xStack® DES-3528/DES-3552 Series Layer 2 Managed Stackable Fast Ethernet Switch CLI Reference Guide
46
create snmp user
Purpose
Used to create a new SNMP user and adds the user to an SNMP group that is also created
by this command.
Syntax
create snmp user <user_name 32> <groupname 32> {encrypted [by_password auth
[md5 <auth_password 8-16> | sha <auth_password 8-20>] priv [none | des
<priv_password 8-16>] | by_key auth [md5 <auth_key 32-32> | sha <auth_key 40-40>]
priv [none | des <priv_key 32-32> ]]}
Description
This command creates a new SNMP user and adds the user to an SNMP group that is also
created by this command. SNMP ensures:
Message integrity
−
Ensures that packets have not been tampered with during transit.
Authentication
−
Determines if an SNMP message is from a valid source.
Encryption
−
Scrambles the contents of messages to prevent it from being viewed by an
unauthorized source.
Parameters
<user_name 32>
−
An alphanumeric name of up to 32 characters that will identify the new
SNMP user.
<groupname 32>
−
An alphanumeric name of up to 32 characters that will identify the SNMP
group the new SNMP user will be associated with.
encrypted
– Allows the user to choose a type of authorization for authentication using SNMP.
The user may choose:
by_password
– Requires the SNMP user to enter a password for authentication and
privacy. The password is defined by specifying the auth_password below. This
method is recommended.
by_key
– Requires the SNMP user to enter a encryption key for authentication and
privacy. The key is defined by specifying the key in hex form below. This method is
not recommended.
auth
−
The user may also choose the type of authentication algorithms used to authenticate
the snmp user. The choices are:
md5
−
Specifies that the HMAC-MD5-96 authentication level will be used. md5 may be
utilized by entering one of the following:
•
<auth password 8-16>
- An alphanumeric string of between 8 and 16 characters that
will be used to authorize the agent to receive packets for the host.
•
<auth_key 32-32>
- Enter an alphanumeric string of exactly 32 characters, in hex
form, to define the key that will be used to authorize the agent to receive packets for
the host.
sha
−
Specifies that the HMAC-SHA-96 authentication level will be used.
•
<auth password 8-20>
- An alphanumeric string of between 8 and 20 characters that
will be used to authorize the agent to receive packets for the host.
•
<
auth_key 40-40>
- Enter an alphanumeric string of exactly 40 characters, in hex
form, to define the key that will be used to authorize the agent to receive packets for
the host
.
priv
– Adding the priv (privacy) parameter will allow for encryption in addition to the
authentication algorithm for higher security. The user may choose:
des
– Adding this parameter will allow for a 56-bit encryption to be added using the DES-56
standard using:
•
<priv_password 8-16>
- An alphanumeric string of between 8 and 16 characters that
will be used to encrypt the contents of messages the host sends to the agent.
•
<priv_key 32-32>
- Enter an alphanumeric key string of exactly 32 characters, in hex
form, that will be used to encrypt the contents of messages the host sends to the
agent.
none
– Adding this parameter will add no encryption.
Restrictions
Only Administrator-level users can issue this command.
Example usage:
To create an SNMP user on the Switch: