set snmp user

Use this command to create a new SNMPv3 user.

Syntax

set snmp user user [remote remoteid] [authentication {md5 | sha}] [encryption {des | aes}][privacy privpassword] [volatile | nonvolatile]

Parameters

user Specifies a name for the SNMPv3 user.
remote remoteid (Optional) Registers the user on a specific remote SNMP engine.
authentication md5 | sha (Optional) Specifies the authentication type required for this user as MD5 or SHA. The MD5 option is not available if the security mode is set to C2. In C2 security mode, authentication is not an optional parameter.
encryption {des | aes} (Optional) Sets the privacy protocol to Advanced Encryption Standard (AES) or Data Encryption Standard (DES). The DES encryption option is not available if the security mode is set to C2. In C2 security mode, encryption is not an optional parameter.
privacy privpassword (Optional) Applies encryption and specifies an encryption password. Minimum of 8 characters.
volatile | nonvolatile (Optional) Specifies a storage type for this user entry.

Defaults

  • If remote is not specified, the user will be registered for the local SNMP engine.
  • In normal security mode, if authentication is not specified, no authentication will be applied.
  • In normal security mode, if encryption is not specified, the aes privacy protocol will be applied.
  • If privacy is not specified, no encryption will be applied.
  • If storage type is not specified, nonvolatile will be applied.

Mode

All command modes. If security profile mode is set to C2: Super-User (su) management access only.

Usage

The authentication password and encryption privacy password are interactively entered and are not part of the CLI entry. Both the authentication and privacy passwords must be at least 8 characters in length.

In C2 security mode, both authentication and encryption are not optional parameters. Both parameters must be entered.

In C2 security mode, you can not create, delete, or modify an SNMP user while in Read-Write user mode.

Examples

This example shows how to create a new SNMP user named “netops”. By default, this user will be registered on the local SNMP engine without authentication and encryption. Entries related to this user will be stored in permanent (nonvolatile) memory:

System(su)->set snmp user netops

This example shows how to configure SNMP user doc to be authenticated using SHA-1 authentication and AES encryption. You are interactively required to enter and re-enter both

System(su)->set snmp user doc authentication sha encryption aes
Please enter authentication password:xxxxxxx
Please re-enter authentication password:xxxxxxx
Please enter privacy password:
Please re-enter privacy password: