SNMP Commands
BreezeMAX Wi² and BreezeACCESS Wi² System Manual 177
Example
5.9.8 snmp-server userThis command configures the SNMP v3 users that are allowed to manage the AP.
Use the no form to delete an SNMP v3 user.
Syntax
snmp-server user <user-name>
user-name - A user-defined string for the SNMP user. (32 characters maximum)
Default Setting
None
Command Mode
Global Configuration
Command Usage
• Up to 10 SNMPv3 users can be configured on the AP.
• The SNMP engine ID is used to compute the authentication/privacy digests from the pass phrase.
You should therefore configure the engine ID with the snmp-server engine-id command before
using this configuration command.
• The AP enables SNMP v3 users to be assigned to three pre-defined groups. Other groups cannot
be defined. The available groups are:
- RO - A read-only group using no authentication and no data encryption. Users in this group
use no security, either authentication or encryption, in SNMP messages they send to the agent.
This is the same as SNMP v1 or SNMP v2c.
- RWAuth - A read/write group using authentication, but no data encryption. Users in this group
send SNMP messages that use an MD5 key/password for authentication, but not a DES
key/password for encryption.
- RWPriv - A read/write group using authentication and data encryption. Users in this group send
SNMP messages that use an MD5 key/password for authentication and a DES key/password
for encryption. Both the MD5 and DES key/passwords must be defined.
• The command prompts for the following information to configure an SNMP v3 user:
-user-name - A user-defined string for the SNMP user. (32 characters maximum)
-group-name - The name of the SNMP group to which the user is assigned (32 characters
maximum). There are three pre-defined groups: RO, RWAuth, or RWPriv.
-auth-proto - The authentication type used for user authentication: md5 or none.
-auth-passphrase - The user password required when authentication is used
(8 – 32 characters).
-priv-proto - The encryption type used for SNMP data encryption: des or none.
-priv-passphrase - The user password required when data encryption is used
(8 – 32 characters).
• Users must be assigned to groups that have the same security levels. If a user who has “AuthPriv”
security (uses authentication and encryption) is assigned to a read-only (RO) group, the user will
not be able to access the database. An AuthPriv user must be assigned to the RWPriv group with
the AuthPriv security level.
• To configure a user for the RWAuth group, you must include the auth-proto and auth-passphrase
keywords.
• To configure a user for the RWPriv group, you must include the auth-proto, auth-passphrase,
priv-proto, and priv-passphrase keywords.
Enterprise AP(config)#snmp-server engine-id 1a:2b:3c:4d:00:ff
Enterprise AP(config)#