Is there a tool to change the SNMP community string in multiple devices?

Posted on 2014-10-02
Last Modified: 2014-10-20

We have over 500 devices - printers, network scanners, switches, routers, servers, specialized network devices, all with their default snmp community strings. We know what the strings are, and so does everyone else.

We would like to change them all in one go but lack the programming capabilities to do. Is there a tool/utility/script that can assist us in this securing exercise?

Thank you.
Question by:netcmh
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
LVL 25

Assisted Solution

by:Ken Boone
Ken Boone earned 250 total points
ID: 40356961
Wow.  So the short answer is no.  If say you had a cisco network and were using there management tools, the old ciscoworks or the newer prime infrastructure - and the devices were already set up in the tool, then yes you could push the changes out to all the CISCO devices.   That still would leave you with printers - I'm sure various manufacturers, scanners, servers, and specialized network devices.

The only way that I know for this to be done is if you were already managing everything through a super expensive high level management tool like HP open view that worked with all of the providers management tools etc.. to push these changes out.

Its easy to monitor all of these devices, but making changes to multiple manufacturers equipment in one shot would take a very expensive and sophisticated system.
LVL 20

Author Comment

ID: 40356968
Glad you brought that topic up. I'm looking for something open source or freeware.
LVL 25

Expert Comment

by:Ken Boone
ID: 40356970
BTW for switches and routers (and I am assuming we are talking about commercial level equipment not consumer stuff you get from best buy) there are several tools that you can purchase that can help you.   Solarwinds - Network Configuration Manager, Cisco Prime Infrastructure to name a few.  There is probably something else out there for pushing changes out to your windows servers.  The rest of the stuff you are probably going to have to do manually.
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

LVL 25

Expert Comment

by:Ken Boone
ID: 40356977
For monitoring via open source there are a ton of tools available.  I like Cacti with several of its plugging.  The easiest distribution to get up and running is cactiez.  It can be downloaded here:

That is for monitoring, alerting, but its biggest feature is historical bandwidth reporting.
LVL 20

Author Comment

ID: 40358138
I'm still holding out for any scripts, utilitites or tools that could help.
LVL 26

Accepted Solution

Fred Marshall earned 250 total points
ID: 40360125
Ken Boone gave you a good answer.
The problem goes like this:
1) Make a list of all the devices involved.
2) Add their method of interfacing.  You will likely be using their command line interface for something like this - so list the command line interface type/language/etc.
3) For each different type of interface, you will need a script to march through the login (username and password generally required), select the needed menu item or issue the appropriate commands otherwise, get to the SNMP settings and set the String.

Unless you have one manufacturer of networked equipment throughout (which is unlikely) then you are going to have to develop the scripts for possibly each device separately! (worst case).  That's a lot of fiddling around and debugging, etc.
Better to bit the bullet and do it manually.  You'll complete the task much faster.

But, if you insist, I'd start with ExtraPuTTY and see if you can do it on at least ONE device first - i.e. automate a login with script.
LVL 20

Author Comment

ID: 40391809
No solution found. Closing.

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
route-map permit with a number 1 66
Network Switches 3 61
Server adapter cards 3 56
Necessity of Gigabit network infrastructure? 7 44
This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question