https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162222#M28816 <P>Works like a charm:</P><OL><LI>add snmp usm user remote security-level authNoPriv [...]</LI><LI>echo "rouser remote auth 1.3.6.1.2.1.4.22.1.2" &gt;&gt; /etc/snmp/userDefinedSettings.conf</LI><LI>clish -c "set snmp agent off" &amp;&amp;&nbsp;clish -c "set snmp agent on"</LI></OL><P>Tested with "Get Arp Cache" OID&nbsp; (<A href="https://oidref.com/1.3.6.1.2.1.4.22.1.2" target="_blank">https://oidref.com/1.3.6.1.2.1.4.22.1.2</A>), user "remote" can only query this specific OID.</P><P>Mission complete.&nbsp;<span class="lia-unicode-emoji" title=":beaming_face_with_smiling_eyes:">😁</span></P> Wed, 16 Nov 2022 13:00:24 GMT dj0Nz 2022-11-16T13:00:24Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162121#M28788 <P>Hi,</P><P>I searched the documentation but found nothing: Is there a way to restrict SNMP (v3) access for a certain user to a specific set of or single OIDs? F5 (<A href="https://support.f5.com/csp/article/K13625" target="_blank">https://support.f5.com/csp/article/K13625</A>) and other vendors have that feature ("Views").</P><P>Thanks in advance!</P><P>Cheers,<BR />Michael</P> Tue, 15 Nov 2022 12:14:42 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162121#M28788 dj0Nz 2022-11-15T12:14:42Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162193#M28805 <P>If it's not mentioned in&nbsp;<A class="cp_link sc_ellipsis" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk90860&amp;partition=Basic&amp;product=Quantum" target="_blank">sk90860: How to configure<SPAN>&nbsp;</SPAN><STRONG>SNMP</STRONG><SPAN>&nbsp;</SPAN>on<SPAN>&nbsp;</SPAN><STRONG>Gaia</STRONG><SPAN>&nbsp;</SPAN><STRONG>OS</STRONG></A>&nbsp;it's likely an RFE that will require further discussion with your local SE, that being said I would suggest referencing&nbsp;<SPAN>sk110113 in your request since it hints at what you're after.</SPAN></P> Wed, 16 Nov 2022 04:30:18 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162193#M28805 Chris_Atkinson 2022-11-16T04:30:18Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162198#M28808 <P>This is exactly what I've been looking for. Doesn't survive upgrades, not officially supported but I don't care.&nbsp;<span class="lia-unicode-emoji" title=":beaming_face_with_smiling_eyes:">😁</span><BR />Will check if that works in R81.10.&nbsp;</P><P>Thanks a lot.</P> Wed, 16 Nov 2022 07:00:08 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162198#M28808 dj0Nz 2022-11-16T07:00:08Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162222#M28816 <P>Works like a charm:</P><OL><LI>add snmp usm user remote security-level authNoPriv [...]</LI><LI>echo "rouser remote auth 1.3.6.1.2.1.4.22.1.2" &gt;&gt; /etc/snmp/userDefinedSettings.conf</LI><LI>clish -c "set snmp agent off" &amp;&amp;&nbsp;clish -c "set snmp agent on"</LI></OL><P>Tested with "Get Arp Cache" OID&nbsp; (<A href="https://oidref.com/1.3.6.1.2.1.4.22.1.2" target="_blank">https://oidref.com/1.3.6.1.2.1.4.22.1.2</A>), user "remote" can only query this specific OID.</P><P>Mission complete.&nbsp;<span class="lia-unicode-emoji" title=":beaming_face_with_smiling_eyes:">😁</span></P> Wed, 16 Nov 2022 13:00:24 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Restrict-SNMP-to-OIDs/m-p/162222#M28816 dj0Nz 2022-11-16T13:00:24Z