User Manual
103Rack ATS AP44xx User Manual
SNMPv3
For SNMP GETs, SETs, and trap receivers, SNMPv3 uses a system of user profiles to identify users. An
SNMPv3 user must have a user profile assigned in the MIB software program to perform GETs and
SETs, browse the MIB, and receive traps.
NOTE: To use SNMPv3, you must have an MIB program that supports SNMPv3.
Path: Configuration > Network > SNMPv3 > Access
SNMPv3 Access: Enables SNMPv3 as a method of communication with this device.
Path: Configuration > Network > SNMPv3 > User Profiles
By default, this page lists the settings of four user profiles configured with the user names apc snmp
profile1 through apc snmp profile4, and no authentication or privacy (no encryption). To edit the
following settings for a user profile, select a user name in the list.
User Name: The identifier of the user profile. SNMPv3 maps GETs, SETs, and traps to a user profile by
matching the user name of the profile to the user name in the data packet being transmitted. A user
name can have up to 32 ASCII characters.
Authentication Passphrase: A phrase of 15 to 32 ASCII characters that verifies that the NMS
communicating with this device through SNMPv3 is the NMS it claims to be, that the message has not
been changed during transmission, and that the message was communicated in a timely manner,
indicating that it was not delayed and that it was not copied and sent again later at an inappropriate time.
Privacy Passphrase: A phrase of 15 to 32 ASCII characters (hidden crypt.phrase, by default) that
increases the privacy of the data (by means of encryption) that an NMS is sending to this device or
receiving from this device through SNMPv3.
Authentication Protocol: The APC by Schneider Electric implementation of SNMPv3 supports SHA or
MD5 authentication. Authentication will not occur unless an authentication protocol is selected.
Privacy Protocol: The implementation of SNMPv3 supports AES or DES as the protocols for encrypting
and decrypting data. Privacy of transmitted data requires that a privacy protocol is selected and that a
privacy passphrase is provided in the request from the NMS. When a privacy protocol is enabled but the
NMS does not provide a privacy passphrase, the SNMP request is not encrypted.
NOTE: You cannot select the privacy protocol if no authentication protocol is selected.
Path: Configuration > Network > SNMPv3 > Access Control
You can configure up to four access control entries to specify which NMSs have access to this device.
The opening page for access control, by default, assigns one entry to each of the four user profiles, but
you can edit these settings to apply more than one entry to any user profile to grant access by several
specific IP addresses, host names, or IP address masks.
• If you leave the default access control entry unchanged for a user profile, all NMSs using that
profile have access to this device.
• If you configure multiple access entries for one user profile, the limit of four entries requires that
one or more of the other user profiles must have no access control entry. If no access control
entry is listed for a user profile, no NMS that uses that profile has any access to this device.
To edit the access control settings for a user profile, select its user name.
Access: Select the Enable check box to activate the access control specified by the parameters in this
access control entry.
User Name: From the drop-down list, select the user profile to which this access control entry will apply.
The choices available are the four user names that you configure on the user profiles page (see “Path:
Configuration > Network > SNMPv3 > User Profiles” on page 104).