Manualshelf

R3204P16-HP Load Balancing Module System Maintenance Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
69
acl acl-number: Specifies a basic ACL. The acl-number argument takes an ACL number in the range of
2,000 to 2,999. By using a basic ACL, you can restrict the source IP address of SNMP packets, which
means you can configure to allow or prohibit SNMP packets with a specific source IP address to allow
or prohibit the specified NMS to access the agent by using this user name.
local: Represents a local SNMP entity user.
engineid engineid-string: Specifies an SNMP engine ID as a hexadecimal string. The engineid-string
argument must comprise an even number of hexadecimal characters, which ranges from 10 to 64.
All-zero and all-F strings are invalid.
Description
Use the snmp-agent usm-user v3 command to add an SNMPv3 user to an SNMP group.
Use the undo snmp-agent usm-user v3 command to delete an SNMPv3 user from an SNMP group.
This command is for SNMPv3. Create SNMPv3 users, if the agent and the NMS use SNMPv3 packets
to communicate with each other.
Each SNMP user belongs to an SNMP group. Before creating a user, create an SNMP group first.
Otherwise, the user can be created successfully but does not take effect. An SNMP group may contain
multiple users. It defines SNMP objects accessible to the group of users in the MIB view and specifies
whether to enable authentication and privacy functions. The authentication and encryption algorithms
are defined when a user is created.
If you specify the cipher keyword, the system considers the arguments auth-password and
priv-password as encrypted keys, and does not encrypt them when executing this command.
If you do not specify the cipher keyword, the system considers the arguments auth-password and
priv-password as plain text keys, and encrypts them when executing this command.
Specify the cipher keyword when you roll back, copy or paste the running configuration. For example,
assume that you have created SNMPv3 user A and configured both authentication and privacy keys of
this user as xyz. To make the configuration of user A still effective after the configuration is copied, pasted,
and re-executed, specify the cipher keyword when you create user A with this command. Otherwise,
after you copy, paste, or re-execute the configuration, the device creates user A, but the corresponding
keys are not xyz.
When you use the snmp-agent usm-user v3 cipher command, the pri-password argument in this
command can be obtained by the snmp-agent calculate-password command. To make the calculated
encrypted key applicable to the snmp-agent usm-user v3 cipher command and have the same effect as
that in the snmp-agent usm-user v3 cipher command, ensure that the same encryption algorithm is
specified for the two commands and the local engine ID specified in the snmp-agent usm-user v3 cipher
command is consistent with the SNMP entity engine ID specified in the snmp-agent calculate-password
command.
When you execute this command repeatedly to configure the same user (namely, the user names are the
same, no limitation to other keywords and arguments), the last configuration takes effect.
A plain text password is required when the NMS accesses the device; therefore, please remember the
user name and the plain text password when you create a user.
Related commands: snmp-agent calculate-password, snmp-agent group, and snmp-agent usm-user
{ v1 | v2c }.
Examples
# Add a user testUser to the SNMPv3 group testGroup. Configure the security model as authentication
without privacy, the authentication algorithm as MD5, the plain-text key as authkey.
<Sysname> system-view