[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Configuring Access Control for SNMPv3 Users

Use the following configuration statements to configure access control for SNMPv3 users:

snmp v3 usm local-engine user username ... 

snmp v3 usm local-engine user username authentication-md5 { 
    authentication-password authentication-password; 
}

snmp v3 usm local-engine user username authentication-sha { 
    authentication-password authentication-password; 
}

snmp v3 usm local-engine user username privacy-aes { 
    privacy-password privacy-password; 
}

snmp v3 usm local-engine user username privacy-des { 
    privacy-password privacy-password; 
}

To configure access control for SNMPv3 users:

  1. From configuration mode, access the configuration statement that configures the access control for SNMPv3 users.
  2. [edit]
    
    user@host# edit snmp v3 usm local-engine user username 
    
    
    

Username is the user-based security model (USM) username. By default, no authentication or encryption is specified for the SNMPv3 user.

  1. (Optional) Specify the authentication type.

See Configuring Authentication.

  1. (Optional) Specify the encryption.

See Configuring Encryption.


NOTE: Before you configure encryption, you must configure the authentication type.

  1. (Optional) Verify your configuration.
  2. [edit snmp v3 usm local-engine user username] 
    
    user@host# show 
    
    
    

Configuring Authentication

To configure the authentication type for SNMPv3 users:

  1. From configuration mode, access the configuration statement that configures the authentication type.

To configure MD5 authentication:

user@host# edit snmp v3 usm local-engine user username authentication-md5 

To configure SHA authentication:

user@host# edit snmp v3 usm local-engine user username authentication-sha 

  1. Specify the authentication password.
  2. user@host# set authentication-password authentication-password 
    
    
    

The password must be at least eight characters.

Configuring Encryption

Before you configure encryption, you must configure the authentication type. See Configuring Authentication.

To configure encryption for SNMPv3 users:

  1. From configuration mode, access the configuration statement that configures the encryption.

To configure AES encryption:

user@host# edit snmp v3 usm local-engine user username privacy-aes 

To configure DES encryption:

user@host# edit snmp v3 usm local-engine user username privacy-des 

  1. Specify the privacy password.
  2. user@host# set privacy-password privacy-password 
    
    
    

The password must be at least eight characters.


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]