Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4112F-ON/S4112T-ON

181

182

183

184

185

186

187

188

189

190

● priv — (SNMPv3 only) Configure encryption for SNMPv3 messages sent to the user:

○ aes — Encrypt messages using AES 128-bit algorithm.

○ des — Encrypt messages using DES 56-bit algorithm.

○ priv-password — Enter a text string used to generate the privacy key used in encrypted

messages. A maximum of 32 alphanumeric characters. For an encrypted password, enter the

encrypted string instead of plain text.

● localized — (SNMPv3 only) Generate an SNMPv3 authentication and/or privacy key in localized

key format.

● access acl-name — (Optional) Enter the name of an IPv4 or IPv6 access list to filter SNMP

requests on the switch. A maximum of 16 characters.

●

remote ip-address/prefix-length udp-port port-number — (Optional) Enter the IPv4

or IPv6 address of the user's remote device and the UDP port number used to connect to the SNMP

agent on the switch, from 0 to 65535. The default is 162.

Defaults Not configured

Command Mode CONFIGURATION

Usage

Information

Use the snmp-server user command to set up the desired security level for SNMP access. For

SNMPv3 users, configure user authorization and message encryption. Re-enter this command multiple

times to configure SNMP security settings for all users.

The group to which a user is assigned determines the user's SNMP access. To configure a group's SNMP

access to the switch — read, write, and notify, use the snmp-server user command.

No default values exist for SNMPv3 authentication and privacy algorithms and passwords. If you forget a

password, you cannot recover it — you must reconfigure the user. You can specify either a plain-text

password or an encrypted cypher-text password. In either case, the password stores in the configuration

in an encrypted form and displays as encrypted in the show running-config snmp output.

A localized authentication or privacy key is more complex and provides greater privacy protection. To

display the localized authentication and privacy keys in an SNMPv3 user configuration, use the show

running-configuration snmp command.

To limit user access to the SNMP agent on the switch, enter an access acl-name value. In IPv6 ACLs,

SNMP supports only IPv6 and UDP types. TCP, ICMP, and port rules are not supported.

The no version of this command removes a user from the SNMP group.

Example

(Encrypted

passwords)

OS10(config)# snmp-server user privuser v3group v3 auth md5

9fc53d9d908118b2804fe80e3ba8763d priv des

d0452401a8c3ce42804fe80e3ba8763d

Example (Plain-

text passwords)

OS10(config)# snmp-server user authuser v3group v3 auth md5 authpasswd

Example (Remote

user)

OS10(config)# snmp-server user n3user ngroup remote 172.31.1.3 udp-port

5009 3

auth md5 authpasswd

Supported

Releases

10.4.2.0 or later

snmp-server view

Configures an SNMPv3 view.

Syntax

snmp-server view view-name oid-tree [included | excluded]

Parameters

● view-name — Enter the name of a read-only, read-write, or notify view. A maximum of 32

characters.

● oid-tree — Enter the SNMP object ID at which the view starts in 12-octet dotted-decimal format.

● included — (Optional) Include the MIB family in the view.

System management 181