ZyXEL Communications XGS2220 Series User Manual page 192

Note: Use the user name and password of the login accounts you specify in this screen to
create accounts on the SNMP v3 manager.
Figure 140 SYSTEM > SNMP > SNMP User > Add/Edit
The following table describes the labels in this screen.
Table 82 SYSTEM > SNMP > SNMP User > Add/Edit
LABEL DESCRIPTION
Username Specify the user name (up to 32 printable ASCII characters) of a login account on the Switch.
The string should not contain [ ? ], [ | ], [ ' ], [ " ] or [ , ].
Security Level Select whether you want to implement authentication and/or encryption for SNMP
communication from this user. Choose:
• no auth – to use the user name as the password string to send to the SNMP manager. This is
equivalent to the Get, Set and Trap Community in SNMP v2c. This is the lowest security
level.
• auth – to implement an authentication algorithm for SNMP messages sent by this user.
• priv – to implement authentication and encryption for SNMP messages sent by this user.
This is the highest security level.
Note: The settings on the SNMP manager must be set at the same security level or
Authentication Select an authentication algorithm. MD5 (Message Digest 5) and SHA (Secure Hash Algorithm)
are hash algorithms used to authenticate SNMP data. SHA authentication is generally
considered stronger than MD5, but is slower.
Password Enter the password of up to 32 printable ASCII characters (except [ ? ], [ | ], [ ' ], [ " ], [ space ],
or [ , ]) for SNMP user authentication.
Privacy Specify the encryption method for SNMP communication from this user. You can choose one
of the following:
• DES – Data Encryption Standard is a widely used (but breakable) method of data
encryption. It applies a 56-bit key to each 64-bit block of data.
• AES – Advanced Encryption Standard is another method for data encryption that also
uses a secret key. AES applies a 128-bit key to 128-bit blocks of data.
Password Enter the password of up to 32 printable ASCII characters (except [ ? ], [ | ], [ ' ], [ " ], [ space ],
or [ , ]) for encrypting SNMP packets.
Group SNMP v3 adopts the concept of View-based Access Control Model (VACM) group. SNMP
managers in one group are assigned common access rights to MIBs. Specify in which SNMP
group this user is.
admin – Members of this group can perform all types of system configuration, including the
management of administrator accounts.
read-write – Members of this group have read and write rights, meaning that the user can
create and edit the MIBs on the Switch, except the user account and AAA configuration.
read-only – Members of this group have read rights only, meaning the user can collect
information from the Switch.
Chapter 26 SNMP
higher than the security level settings on the Switch.
XGS2220 Series User's Guide
192