Snmp-Agent Usm-User V3 - HPE FlexNetwork 7500 Series Network Management And Monitoring Command Reference
Hide thumbs
Also See for FlexNetwork 7500 Series:
- Security configuration manual (597 pages) ,
- Command reference manual (474 pages) ,
- Configuration manual (111 pages)
Table of Contents
Advertisement
to access the SNMP agent. If the specified ACL does not have any rules, no NMS in the SNMP
community can access the SNMP agent.
acl ipv6 ipv6-acl-number: Specifies a basic IPv6 ACL to filter NMSs by source IPv6 address. The
ipv6-acl-number argument represents an ACL number in the range of 2000 to 2999. Only NMSs with
an IPv6 address permitted in the IPv6 ACL can access the SNMP agent. If no ACL is specified, or the
specified ACL does not exist, any NMS can use the specified username to access the SNMP agent.
If the specified ACL does not have any rules, no NMS in the SNMP community can access the SNMP
agent.
Usage guidelines
This command is supported only for high encryption in non-FIPS mode.
When you create an SNMPv1 or SNMPv2c user, the system automatically creates a community that
has the same name as the SNMPv1 or SNMPv2c username. This community has the same access
right as the SNMPv1 or SNMPv2c group. To display the SNMPv1 and SNMPv2c communities
created in this way, use the display snmp-agent community command.
To change the access right of the SNMPv1 or SNMPv2c user, use the snmp-agent community
command or the snmp-agent group { v1 | v2c } command. If the snmp-agent community
command is used, the SNMPv1 or SNMPv2c is removed from the SNMP group.
The snmp-agent usm-user { v1 | v2c } command enables managing SNMPv1 and SNMPv2c
communities in the same way as managing SNMPv3 users. It does not affect the way of configuring
SNMPv1 and SNMPv2c communities on the NMS.
Examples
# Add the user userv2c to the SNMPv2c group readCom so an NMS can use the protocol SNMPv2c
and the read-only community name userv2c to access the device.
<Sysname> system-view
[Sysname] snmp-agent sys-info version v2c
[Sysname] snmp-agent group v2c readCom
[Sysname] snmp-agent usm-user v2c userv2c readCom
# Add the user userv2c in the SNMPv2c group readCom so only the NMS at 1.1.1.1 can use the
protocol SNMPv2c and read-only community name userv2c to access the device.
<Sysname> system-view
[Sysname] acl number 2001
[Sysname-acl-basic-2001] rule permit source 1.1.1.1 0.0.0.0
[Sysname-acl-basic-2001] rule deny source any
[Sysname-acl-basic-2001] quit
[Sysname] snmp-agent sys-info version v2c
[Sysname] snmp-agent group v2c readCom
[Sysname] snmp-agent usm-user v2c userv2c readCom acl 2001
Related commands
display snmp-agent community
snmp-agent community
snmp-agent group
snmp-agent usm-user v3
Use snmp-agent usm-user v3 to add a user to an SNMPv3 group or create an SNMPv3 user.
Use undo snmp-agent usm-user v3 to delete a user from an SNMPv3 group or remove an
SNMPv3 user.
197
Advertisement
Table of Contents
