Configuring Access Control for SNMPv3 Users
Use the following configuration statements to configure access control for SNMPv3 users:
snmp v3 usm local-engine user username ...snmp v3 usm local-engine user username authentication-md5 {authentication-password authentication-password;}snmp v3 usm local-engine user username authentication-sha {authentication-password authentication-password;}snmp v3 usm local-engine user username privacy-aes {privacy-password privacy-password;}snmp v3 usm local-engine user username privacy-des {privacy-password privacy-password;}To configure access control for SNMPv3 users:
- From configuration mode, access the configuration statement that configures the access control for SNMPv3 users.
[edit]user@host# edit snmp v3 usm local-engine user usernameUsername is the user-based security model (USM) username. By default, no authentication or encryption is specified for the SNMPv3 user.
See Configuring Authentication.
NOTE: Before you configure encryption, you must configure the authentication type.
Configuring Authentication
To configure the authentication type for SNMPv3 users:
- From configuration mode, access the configuration statement that configures the authentication type.
To configure MD5 authentication:
user@host# edit snmp v3 usm local-engine user username authentication-md5To configure SHA authentication:
user@host# edit snmp v3 usm local-engine user username authentication-shaThe password must be at least eight characters.
Configuring Encryption
Before you configure encryption, you must configure the authentication type. See Configuring Authentication.
To configure encryption for SNMPv3 users:
user@host# edit snmp v3 usm local-engine user username privacy-aesuser@host# edit snmp v3 usm local-engine user username privacy-des