D-Link xStack DES-3528 Series Cli Reference Manual page 46

xStack® DES-3528/DES-3552 Series Layer 2 Managed Stackable Fast Ethernet Switch CLI Reference Guide
create snmp user
Purpose
Syntax
Description
Parameters
Restrictions
Example usage:
To create an SNMP user on the Switch:
Used to create a new SNMP user and adds the user to an SNMP group that is also created
by this command.
create snmp user <user_name 32> <groupname 32> {encrypted [by_password auth
[md5 <auth_password 8-16> | sha <auth_password 8-20>] priv [none | des
<priv_password 8-16>] | by_key auth [md5 <auth_key 32-32> | sha <auth_key 40-40>]
priv [none | des <priv_key 32-32> ]]}
This command creates a new SNMP user and adds the user to an SNMP group that is also
created by this command. SNMP ensures:
Message integrity − Ensures that packets have not been tampered with during transit.
Authentication − Determines if an SNMP message is from a valid source.
Encryption − Scrambles the contents of messages to prevent it from being viewed by an
unauthorized source.
<user_name 32> − An alphanumeric name of up to 32 characters that will identify the new
SNMP user.
<groupname 32> − An alphanumeric name of up to 32 characters that will identify the SNMP
group the new SNMP user will be associated with.
encrypted – Allows the user to choose a type of authorization for authentication using SNMP.
The user may choose:
by_password – Requires the SNMP user to enter a password for authentication and
privacy. The password is defined by specifying the auth_password below. This
method is recommended.
by_key – Requires the SNMP user to enter a encryption key for authentication and
privacy. The key is defined by specifying the key in hex form below. This method is
not recommended.
auth − The user may also choose the type of authentication algorithms used to authenticate
the snmp user. The choices are:
md5 − Specifies that the HMAC-MD5-96 authentication level will be used. md5 may be
utilized by entering one of the following:
•
<auth password 8-16> - An alphanumeric string of between 8 and 16 characters that
will be used to authorize the agent to receive packets for the host.
•
<auth_key 32-32> - Enter an alphanumeric string of exactly 32 characters, in hex
form, to define the key that will be used to authorize the agent to receive packets for
the host.
sha − Specifies that the HMAC-SHA-96 authentication level will be used.
•
<auth password 8-20> - An alphanumeric string of between 8 and 20 characters that
will be used to authorize the agent to receive packets for the host.
•
<auth_key 40-40> - Enter an alphanumeric string of exactly 40 characters, in hex
form, to define the key that will be used to authorize the agent to receive packets for
the host.
priv – Adding the priv (privacy) parameter will allow for encryption in addition to the
authentication algorithm for higher security. The user may choose:
des – Adding this parameter will allow for a 56-bit encryption to be added using the DES-56
standard using:
•
<priv_password 8-16> - An alphanumeric string of between 8 and 16 characters that
will be used to encrypt the contents of messages the host sends to the agent.
•
<priv_key 32-32> - Enter an alphanumeric key string of exactly 32 characters, in hex
form, that will be used to encrypt the contents of messages the host sends to the
agent.
none – Adding this parameter will add no encryption.
Only Administrator-level users can issue this command.
46