Recently I configured SNMP via the Group Policy.
How ever by default you are not able to uncheck the Sent Authentication Trap function in the SNMP Serivce Settings. To do this you need to follow the following steps to complete this.
Computer Configuration\Policies\Administrative Templates definitions\Network\SNMP\Specify communities.
Enable this GPO and enter at Communities your own SNMP String.
However you might want to disable the sent authentication trap also.
To do this you need to look up what you need to change in the registry. Go to regedit
Go to: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SNMP\Parameters. Edit the Key EnableAuthenticationTraps
Change the DWORD value from 1 to 0
When you open the Services SNMP Trap
You see that the check box is disabled in the Services.
You need to remember the key which you need to add to the Group Policy. You have to go to the Computer Configuration\Preferences\Windows Settings\Registry
Add a new Registry Item
Add the registry
key Path: SYSTEM\CurrentControlSet\Services\SNMP\Parameters
Change key Value
Data to: 00000000 (default value is 00000001)
When you have added this. Run GPUPDATE on the Domain Controller and a Server where the GPO is applied to. And check after the run if the change is completed.
08-08-2018: edit type mistake
4 thoughts on “Microsoft | SNMP settings via Group Policy”
I think you made a mistake here :
“Go to: HKEY_LOCAL_MACHINE\SYSTEM\ControlControlSet\services\SNMP\Parameters. Edit the Key EnableAuthenticationTraps
Change the DWORD value from 1 to 0”
I assume it’s CurrentControlSet, not ControlControlSet
I see that i made a type mistake. how ever underneath the blog the settings are correct.
I dont understand why you should inject the registry if you are performing the change under the GPO ?
I wrote, If you want to disable traps. and perform a read-only setting. you will have to add the registry setting. I can’t confirm if the recent GPO ADMX files are updates if you can select only the type you want.