F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices System Management and Maintenance Command Reference-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

171

172

173

174

175

176

177

178

179

180

170

• md5: Converts the plaintext authentication key to an encrypted key for MD5 authentication, or

converts the plaintext privacy key to an encrypted key for AES or DES encryption used in

conjunction with MD5.

• sha: Converts the plaintext authentication key to an encrypted key for SHA-1 authentication, or

converts the plaintext privacy key to an encrypted key for AES or DES encryption used in

conjunction with SHA-1 authentication.

local-engineid: Uses the local engine ID to calculate the encrypted key. For engine ID-related

configuration, see the snmp-agent local-engineid command.

specified-engineid: Uses a user-defined engine ID to calculate the encrypted key.

engineid: Specifies an SNMP engine ID as a hexadecimal string. It must comprise an even number of

hexadecimal characters, in the range of 10 to 64. All-zero and all-F strings are invalid.

Usage guidelines

This command helps you calculate encrypted authentication and privacy keys for SNMPv3 users that use

encrypted authentication and privacy keys. To create an SNMPv3 user, see the snmp-agent usm-user v3

command.

Make sure the SNMP agent is enabled before you execute the snmp-agent calculate-password

command.

The converted key is valid only under the engine ID specified for key conversion.

In FIPS mode, the MD5 and 3DES privacy algorithms are not supported, and only the SHA privacy

algorithm is supported.

Examples

# Use the local engine and the MD5 algorithm to convert the plaintext key authkey to an encrypted key.

<Sysname> system-view

[Sysname] snmp-agent calculate-password authkey mode md5 local-engineid

The secret key is: 09659EC5A9AE91BA189E5845E1DDE0CC

Related commands

snmp-agent usm-user v3

snmp-agent community

Use snmp-agent community to configure an SNMP community.

Use undo snmp-agent community to delete an SNMP community.

Syntax

In non-FIPS mode:

snmp-agent community { read | write } [ cipher ] community-name [ mib-view view-name ] [ acl

acl-number | acl ipv6 ipv6-acl-number ] *

undo snmp-agent community { read | write } [ cipher ] community-name

This command is not available for FIPS mode.

Views

System view