The user-based access control implemented by SNMPv3 is based on contexts and user names, rather than on IP addresses and community strings. It is a partial implementation of the view-based access control model (VACM).
The first step we need to do when configuring an SNMPv3 user is to configure the server group to enable authentication for members of a specified named access list via the “snmp-server group” command. For example:
|Router(config)# snmp-server group MyGroup v3 auth access snmp_acl|
In this example, the SNMP server group MyGroup is configured to enable user authentication for members of the named access list snmp_acl.