4000 Router Series Network Management and Monitoring Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router

161

162

163

164

165

166

167

168

169

170

161

snmp-agent usm-user v3 user-name group-name [ remote { ip-address | ipv6 ipv6-address }

[ vpn-instance vpn-instance-name ] ] [ { cipher | simple } authentication-mode sha auth-password

[ privacy-mode aes128 priv-password ] ] [ acl acl-number | acl ipv6 ipv6-acl-number ] *

undo snmp-agent usm-user v3 user-name group-name { local | engineid engineid-string | remote

{ ip-address | ipv6 ipv6-address } [ vpn-instance vpn-instance-name ] }

Default

No SNMPv3 users have been configured.

Views

System view

Predefined user roles

network-admin

Parameters

user-name: Specifies an SNMPv3 username, a case-sensitive string of 1 to 32 characters.

group-name: Specifies an SNMPv3 group name, a case-sensitive string of 1 to 32 characters.

remote { ip-address | ipv6 ipv6-address }: Specifies the IPv4 or IPv6 address of the remote SNMP entity.

To send SNMPv3 informs to an NMS, you must specify the IPv4 or IPv6 address of the NMS in the

snmp-agent usm-user v3 command and map the IPv4 or IPv6 address to the SNMP engine ID of the

NMS by using the snmp-agent remote command.

vpn-instance vpn-instance-name: Specifies the VPN for the target host receiving SNMP notifications. The

vpn-instance-name argument specifies the name of the MPLS L3VPN, a case-sensitive string of 1 to 31

characters. If this parameter is not specified, the target host is in public network.

cipher: Specifies that auth-password and priv-password are encrypted keys, which can be calculated to

a hexadecimal string by using the snmp-agent calculate-password command.

simple: Specifies that auth-password and priv-password are plaintext keys.

authentication-mode: Specifies an authentication algorithm. MD5 is faster but less secure than SHA. For

more information about these algorithms, see Security Configuration Guide.

• md5: Specifies the MD5 authentication algorithm.

• sha: Specifies the SHA-1 authentication algorithm.

auth-password: Specifies a case-sensitive plaintext or encrypted authentication key. In non-FIPS mode, a

plaintext key is a string of 1 to 64 visible characters. In FIPS mode, a plaintext key is a string of 15 to 64

visible characters, which must contain numbers, uppercase letters, lowercase letters, and special

characters. If the cipher keyword is specified, the encrypted authentication key length requirements differ

by authentication algorithm and key string format, as shown in Table 34.

Table 34 Encrypted authentication key length requirements

Authentication

orithm

Hexadecimal string Non-hexadecimal string

MD5 32 characters 53 characters

SHA 40 characters 57 characters

privacy-mode: Specifies an encryption algorithm for privacy. AES is slower but more secure than DES.

• aes128: Specifies the AES (Advanced Encryption Standard) algorithm.