HPE FlexNetwork 10500 Series Network Management And Monitoring Command Reference page 166
Hide thumbs
Also See for FlexNetwork 10500 Series:
- Security command reference (881 pages) ,
- Security configuration manual (702 pages) ,
- Configuration manual (407 pages)
Table of Contents
Advertisement
Views
System view
Predefined user roles
network-admin
mdc-admin
Parameters
plain-password: Specifies a key in plaintext form. The plain-password argument is a case-sensitive
string of 1 to 64 characters.
mode: Specifies an authentication algorithm and encryption algorithm. The device supports the
HMAC-MD5 and HMAC-SHA1 authentication algorithms. The HMAC-MD5 algorithm is faster than
the HMAC-SHA1 algorithm. The HMAC-SHA1 algorithm provides more security than the
HMAC-MD5 algorithm. The AES256, AES192, AES, 3DES, and DES encryption algorithms (in
descending order of security strength) are available for the device. A more secure algorithm
calculates slower. DES is enough to meet general security requirements.
•
3desmd5: Calculates the encrypted form for the encryption key by using the 3DES encryption
algorithm and HMAC-MD5 authentication algorithm.
•
3dessha: Calculates the encrypted form for the encryption key by using the 3DES encryption
algorithm and HMAC-SHA1 authentication algorithm.
•
aes192md5: Calculates the encrypted form for the encryption key by using the AES192
encryption algorithm and the HMAC-MD5 authentication algorithm.
•
aes192sha: Calculates the encrypted form for the encryption key by using the AES192
encryption algorithm and the HMAC-SHA1 authentication algorithm.
•
aes256md5: Calculates the encrypted form for the encryption key by using the AES256
encryption algorithm and the HMAC-MD5 authentication algorithm.
•
aes256 sha: Calculates the encrypted form for the encryption key by using the AES256
encryption algorithm and the HMAC-SHA1 authentication algorithm.
•
md5: Calculates the encrypted form for the authentication key or encryption key by using the
HMAC-MD5 authentication algorithm and AES or DES encryption algorithm. When the
HMAC-MD5 authentication algorithm is used, you can get the same authentication key or
encryption key in encrypted form regardless of whether the AES or DES encryption algorithm is
used..
•
sha: Calculates the encrypted form for the authentication key or encryption key by using
HMAC-SHA1 authentication algorithm and AES or DES encryption algorithm. When the
HMAC-SHA1 authentication algorithm is used, you can get the same authentication key or
encryption key in encrypted form regardless of whether the AES or DES encryption algorithm is
used.
local-engineid: Uses the local engine ID to calculate the encrypted form for the key. You can
configure the local engine ID by using the snmp-agent local-engineid command.
specified-engineid engineid: Uses a user-defined engine ID to calculate the encrypted form for the
key. The engineid argument specifies an SNMP engine ID as a hexadecimal string. It must contain
an even number of hexadecimal characters, in the range of 10 to 64. The engine ID is case
insensitive. All-zero and all-F strings are invalid.
Usage guidelines
Make sure the SNMP agent is enabled before you execute the snmp-agent calculate-password
command.
For security purposes, use the encrypted-form key generated by using this command when you
create SNMPv3 users by specifying the cipher keyword in the snmp-agent usm-user v3
command.
The encrypted form of the key is valid only under the engine ID specified for key conversion.
157
Advertisement
Table of Contents
