EasyManuals Logo

HPE FlexNetwork MSR3012 User Manual

HPE FlexNetwork MSR3012
475 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #187 background imageLoading...
Page #187 background image
177
All users in an SNMP group share the security model and access rights of the group.
You can create a maximum of 20 SNMP groups, including SNMPv1, SNMPv2c, and SNMPv3
groups.
All SNMPv3 users in a group share the same security model, but can use different authentication
and privacy key settings. To implement a security model for a user and avoid SNMP communication
failures, make sure the security model configuration for the group and the security key settings for
the user are compliant with Table 42 and match the settings on the NMS.
Table 42 Basic security setting requirements for different security models
Security model
Security model
keyword for the
group
Security key
settings for the
user
Remarks
Authentication with
privacy
privacy
Authentication key,
privacy key
If the authentication key
or the privacy key is not
configured, SNMP
communication will fail.
Authentication without
privacy
authentication
Authentication key
If no authentication key is
configured, SNMP
communication will fail.
The privacy key (if any)
for the user does not take
effect.
No authentication, no
privacy
Neither
authentication
nor
privacy
None
The authentication and
privacy keys, if
configured, do not take
effect.
You can specify an ACL for the user and group, respectively, to filter illegitimate NMSs. Only the
NMSs permitted by the ACLs for both the user and group can access the SNMP agent. The following
rules apply to the ACLs for the user and group:
•
If you do not specify an ACL, the specified ACL does not exist, or the specified ACL does not
have any rules, all NMSs that use the username can access the SNMP agent.
•
If you have specified an ACL and the ACL has rules, only the NMSs permitted by the ACL can
access the agent.
For more information about ACL, see ACL and QoS Configuration Guide.
Examples
# Create the SNMPv3 group group1, and assign the no authentication, no privacy security model to
the group.
<Sysname> system-view
[Sysname] snmp-agent group v3 group1
Related commands
display snmp-agent group
snmp-agent mib-view
snmp-agent usm-user
snmp-agent local-engineid
Use snmp-agent local-engineid to set the SNMP engine ID for the local device.
Use undo snmp-agent local-engineid to restore the default.

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR3012 and is the answer not in the manual?

HPE FlexNetwork MSR3012 Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR3012
CategoryNetwork Router
LanguageEnglish

Related product manuals