EX2500 Ethernet Switch Configuration Guide

SNMPv3

SNMPv3 is an enhanced version of the Simple Network Management Protocol, approved by the Internet Engineering Steering Group in March, 2002. SNMPv3 contains additional security and authentication features that provide data origin authentication, data integrity checks, timeliness indicators, and encryption to protect against threats such as masquerade, modification of information, message stream modification, and disclosure.

SNMPv3 ensures that the client can use SNMPv3 to query the MIBs, mainly for security.

For more information on SNMP MIBs and the commands used to configure SNMP on the switch, see the EX2500 Ethernet Switch Command Reference.

Default Configuration

The EX2500 switch has two SNMPv3 users by default. Both of the following users have access to all the MIBs supported by the switch:

1.username 1: adminmd5 (password adminmd5). Authentication used is MD5.

2.username 2: adminsha (password adminsha). Authentication used is SHA. To configure an SNMP username, enter the following command from the CLI:

ex2500(config)# snmp-server user <1-16>name <1-32>

User Configuration

Users can be configured to use the authentication and privacy options. The EX2500 switch supports two authentication algorithms: MD5 and SHA, as specified in the following command:

ex2500(config)# snmp-server user <1-16>authentication-protocol md5 sha

1.To configure a user with name admin, authentication type MD5, authentication password admin, and privacy option DES with a privacy password of admin, use the following CLI commands:

ex2500(config)# snmp-server user 5 name admin ex2500(config)# snmp-server user 5 authentication-protocol md5 authentication-password

Changing authentication password; validation required: Enter current admin password: <admin. password> Enter new authentication password: <auth. password> Re-enter new authentication password: <auth. password> New authentication password accepted.

ex2500(config)# snmp-server user 5 privacy-protocol des privacy-password

Changing privacy password; validation required: Enter current admin password: <admin. password> Enter new privacy password: <privacy password> Re-enter new privacy password: <privacy password> New privacy password accepted.

8„ Using SNMP

Page 22
Image 22
Juniper Networks EX2500 manual SNMPv3, Default Configuration, User Configuration