HP ProCurve 3500yl Release Notes page 58

Software version k.13.49

Hide thumbs Also See for ProCurve 3500yl:

Access security manual (778 pages)

Specifications (16 pages)

Features (6 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

page of 219

/ 219
Contents
Table of Contents
Bookmarks

Table of Contents

Enhancements

Release K.12.06 Enhancements

<auth-pass> is the hashed authentication password used with the configured authentication method.

priv "<priv-pass>" is the (optional) hashed privacy password used by a privacy protocol to encrypt

SNMPv3 messages between the switch and the station.

The following example shows the additional security credentials for SNMPv3 users that can be saved

in a running-config file:

snmpv3 user boris \

auth md5 "9e4cfef901f21cf9d21079debeca453" \

priv "82ca4dc99e782db1a1e914f5d8f16824"

snmpv3 user alan \

auth sha "8db06202b8f293e9bc0c00ac98cf91099708ecdf" \

priv "5bc4313e9fd7c2953aaea9406764fe8bb629a538"

Figure 5. Security Credentials for SNMPv3

Although you can enter an SNMPv3 authentication or privacy password in either clear ASCII text or

the SHA-1 hash of the password, the password is displayed and saved in a configuration file only in

hashed format, as shown in the preceding example.

For more information about the configuration of SNMP security parameters, refer to the "Configuring

for Network Management Applications" chapter in the Management and Configuration Guide.

802.1X Port-Access Credentials

In software release K.12.06 and greater, 802.1X authenticator (port-access) credentials can be stored

in a configuration file.

802.1X authenticator credentials are used by a port to authenticate supplicants requesting a

point-to-point connection to the switch. 802.1X supplicant credentials are used by the switch to

establish a point-to-point connection to a port on another 802.1X-aware switch. Only 802.1X authen-

ticator credentials are stored in a configuration file. For information about how to use 802.1X on the

switch both as an authenticator and a supplicant, refer to the "Configuring Port-Based and

Client-Based Access Control (802.1X)" chapter in the Access Security Guide.

In software release K.12.06 and greater, the local password configured with the password command

is no longer accepted as an 802.1X authenticator credential. A new configuration command (password

port-access) is introduced to configure the local operator username and password used as 802.1X

authentication credentials for access to the switch.

The password port-access values are now configured separately from the manager and operator

passwords configured with the password manager and password operator commands and used for

management access to the switch. For information on the new password command syntax, see

"Password Command" on page

45.

Table of Contents

This manual is also suitable for:

Procurve 8212zl Procurve 5400zl 6200yl

HP ProCurve 3500yl Release Notes page 58

Related Manuals for HP ProCurve 3500yl

Related Products for HP ProCurve 3500yl

This manual is also suitable for:

Table of Contents