192
aes256 } priv-password ] [ acl { ipv4-acl-number | name ipv4-acl-name } | acl ipv6 { ipv6-acl-number
| name ipv6-acl-name } ] *
undo snmp-agent usm-user v3 user-name { local | engineid engineid-string | remote
{ ipv4-address | ipv6 ipv6-address } }
• In RBAC mode:
snmp-agent usm-user v3 user-name user-role role-name [ remote { ipv4-address | ipv6
ipv6-address } ] [ { cipher | simple } authentication-mode sha auth-password [ privacy-mode
{ aes128 | aes192 | aes256 } priv-password ] ] [ acl { ipv4-acl-number | name ipv4-acl-name } | acl
ipv6 { ipv6-acl-number | name ipv6
-acl-name } ] *
undo snmp-agent usm-user v3 user-name { local | engineid engineid-string | remote
{ ipv4-address | ipv6 ipv6-address } }
Default
No SNMPv3 users exist.
Views
System view
Predefined user roles
network-admin
Parameters
user-name: Specifies an SNMPv3 username, a case-sensitive string of 1 to 32 characters.
group-name: Specifies an SNMPv3 group name, a case-sensitive string of 1 to 32 characters. The
group can be one that has been created or not. The user takes effect only after you create the group.
user-role role-name: Specifies a user role name, a case-sensitive string of 1 to 63 characters.
remote { ipv4-address | ipv6 ipv6-address }: Specifies a target host by its IPv4 or IPv6 address,
typically the NMS, to receive the notifications. To send SNMPv3 notifications to a target host, you
need to specify this option and use the snmp-agent remote command to bind the IPv4 or IPv6
address to the remote engine ID.
cipher: Specifies an authentication key and an encryption key in encrypted form. The keys will be
converted to a digest in encrypted form and stored in the device.
simple: Specifies an authentication key and an encryption key in plaintext from. The keys will be
converted to a digest in encrypted form and stored in the device.
authentication-mode: Specifies an authentication algorithm. If you do not specify the keyword, the
system does not perform authentication. For more information about authentication algorithms, see
IPSec configuration in Security Configuration Guide.
• md5: Specifies the HMAC-MD5 authentication algorithm.
• sha: Specifies the HMAC-SHA1 authentication algorithm.
auth-password: Specifies an authentication key. This argument is case sensitive.
• The plaintext form of the key in non-FIPS mode is a string of 1 to 64 characters. The plaintext
form of the key in FIPS mode is a string of 15 to 64 characters, which must contain numbers,
uppercase letters, lowercase letters, and special characters.
• The encrypted form of the key can be calculated by using the snmp-agent
calculate-password command.
privacy-mode: Specifies an encryption algorithm. If you do not specify this keyword, the system
does not perform encryption.
• 3des: Specifies the 3DES encryption algorithm that uses a 168-bit key.
• aes128: Specifies the AES encryption algorithm that uses a 128-bit key.
• aes192: Specifies the AES encryption algorithm that uses a 192-bit key.
To Next Page
Loading...
Need help?
General