Wireless LAN Controller - SNMP configuration limitation

Requirement

·         Requirement is to manage the WLC (5508 with 7.4 code) using two SNMP managers in different locations. Also these two Servers should use the same community string to manage WLC.

Observation

·         We were able to configure the SNMP community string for one server IP (to allow access) through GUI

·         While trying to add another Server – IP with same community string – it didn’t allow

·         As per the configuration guide, Controller can use only one IP address range to manage SNMP community.

·         So we cannot configure the same community string to allow only two different server IP addresses

Configuration reference>

http://www.cisco.com/en/US/docs/wireless/controller/7.4/configuration/guides/consolidated/b_cg74_CONSOLIDATED_chapter_0111.html

Solution

·         We currently configured the major subnet ( 10.x / 8 - two match both server addresses) and it works fine

·         Also when we tried  0.0.0.0 / 0.0.0.0 , it didn’t work (SNMP was failing)

But this creates a security issue wherein any SNMP manager can poll the WLC.