Skip to content
The XG Series hardware appliances will reach end-of-life (EOL) on March 31, 2025. Click here to see the XG to XGS migration documentation.

Add an SNMPv3 user

You can add an SNMPv3 user and the list of trap hosts. You can specify encryption and authentication settings to ensure confidentiality, message integrity, and user validity.

  1. Go to Administration > SNMP. Scroll down to SNMPv3 users and traps and select Add. You can import or export an SNMP agent, community, or user configuration as a tar file from Backup and firmware > Import export.
  2. Enter the username. It must match the username you specified in the authorized host machines. You can enter letters without spaces.
  3. Select Accept queries to receive requests from the manager. Sophos Firewall responds to queries when the user credentials match. To respond, it doesn’t require details of the authorized hosts.
  4. Select Send traps to allow Sophos Firewall to send traps (alerts) to the manager.

    Tip

    To turn on SNMP traps, go to System services > Notification list.

  5. For Authorized hosts, enter the IP addresses (IPv4 or IPv6) of the trap host machines. If an SNMP manager or trap host is in the WAN zone, turn on SNMP for the WAN zone. Go to Administration > Device access.

    Warning

    If you turn on SNMP for the WAN zone, SNMP traffic becomes public.

  6. Select an encryption algorithm from the Encryption algorithm list and specify the password, using at least 12 characters.

    • AES
    • DES
    • None: No encryption
  7. Select an authentication algorithm from the Authentication algorithm list and specify the password, using at least 12 characters.

    • MD5
    • SHA256
    • SHA512
  8. Click Save.

More resources