SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 Framework by supporting the following:

a new SNMP message format

security for messages

access control

remote configuration of SNMP parameters

For more details on the SNMPv3 architecture please see RFC2271 to RFC2275.

The following table describes the SNMPv3 Configuration Menu options.

Table 85 SNMPv3 Configuration Menu options

Command

Description

 

 

usm <1-16>

Configures a user security model (USM) entry for an authorized user. You can also

 

configure this entry through SNMP. The range is 1-16.

 

 

view <1-128>

Configures different MIB views. The range is 1-128.

 

 

access <1-32>

Configures access rights. The View-based Access Control Model defines a set of services

 

that an application can use for checking access rights of the user. You need access

 

control when you have to process retrieval or modification request from an SNMP entity.

 

The range is 1-32.

 

 

group <1-16>

Configures an SNMP group. A group maps the user name to the access group names

 

and their access rights needed to access SNMP management objects. A group defines

 

the access rights assigned to all names that belong to a particular group. The range is 1-

 

16.

 

 

comm <1-16>

Configures a community table entry. The community table contains objects for mapping

 

community strings and version-independent SNMP message parameters.

 

The range is 1-16.

 

 

taddr <1-16>

Configures the destination address and user security levels for outgoing notifications. This

 

is also called the transport endpoint. The range is 1-16.

 

 

tparam <1-16>

Configures SNMP parameters, consisting of message processing model, security model,

 

security level, and security name information. There may be multiple transport endpoints

 

associated with a particular set of SNMP parameters, or a particular transport endpoint

 

may be associated with several sets of SNMP parameters.

 

 

notify <1-16>

Configures a notification index. A notification application typically monitors a system for

 

particular events or conditions, and generates Notification-Class messages based on

 

these events or conditions. The range is 1-16.

 

 

v1v2 disableenable

Enables or disables the access to SNMP version 1 and version 2. This command is

 

enabled by default.

 

 

cur

Displays the current SNMPv3 configuration.

 

 

User Security Model configuration

Command: /cfg/sys/ssnmp/snmpv3/usm

[SNMPv3 usmUser

1 Menu]

name

-

Set USM user name

auth

-

Set authentication protocol

authpw

-

Set authentication password

priv

-

Set privacy protocol

privpw

-

Set privacy password

del

-

Delete usmUser entry

cur

-

Display current usmUser configuration

 

 

 

You can make use of a defined set of user identities using this Security Model. An SNMP engine must have the knowledge of applicable attributes of a user.

This menu helps you create a user security model entry for an authorized user. You need to provide a security name to create the USM entry.

The following table describes the User Security Model Configuration Menu options.

Configuration Menu 98

Page 97 Page 99
Page 98
Image 98
HP xw460c Blade manual User Security Model configuration, V1v2 disableenable
Page 97 Page 99
Top Page Image Contents