Command Manual – QoS/ACL
Quidway S8500 Series Routing Switches
Chapter 3 ACL Control Commands to Control
Login Users
Huawei Technologies Proprietary
3-5
System view
Parameter
v1: V 1 security mode.
v2c: V 2 security mode.
v3: V 3 security mode.
user-name: User name, ranging from 1 to 32 bytes.
group-name: Corresponding group name of the user, ranging from 1 to 32 bytes.
authentication-mode: Specifies the security level to “to be authenticated”
md5: Specifies the authentication protocol as HMAC-MD5-96.
sha: Specifies the authentication protocol as HMAC-SHA-96.
auth-password: Authentication password, character string, ranging from 1 to 64 bytes.
privacy: Specifies the security level as encryption.
des56: Specifies the DES encryption protocol.
priv-password: Encryption password, character string, ranging from 1 to 64 bytes.
acl acl-number: Number identifier of basic number-based ACLs, ranging from 2000 to
2999.
local: Local entity user.
engineid: Specifies the engine ID related to the user.
engineid-string: Engine ID character string.
Description
Use the snmp-agent usm-user command to add a new user to an SNMP group, and
reference the ACL to perform ACL control to the network management users by acl
acl-number.
Use the undo snmp-agent usm-user command to remove the user from the related
SNMP group as well as the configuration of the ACL control of the user.
Example
# Add a user “huawei” to the SNMP group “huaweigroup”. Specify the security level to
“to be authenticated”, the authentication protocol to HMAC-MD5-96 and the
authentication password to “quidway”, and reference the ACL 2002 to perform ACL
control to the network management users (basic ACL 2002 has already been defined).
<Quidway> system-view
System View: return to User View with Ctrl+Z.
[Quidway] snmp-agent usm-user v3 huawei huaweigroup authentication-mode md5
quidway acl 2002
To Next Page
Loading...
