SNMP Users

Configure SNMPv3 user table on this page. The entry index keys are Engine ID and User Name.

Click to expand in new window
../Graphics/config_security_snmpv3_users.png
Object Description
Delete Select to delete the entry. It will be deleted during the next save.
Engine ID An octet string identifying the engine ID that this entry should belong to. The string must contain an even number (in hexadecimal format) with 10 – 64, but all zeros and all Fs are not allowed.

The SNMPv3 architecture uses the User-based Security Model (USM) for message security and the View-based Access Control Model (VACM) for access control. For the USM entry, the usmUserEngineID and usmUserName are the entry's keys. In a simple agent, usmUserEngineID is always that agent's own snmpEngineID value. The value can also take the snmpEngineID value of a remote SNMP (Simple Network Management Protocol) engine with which this user can communicate. In other words, if the user engine ID equals the system engine ID, then it is local user; otherwise it is remote user.

User name A string identifying the user name that this entry should belong to. Valid string length is 1 – 32, and the allowed content is ASCII characters 33 – 126.
Security Level Indicates the security model that this entry should belong to. Possible security models are:
  • NoAuth, NoPriv: No authentication and no privacy.
  • Auth, NoPriv: Authentication and no privacy.
  • Auth, Priv: Authentication and privacy.
Note: Ensure that the value is set correctly because it cannot be modified if an entry already exists.
Authentication Protocol Indicates the authentication protocol that this entry should belong to. Possible authentication protocols are:
  • None: No authentication protocol.
  • MD5 (Message-Digest algorithm 5): An optional flag to indicate that this user uses MD5 authentication protocol.
  • SHA: An optional flag to indicate that this user uses SHA authentication protocol.
Note: Ensure that the value is set correctly because it cannot be modified if an entry already exists.
Authentication Password A string identifying the authentication password phrase. For MD5 authentication protocol, valid string length is 8 – 32. For SHA authentication protocol, valid string length is 8 – 40. The allowed content is ASCII characters 33 – 126.
Privacy Protocol Indicates the privacy protocol that this entry should belong to. Possible privacy protocols are:
  • None: No privacy protocol.
  • DES: An optional flag to indicate that this user uses DES authentication protocol.
  • AES: An optional flag to indicate that this user uses AES authentication protocol.
Privacy Password A string identifying the privacy password phrase. Valid string length is 8 – 32, and the allowed content is ASCII characters 33 – 126.
Buttons
../_Common/../Graphics/add_new_entry.png Add a new entry.
../_Common/../Graphics/save_new.png Save changes.
../_Common/../Graphics/reset_new.png Undo any changes and revert to previously saved values.