Web: Configuring Snmp V3 Users - HP ProCurve 420 Management And Configuration Manual
Hide thumbs
Also See for ProCurve 420:
- Management and configuration manual (233 pages) ,
- Getting started manual (94 pages) ,
- Installation and getting started manual (78 pages)
Table of Contents
Advertisement
Access Point Configuration
Configuring SNMP
5-18
Web: Configuring SNMP v3 Users
The SNMP window on the Configuration tab also enables the configuration of
SNMP v3 users and the engine ID.
An SNMP v3 engine is an independent SNMP agent that resides on the access
point and is identified by an ID number. This engine protects against message
replay, delay, and redirection. The engine ID is also used in combination with
user passwords to generate the security keys for authenticating and
encrypting SNMP v3 packets.
The web interface enables you to modify these parameters:
■
Engine ID: An engine ID is automatically generated that is unique to the
access point. This is referred to as the default engine ID. If the engine ID
is deleted or changed, all SNMP users will be cleared. You will need to
reconfigure all existing users. Therefore, if you want to change the default
engine ID, it must be changed first before configuring other SNMP v3
parameters.
SNMP Users: Each SNMP v3 user is defined by a unique name. Users
■
must be configured with a specific security level and assigned to a group.
The access point allows up to 10 SNMP v3 users to be configured.
•
Group: Users must be assigned to one of three pre-defined groups.
Other groups cannot be defined. The available groups are:
–
RO - A read-only group using no authentication and no data
encryption. Users in this group use no security, either authenti
cation or encryption, in SNMP messages they send to the agent.
This is the same as SNMP v1 or SNMP v2c.
–
RWAuth - A read/write group using authentication, but no data
encryption. Users in this group send SNMP messages that use an
MD5 password for authentication, but not a DES key for encryp
tion.
–
RWPriv - A read/write group using authentication and data
encryption. Users in this group send SNMP messages that use an
MD5 password for authentication and a DES key for encryption.
Both the MD5 password and DES key must be defined.
•
Auth Type: The authentication type used for the SNMP user; either
MD5 or none. When MD5 is selected, a password must be entered in
the following Passphrase field.
•
Priv Type: The data encryption type used for the SNMP user; either
DES or none. When DES is selected, a key must be entered in the
following Passphrase field.
Advertisement
Table of Contents
