I'm looking for more information about the differences between the SNMPv3 user groups on Aruba switches. When I type out "(config)# snmpv3 group ?" I get this output:
managerpriv Require privacy and authentication, can access all objects.
managerauth Require authentication, can access all objects.
operatorauth Requires authentication, limited access to objects.
operatornoauth No authentication required, limited access to objects.
commanagerrw Community with manager and unrestricted write access.
commanagerr Community with manager and restricted write access.
comoperatorrw Community with operator and unrestricted write access.
comoperatorr Community with operator and restricted write access.
Could someone expand on the descriptions above? I've tried finding more information via Internet searches, but all I find is the info above. In my organization for example, I'd like to setup a single user as "read-only." Would "operatorauth" be the most secure way of accomplishing this? Why doesn't that group use privacy as well?