HP MSR1003-8S Command Reference Manual page 213
Msr series network management and monitoring
Hide thumbs
Also See for MSR1003-8S:
- Installation manual (46 pages) ,
- Configuration manual (400 pages)
Table of Contents
Advertisement
Authentication
algorithm
SHA
acl acl-number: Specifies a basic IPv4 ACL by its number to filter NMSs by source IPv4 address. The
acl-number argument represents an ACL number in the range of 2000 to 2999. Only NMSs with an IPv4
address permitted in the ACL can use the specified username to access the SNMP agent. If no ACL is
specified, or the specified ACL does not exist, any NMS can use the specified username to access the
SNMP agent. If the specified ACL does not have any rules, no NMS in the SNMP community can access
the SNMP agent.
name acl-name: Specifies a basic IPv4 ACL by its name to filter NMSs by source IPv4 address. The
acl-name argument represents an ACL name, a case-insensitive string of 1 to 63 characters. Only NMSs
with an IPv4 address permitted in the ACL can use the specified username to access the SNMP agent. If
no ACL is specified, or the specified ACL does not exist, any NMS can use the specified username to
access the SNMP agent. If the specified ACL does not have any rules, no NMS in the SNMP community
can access the SNMP agent.
acl ipv6 ipv6-acl-number: Specifies a basic IPv6 ACL by its number to filter NMSs by source IPv6 address.
The ipv6-acl-number argument represents an ACL number in the range of 2000 to 2999. Only NMSs
with an IPv6 address permitted in the IPv6 ACL can use the specified username to access the SNMP
agent. If no ACL is specified, or the specified ACL does not exist, any NMS can use the specified
username to access the SNMP agent. If the specified ACL does not have any rules, no NMS in the SNMP
community can access the SNMP agent.
name ipv6-acl-name: Specifies a basic IPv6 ACL by its name to filter NMSs by source IPv6 address. The
ipv6-acl-name argument represents an ACL name, a case-insensitive string of 1 to 63 characters. Only
NMSs with an IPv6 address permitted in the ACL can use the specified username to access the SNMP
agent. If no ACL is specified, or the specified ACL does not exist, any NMS can use the specified
username to access the SNMP agent. If the specified ACL does not have any rules, no NMS in the SNMP
community can access the SNMP agent.
local: Specifies the local SNMP engine.
engineid engineid-string: Specifies an SNMP engine. The engineid-string argument represents the
engine ID and must contain an even number of hexadecimal characters, in the range of 10 to 64. All-zero
and all-F strings are invalid. After you change the local engine ID, the existing SNMPv3 users and
encrypted keys become invalid, and you must reconfigure them.
Usage guidelines
SNMPv3 users are valid only on the SNMP engine that creates them. By default, SNMPv3 users are
created on the local SNMP engine. When you create an SNMPv3 user for sending SNMP inform
messages, you must associate it with the remote SNMP engine.
To send SNMPv3 informs to an NMS, perform the following tasks:
•
Specify the IPv4 or IPv6 address of the NMS in the snmp-agent usm-user v3 command.
Map the IPv4 or IPv6 address to the SNMP engine ID of the NMS by using the snmp-agent remote
•
command.
You can use the following modes to control access to MIB objects for an SNMPv3 user:
View-based Access Control Model—In VACM mode, you must create an SNMPv3 group before
•
you assign an SNMPv3 user to the group. Otherwise, the user cannot take effect after it is created.
An SNMP group contains one or multiple users and specifies the MIB views and security model for
Encryption
Hexadecimal string
algorithm
AES128 or
40 characters
DES-56
202
Non-hexadecimal string
53 characters
Hide quick links:
Advertisement
Table of Contents
