Defining Snmp Views - Brocade Communications Systems FastIron Administration Manual

Defining SNMP views

The access standard-ACL-id parameter is optional. It indicates that incoming SNMP packets are
filtered based on the ACL attached to the user account.
NOTE
The ACL specified in a user account overrides the ACL assigned to the group to which the user is
mapped. If no ACL is entered for the user account, then the ACL configured for the group will be used
to filter packets.
The encrypted parameter means that the MD5 or SHA password will be a digest value. MD5 has 16
octets in the digest. SHA has 20. The digest string has to be entered as a hexadecimal string. In this
case, the agent need not generate any explicit digest. If the encrypted parameter is not used, the user
is expected to enter the authentication password string for MD5 or SHA. The agent will convert the
password string to a digest, as described in RFC 2574.
The auth md5 | sha parameter is optional. It defines the type of encryption that the user must have to
be authenticated. Choose between MD5 or SHA encryption. MD5 and SHA are two authentication
protocols used in SNMP version 3.
The md5-password and sha-password define the password the user must use to be authenticated.
These password must have a minimum of 8 characters. If the encrypted parameter is used, then the
digest has 16 octets for MD5 or 20 octets for SHA.
NOTE
Once a password string is entered, the generated configuration displays the digest (for security
reasons), not the actual password.
The priv [encrypted] parameter is optional after you enter the md5 or sha password. The priv
parameter specifies the encryption type (DES or AES) used to encrypt the privacy password. If the
encrypted keyword is used, do the following:
• If DES is the privacy protocol to be used, enter des followed by a 16-octet DES key in hexadecimal
format for the des-password-key . If you include the encrypted keyword, enter a password string of
at least 8 characters.
• If AES is the privacy protocol to be used, enter aes followed by the AES password key. For a small
password key, enter 12 characters. For a big password key, enter 16 characters. If you include the
encrypted keyword, enter a password string containing 32 hexadecimal characters.
Defining SNMP views
SNMP views are named groups of MIB objects that can be associated with user accounts to allow
limited access for viewing and modification of SNMP statistics and system configuration. SNMP views
can also be used with other commands that take SNMP views as an argument. SNMP views reference
MIB objects using object names, numbers, wildcards, or a combination of the three. The numbers
represent the hierarchical location of the object in the MIB tree. You can reference individual objects in
the MIB tree or a subset of objects from the MIB tree.
To configure the number of SNMP views available on the Brocade device, enter the following
command.
device(config)#system-max view 15
Syntax: system-maxview number-of-views
154 FastIron Ethernet Switch Administration Guide
53-1003625-01