H3C s3600 series Command Manual page 920
Hide thumbs
Also See for s3600 series:
- Operation manual (966 pages) ,
- Installation manual (98 pages) ,
- Command manual (92 pages)
Table of Contents
Advertisement
sha: Uses HMAC SHA algorithm for authentication, which is securer than MD5.
auth-password: Authentication password, a string of 1 to 64 characters in plain text, a 32-bit
hexadecimal number in cipher text if MD5 algorithm is used, and a 40-bit hexadecimal number in cipher
text if SHA algorithm is used.
privacy: Specifies the security mode as encrypted.
des56: Specifies the encryption protocol as Data Encryption Standard (DES).
aes128: Specifies the encryption protocol as Advanced Encryption Standard (AES), which is securer
than DES.
priv-password: Encryption password, a string of 1 to 64 characters in plain text, a 32-bit hexadecimal
number in cipher text if MD5 algorithm is used, and a 40-bit hexadecimal number in cipher text if SHA
algorithm is used.
acl-number: Binds a user with an ACL, where acl-number represents ACL number, in the range 2000 to
2999. Using ACLs can restrict the source addresses of SNMP messages, namely, permitting or refusing
the SNMP messages with specific source addresses, thus restricting access between the NMS and the
agent.
local: Specifies a local entity user.
engineid-string: Engine ID associated with the user, an even number of hexadecimal characters, in the
range 10 to 64.
Description
Use the snmp-agent usm-user command to add a user to an SNMP group.
Use the undo snmp-agent usm-user command to remove a user from an SNMP group.
This command is applicable to SNMPv3. If the agent and the NMS communicate using SNMPv3
messages, you need to create an SNMPv3 user first.
To make the configured user take effect, you need to create a group first. You can configure whether to
perform authentication or privacy when you create a group, and configure the algorithm and password
for authentication or privacy when you create a user.
An SNMPv3 user is related the engine ID: if you change the engine ID after configuring a user, the user
corresponding to the original engine ID becomes invalid.
Note that:
If the password is in cipher text, the pri-password argument can be obtained by the snmp-agent
calculate-password command. To make the calculated cipher text password applicable to the
snmp-agent usm-user v3 cipher command, ensure that the same authentication algorithm is
specified for the two commands and the local engine ID specified in the snmp-agent usm-user v3
cipher command is consistent with the SNMP entity engine ID specified in the snmp-agent
calculate-password command.
If you use the command repeatedly to configure the same user (namely, with the same username),
the last configuration takes effect.
You must enter a plain text password when the NMS accesses the device. Therefore, when you
create a user, you need to memorize the username and the corresponding plain text password.
Related commands: snmp-agent group, snmp-agent community, snmp-agent local-engineid.
1-28
- Quick Links:
- Login
- Reset Saved-Configuration
Hide quick links:
Advertisement
Chapters
Table of Contents
