to:
Computer Configuration
      Administrative Templates
In the right pane, right click Communities and choose Properties
Click the radiobutton Enabled
Click the button Show
Click the button Add...
add the SNMP community strings

In the right pane, right click Permitted Managers and choose Properties
Click the radiobutton Enabled
Click the button Show
Click the button Add...
add the Ip addresses or hostnames for the managers of this device

In the right pane, right click Traps for public community and choose Properties
Click the radiobutton Enabled
Click the button Show
Click the button Add...
Add the trap destinations

Author Comment

ID: 21856844
This does not seem to be working.  I thought a Public community string is not great for Server Security.

This is my settings:

Traps tab
Community Name:  public
Trap destinations:  blah

Security tab
Accepted community names:  
blah        READ ONLY
myCmtName    READ ONLY

Accept SNMP packet
LVL 26

Expert Comment

ID: 21857082
Using public and private for community strings isn't good, but unfortunately they're a requirement for HSIM to function properly.
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.


Author Comment

ID: 21857214
I don't think I will use HP System Management then.  Is there anyway to add read/write community string via Group Policy?
LVL 26

Expert Comment

ID: 21858104
As far as I've been able to determine, the default SNMP GPO only adds READ-ONLY community strings.

Author Comment

ID: 21858264
Yes.  That is correct.  I was hoping someone can post if there is an alternative way to put the read/write entry

Accepted Solution

WTDC earned 250 total points
ID: 22615196

Expert Comment

ID: 23428289

With HP Sim although it is a requirement to use snmp community names they can be either read or write, but you can choose anynames you want and not just have to use the default Public and Private.

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question