Juniper NETWORK AND SECURITY MANAGER - NSM CONFIGURATION GUIDE FOR EX SERIES DEVICES REV 3 Configuration Manual page 151

Table 79: Configuring V3 Fields (continued)
Option Function
Usm Specifies USM
information.
Copyright © 2010, Juniper Networks, Inc.
Your Action
1. Expand the V3 tree and select Usm.
2. Configure the following to create and define an entry:
Comment—Enter a comment for this USM set.
Local Engine—Specify the local-engine information for USM. Assign
a user associated with an SNMPv3 group. Specify the authentication
type for the SNMPv3 user as MD5 or SHA.
Assign the encryption algorithm:
Advanced Encryption Standard (privayc-aes128)
Triple Data Encryption Standard (privacy-3des)
Data Encryption Standard (privacy-des)
Configure the password used to generate the key used for encryption.
Remote Engine—Enter the engine ID for the SNMP agent on the
remote device where the user resides for the USM. You must do this
to send inform messages to an SNMPv3 user on a remote device. The
engine ID is used to compute the security digest for authenticating
and encrypting packets sent to a user on the remote host. Assign a
user associated with an SNMPv3 group.
Assign the authentication type:
MD5—Sets the message digest algorithm (MD5) as the
authentication type.
SHA—Sets the secure hash algorithm (SHA) as the authentication
type.
Assign the encryption algorithm:
Advanced Encryption Standard (privayc-aes128)
Triple Data Encryption Standard (privacy-3des)
Data Encryption Standard (privacy-des)
Configure the plain-text password used to generate the key used for
encryption meeting these requirements on a device:
The password must be at least eight characters long.
The password can include alphabetic, numeric, and special
characters, but not control characters.
Chapter 10: Configuring SNMP
135