Manuals / HP / Computer Equipment / Switch

HP BMD00022 SNMPv3 USM User Table information, SNMPv3 View Table information, Field Description

Models: BMD00022

1 228

Download 228 pages 32.29 Kb

Page 27

SNMPv3 USM User Table information

Command: /info/sys/snmpv3/usm

usmUser Table:
User Name	Protocol
--------------------------------	--------------------------------
adminmd5	HMAC_MD5, DES PRIVACY
adminsha	HMAC_SHA, DES PRIVACY
v1v2only	NO AUTH, NO PRIVACY

The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages. This security model makes use of a defined set of user identities displayed in the USM user table. The USM user table contains information like:

•the user name

•a security name in the form of a string whose format is independent of the Security Model

•an authentication protocol, which is an indication that the messages sent on behalf of the user can be authenticated

•the privacy protocol.

The following table describes the SNMPv3 User Table information.

Table 9 User Table parameters

Field	Description

User Name	This is a string that represents the name of the user that you can use to access the switch.

Protocol	This indicates whether messages sent on behalf of this user are protected from disclosure
	using a privacy protocol. Switch software supports DES algorithm for privacy. The
	software also supports two authentication algorithms: MD5 and HMAC-SHA.

SNMPv3 View Table information

Command: /info/sys/snmpv3/view

View Name	Subtree	Mask	Type
-----------------	----------------------	-------------	--------
iso	1		included
v1v2only	1		included
v1v2only	1.3.6.1.6.3.15		excluded
v1v2only	1.3.6.1.6.3.16		excluded
v1v2only	1.3.6.1.6.3.18		excluded

The user can control and restrict the access allowed to a group to only a subset of the management information in the management domain that the group can access within each context by specifying the group’s rights in terms of a particular MIB view for security reasons.

Information Menu 27

Image 27

HP BMD00022 manual SNMPv3 USM User Table information, SNMPv3 View Table information, Command /info/sys/snmpv3/usm

Contents

HP 10Gb Ethernet BL-c Switch Legal notices Contents Statistics Menu 100105 101102 103168 163164 165Index 224 Connecting to the switch IntroductionAdditional references Setting an IP address Establishing a console connectionParameter Value 3DES Telnet 10GbE switch IP addressEstablishing a Telnet connection Establishing an SSH connectionAccessing the switch You will then be prompted to enter your password# ssh user@10Gb switch IP address User account Description and tasks performed Idle timeoutAddress Typeface or Meaning Example SymbolTypographical conventions AaBbCc123Menu summary Main MenuOr print Global commandsFollowing table describes the global commands Command ActionTelnet hostname IP address port -m-mgt-d-data Traceroute host name IP address max-hops msec delayExit or Quit Verbose nOption Description Command line history and editingTab completion Command line interface shortcutsCommand stacking Command abbreviationMain# /cfg Configuration Menu is displayedUse the following command to enable Snmp Setting passwordsConfiguring Simple Network Management Protocol support Changing the default administrator passwordSystem Menu is displayed Enter the current administrator password at the promptEnter the new administrator password at the prompt Enter the new administrator password, again, at the promptChanging the default operator password Changing the default user passwordRe-enter new operator password Enter the new operator password at the promptEnter the new operator password, again, at the prompt Enter new operator passwordFollowing table describes the Information Menu options Command /infoCommand Usage Menu overviewSystem Information Menu Command /info/sysSNMPv3 Information Menu Command /info/sys/snmpv3SNMPv3 View Table information Command /info/sys/snmpv3/usmCommand /info/sys/snmpv3/view SNMPv3 USM User Table informationSNMPv3 Access Table information Command /info/sys/snmpv3/accessFollowing table describes the SNMPv3 View Table information SNMPv3 Community Table information Command /info/sys/snmpv3/groupCommand /info/sys/snmpv3/comm SNMPv3 Group Table informationSNMPv3 Target Parameters Table information Command /info/sys/snmpv3/taddrCommand /info/sys/snmpv3/tparam SNMPv3 Target Address Table informationCommand /info/sys/snmpv3/notify SNMPv3 Notify Table informationNameTag V1v2trapv1v2trap SNMPv3 dump Command /info/sys/snmpv3/dumpSystem information Command /info/sys/genShow last 100 syslog messages Command /info/sys/logFollowing table describes the User Name information Command /info/sys/userCfg/sys/access/user/uid command System user informationLayer 2 information Command /info/l2Port port number Command /info/l2/fdbFDB information menu Find MAC address VlanShow all FDB information Command /info/l2/fdb/dumpCommand /info/l2/lacp Link Aggregation Control Protocol informationLacp dump Command /info/l2/lacp/dumpCommand /info/l2/hotlink/trigger Hot Links Trigger informationCommand /info/l2/8021x 802.1X informationFollowing table describes the Ieee 802.1X parameters Backend Auth State Authenticator PAE StateSpanning Tree information Command /info/l2/stpParameters Description Rapid Spanning Tree / Multiple Spanning Tree information Desg 8017 P2P2,EdgeDesg 8018 Parameter Description Common Internal Spanning Tree information Command /info/l2/cistCist Root Following table describes the Cist parametersTrunk group information Command /info/l2/trunkCommand /info/l2/vlan Trunk group 1, Enabled port state STG 1 forwardingFast Uplink Convergence status Command /info/l2/uplinkSTP uplink fast mode disabled STP uplink fast modeLayer 3 information Command /info/l3Show all IP Route information Command /info/l3/routeCommand /info/l3/route/dump Route informationFollowing table describes the Tag parameter Following table describes the Type parameterShow all ARP entry information Command /info/arpCommand /info/arp/dump ARP informationARP address list information Command /info/arp/addrCommand /info/l3/ospf Ospf informationOspf interface information Command /info/l3/ospf/generalCommand /info/l3/ospf/if Ospf general informationOspf Database information menu Command /info/l3/ospf/dbaseLinkstateid A.B.C.Dself Command /info/l3/ospf/routesOspf route codes information Rtr adv-rtr A.B.C.DRIP user configuration Routing Information Protocol informationRIP Routes information IP information Command /info/l3/ipIgmp multicast group information Command /info/l3/igmpTimer information Command /info/l3/igmp/dump4094 Igmp multicast router informationVrrp information Command /info/l3/vrrpServer Mobility Port information Command /info/l3/sm/port802.1p information Command /info/qosCommand /info/qos/8021p QoS informationACL information Command /info/aclRmon history information Command /info/rmonCommand /info/rmon/hist Rmon Information MenuCommand /info/rmon/alarm Rmon alarm informationTrap, both Command /info/rmon/eventLink status information Command /info/linkTransceiver status Command /info/portCommand /info/transcvr Port informationInformation dump Command /info/ufdCommand /info/dump Uplink Failure Detection informationNtp clear Command /statsMenu information Following table describes the Statistics Menu optionsCommand /stats/port port number Port Statistics MenuSfd clear Command /stats/port port number/8021x 802.1X statisticsStatistics Port BackendNonNakResponsesFromSupplic ant Command /stats/port port number/brg Bridging statisticsStatistics Description Ethernet statistics Command /stats/port port number/etherDot3StatsSingleCollisionFrames object Dot3StatsInternalMacTransmitErrorsDot3StatsCarrierSenseErrors object Dot3StatsMultipleCollisionFramesInterface statistics Command /stats/port port number/ifUcastPkts-IfHCOut Errors-IfHCInErrors-IfHCOut Octets-IfHCOutLink statistics Command /stats/port port number/ipCommand /stats/port port number/link Internet Protocol IP statisticsPort Rmon statistics Command /stats/port port number/rmonEtherStatsPkts64Octets EtherStatsFragmentsEtherStatsJabbers EtherStatsCollisionsFDB statistics Command /stats/l2/fdbCommand /stats/l2/lacp port number Layer 2 statisticsStatistic Description Command /stats/l2/hotlinkHot Links statistics Following table describes the Hot Links statisticsIgmpgrps Command /stats/l3Layer 3 statistics Arp clearGEA statistics Command /stats/l3/geal3Command /stats/l3/geal3/dump GEA Layer 3 statistics menuCommand /stats/l3/ip IP statisticsFollowing table describes the IP statistics ARP statistics DNS statisticsRoute statistics Icmp statistics Command /stats/l3/icmpTCP statistics Command /stats/l3/tcpSemantics of the Ubound quantity described in RFC Igmp Multicast Group statistics Command /stats/l3/udpCommand /stats/l3/igmp Vlan number UDP statisticsCommand /stats/l3/ospf Ospf statistics menuFollowing table describes the Ospf statistics menu options Command /stats/l3/ospf/general Ospf global statisticsFollowing table describes the Ospf global statistics Tx ls Acks Rx ls UpdatesTx ls Updates Rx ls AcksNbr change Timers Kickoff HelloCommand /stats/l3/vrrp Vrrp statisticsFollowing table describes the Vrrp statistics RIP statistics Command /stats/l3/ripCommand /stats/mp/pkt Management Processor statisticsPacket statistics Command /stats/mp/ucb Command /stats/mp/tcbAccess Control List ACL statistics menu CPU statisticsACL statistics Snmp statistics Command /stats/snmpNoSuchName NTP statistics Command /stats/ntpPrimary Server Command /stats/ufdUplink Failure Detection statistics Following table describes the NTP statisticsStatistics dump Command /stats/dumpFollowing table describes the Configuration Menu options Command /cfgReverting changes Viewing, applying, reverting, and saving changesViewing pending changes Applying pending changes# save Saving the configurationReminders Cfg/sys/reminders disCommand /cfg/sys System configurationMulti-line to end System host log configurationAddress. The default value is enabled Command /cfg/sys/syslogHost IP address Command DescriptionConsole disableenable Log featureall enabledisableSshport TCP port number Secure Shell Server configurationCommand /cfg/sys/sshd IntrvalCommand /cfg/sys/radius Radius server configurationCommand /cfg/sys/tacacs+ TACACS+ server configurationCmap enabledisable UseroperadminnonePort TCP port number NTP server configuration Command /cfg/sys/ntpMgtdata Command /cfg/sys/ssnmp System Snmp configurationSNMPv3 configuration Command /cfg/sys/ssnmp/snmpv3Wcomm 1-32 characters User Security Model configuration Command /cfg/sys/ssnmp/snmpv3/usmV1v2 disableenable Characters SNMPv3 View configurationCommand /cfg/sys/ssnmp/snmpv3/view Name 1-32 charactersWview 1-32 characters View-based Access Control Model configurationCommand /cfg/sys/ssnmp/snmpv3/access Rview 1-32 charactersCommand /cfg/sys/ssnmp/snmpv3/comm SNMPv3 Group configurationSNMPv3 Community Table configuration Command /cfg/sys/ssnmp/snmpv3/groupCommand /cfg/sys/ssnmp/snmpv3/taddr SNMPv3 Target Address Table configurationSnmpv1snmpv2csnmpv3 SNMPv3 Target Parameters Table configurationCommand /cfg/sys/ssnmp/snmpv3/tparam AuthPrivCommand /cfg/sys/access System Access configurationSNMPv3 Notify Table configuration Command /cfg/sys/ssnmp/snmpv3/notifyCommand /cfg/sys/access/mgmt Management Networks configurationCommand /cfg/sys/access/user/uid User Access Control configurationUser ID configuration Command /cfg/sys/access/userHttps Access configuration Command /cfg/sys/access/httpsAccess enabledisable Command /cfg/port port number Port configurationPort link configuration Command /cfg/port port number/gigTemporarily disabling a port Command /cfg/port port number/aclqos Port ACL/QoS configurationLink autop2pshared Port Pvrst configurationCommand /cfg/port port number/stp Edge enabledisableBpdugrd enabledisable Layer 2 configurationCommand /cfg/l2 EnabledisableCommand /cfg/l2/8021x 802.1X configuration802.1X Global configuration Command /cfg/l2/8021x/globalCommandDescription 802.1X Port configuration Command /cfg/l2/8021x/port port number802.1X Port Configuration Menu Applies the global 802.1X parameters to the port Command /cfg/l2/mrst RevRstpmstppvrst Command /cfg/l2/mrst/cist Common Internal Spanning Tree configurationFollowing configurations are unsupported Following configurations are supportedCommand /cfg/l2/mrst/cist/brg Cist bridge configurationCist port configuration Command /cfg/l2/mrst/cist/port port numberCost Spanning Tree configuration Command /cfg/l2/stpEdge disableenable Command /cfg/l2/stp/brg Bridge Spanning Tree configurationCommand /cfg/l2/stp 1-128/port port number Spanning Tree port configurationFastfwd disableenable Command /cfg/l2/fdb/static Forwarding Database configurationStatic FDB configuration Command /cfg/l2/fdbRem port number Trunk configurationCommand /cfg/l2/trunk Add port numberCommand /cfg/l2/thash/set IP Trunk Hash configurationLayer 2 IP Trunk Hash configuration Command /cfg/l2/thashCommand /cfg/l2/lacp/port port number Link Aggregation Control Protocol configurationLacp Port configuration Command /cfg/l2/lacpVlan configuration Command /cfg/l2/vlanDef list of port numbers Ethernet type Protocol Vlan configurationCommand /cfg/l2/vlan x/pvlan Pty Ether2SNAPLLCType primaryisolatedcommunity Private Vlan configurationCommand /cfg/l2/vlan x/privlan Tagpvl enabledisableSndfdb enabledisable Hot Links configurationCommand /cfg/l2/hotlink Bpdu enabledisableCommand /cfg/l2/hotlink/trigger 1-4/master Hot Links Trigger configurationHot Links Master configuration Command /cfg/l2/hotlink/triggerHot Links Backup configuration Command /cfg/l2/hotlink/trigger 1-4/backupFollowing table describes the Hot Links Backup Menu options Layer 3 configuration Command /cfg/l3Gw 1-4 Addr IP address IP interface configurationCommand /cfg/l3/if Relay disableenableDefault Gateway configuration Command /cfg/l3/gw 1-4Arp disableenable Command /cfg/l3/arp IP Static Route configurationAddress Resolution Protocol configuration Command /cfg/l3/routeCommand /cfg/l3/frwd Static ARP configurationIP Forwarding configuration Command /cfg/l3/arp/staticCommand /cfg/l3/rmap Network Filter configurationRoute Map configuration Command /cfg/l3/nwfMetric 1-16777214none IP Access List configurationCommand /cfg/l3/rmap 1-32/alist Type 12noneOff Globally turn Routing Information Protocol configurationCommand /cfg/l3/rip Current Display current RIP configurationCommand /cfg/l3/rip/if RIP Interface configurationRemove 1-32 1-32all RIP Route Redistribution configurationCommand /cfg/l3/rip/redist fixedstaticospfeospf Add 1-32 1-32allOpen Shortest Path First configuration Command /cfg/l3/ospfMd5key 1-255 characters Areaid IP address Osfp Area Index configurationCommand /cfg/l3/ospf/aindex Auth nonepasswordmd5Command /cfg/l3/ospf/if Ospf Interface configurationOspf Summary Range configuration Command /cfg/l3/ospf/rangeMdkey 1-255none Key key stringnoneNbr IP address Ospf Virtual Link configurationCommand /cfg/l3/ospf/virt Key passwordCommand /cfg/l3/ospf/redist fixedstaticrip Ospf Host Entry configurationOspf Route Redistribution configuration Command /cfg/l3/ospf/hostKey 1-16 characters Ospf MD5 Key configurationCommand /cfg/l3/ospf/md5key key ID Export 1-16777215 12noneCommand /cfg/l3/igmp/snoop Igmp configurationIgmp snooping configuration Command /cfg/l3/igmpIgmpv3 Flood disableenableAggr disableenable PortsCommand /cfg/l3/igmp/snoop/igmpv3 IGMPv3 Snooping configurationRemove port number Igmp static multicast router configurationIgmp filtering configuration Add port number 1-4094Igmp filter definition Igmp filtering port configurationCommand /cfg/l3/igmp/igmpflt/filter Command /cfg/l3/igmp/igmpflt/port port numberCommand /cfg/l3/bootp Domain Name System configurationBootstrap Protocol Relay configuration Command /cfg/l3/dnsNsmrelay enabledisable Server Mobility configurationCommand /cfg/l3/sm Filter enabledisableRemback port number Server Mobility port configurationCommand /cfg/l3/sm/port port number Addback port numberVirtual Router Redundancy Protocol configuration Command /cfg/l3/vrrpCur Display current Vrrp configuration Command /cfg/l3/vrrp/vr Vrrp Virtual Router configurationSwitch ports Vrrp Virtual Router Priority Tracking configurationCommand /cfg/l3/vrrp/vr 1-250/track Preem disableenableIfs disableenable Vrrp Virtual Router Group configurationCommand /cfg/l3/vrrp/group Vrs disableenableVirtual Router Group Configuration Menu options Command /cfg/l3/vrrp/if Vrrp Virtual Router Group Priority Tracking configurationVrrp Interface configuration Command /cfg/l3/vrrp/group/trackCommand /cfg/l3/vrrp/track Vrrp Tracking configurationCommand /cfg/qos/8021p Quality of Service configurationQoS 802.1p configuration Command /cfg/qosCommand /cfg/acl/acl Access Control configurationAccess Control List configuration Command /cfg/aclCommand /cfg/acl/acl 1-384/ethernet ACL Ethernet Filter configurationDip IP address IP mask ACL IP Version 4 Filter configurationCommand /cfg/acl/acl 1-384/ipv4 Sip IP address IP maskSport 1-65535 port mask ACL TCP/UDP Filter configurationCommand /cfg/acl/acl 1-384/tcpudp Filtering TCP/UDP MenuCommand /cfg/acl/acl 1-384/re-mark ACL Meter configurationACL Re-mark configuration Command /cfg/acl/acl 1-384/meterCommand /cfg/acl/acl 1-384/re-mark/inprof/up1p ACL Re-mark In-Profile configurationACL Re-mark In-Profile Update User Priority configuration Command /cfg/acl/acl 1-384/re-mark/inprofCommand /cfg/acl/acl 1-384/pktfmt ACL Packet Format configurationACL Re-mark Out-of-Profile configuration Command /cfg/acl/acl 1-384/re-mark/outprofRem acl ACL Group configurationCommand /cfg/acl/group Add aclCommand /cfg/rmon/hist Remote Monitoring configurationRmon history configuration Command /cfg/rmonOwner 1-127 characters Rmon event configurationCommand /cfg/rmon/event Following table describes the Rmon Event Menu optionsRlimit -2147483647 to Rmon alarm configurationCommand /cfg/rmon/alarm Oid 1-127 charactersMonport port number Command /cfg/pmirrMirror disableenable Port mirroringRem mirrored port Command /cfg/pmirr/monport port numberPort-based port mirroring Add mirrored port inoutbothCommand /cfg/ufd/fdp Uplink Failure Detection configurationFailure Detection Pair configuration Command /cfg/ufdAddport port number Link to Monitor configurationCommand /cfg/ufd/fdp/ltm Removes a Lacp admin key from the LtMRemtrunk Addkey Remkey Cur Link to Disable configurationAddport port number Remport port number AddtrunkCommand /cfg/gtcfg FTP/TFTP server filename Saving the active switch configurationRestoring the active switch configuration Command /cfg/ptcfg FTP/TFTP server filenameFollowing table describes the Operations Menu options Command /operCommand /oper/port port number Operations-level port optionsCommand /oper/port port number/8021x Rmon disableenableOperations-level port 802.1X options Command /oper/vrrp Vrrp Operations Menu Back Set virtual router to backupOperations-level Vrrp options Updating the switch software image Downloading new software to the switchCommand /boot Enter the port type to use for the file transfer Enter the password for the FTP server if promptedEnter the hostname or IP address of the FTP or Tftp server Enter the name of the new software file on the serverSystem prompts you for information. Enter the desired image Uploading a software image from the switchSelecting a software image to run New choiceBoot Options# reset Selecting a configuration blockResetting the switch Boot Options# confAccessing the Iscli Boot Options# mode iscliSwitch# boot cli-mode aos Command /maint Maintenance MenuFlags new Nvram flags word as System maintenance optionsCommand /maint/sys System Maintenance Menu Flags Set Nvram flag wordDebugging options Command /maint/fdbCommand /maint/debug Forwarding Database optionsCommand /maint/arp ARP cache optionsMP trace buffer at 132815 Fri May 25, 2002 mask 0x2ffdf748 Igmp Multicast Group options Command /maint/routeCommand /maint/igmp IP Route Manipulation optionsIgmp Mrouter options Command /maint/igmp/snoopCommand /maint/igmp/mrouter Igmp Snooping optionsUuencode flash dump FTP/TFTP system dump putClearing dump information Unscheduled system dumps Panic commandCommand /maint/panic Enter y to confirm the commandIndex Page Rmon Snmp Vrrp