xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
45
create snmp user
Purpose
Used to create a new SNMP user and adds the user to an SNMP group that is also
created by this command.
Syntax
create snmp user <SNMP_name 32> <groupname 32> {encrypted [by_password auth
[md5 <auth_password 8-16> | sha <auth_password 8-20>] priv [none | des
<priv_password 8-16>] | by_key auth [md5 <auth_key 32-32> | sha <auth_key 40-40>]
priv [none | des <priv_key 32-32>]]}
Description
This command is used to create a new SNMP user and adds the user to an SNMP group
that is also created by this command. SNMP ensures:
Message integrity − Ensures that packets have not been tampered with during transit.
Authentication − Determines if an SNMP message is from a valid source.
Encryption − Scrambles the contents of messages to prevent it from being viewed by an
unauthorized source.
Parameters
<SNMP_name 32> − An alphanumeric name of up to 32 characters that will identify the
new SNMP user.
<groupname 32> − An alphanumeric name of up to 32 characters that will identify the
SNMP group the new SNMP user will be associated with.
encrypted – Allows the user to choose a type of authorization for authentication using
SNMP. The user may choose:
by_password – Requires the SNMP user to enter a password for authentication and
privacy. The password is defined by specifying the auth_password below. This
method is recommended.
by_key – Requires the SNMP user to enter an encryption key for authentication and
privacy. The key is defined by specifying the key in hex form. This method is not
recommended.
auth − The user may also choose the type of authentication algorithms used to
authenticate the snmp user. The choices are:
md5 − Specifies that the HMAC-MD5-96 authentication level will be used. md5 may be
utilized by entering one of the following:
<auth password 8-16> − An alphanumeric string of between 8 and 16 characters that will
be used to authorize the agent to receive packets for the host.
<auth_key 32-32> − Enter an alphanumeric string of exactly 32 characters, in hex form, to
define the key that will be used to authorize the agent to receive packets for the host.
sha − Specifies that the HMAC-SHA-96 authentication level will be used.
<auth password 8-20> − An alphanumeric string of between 8 and 20 characters that will
be used to authorize the agent to receive packets for the host.
<auth_key 40-40> − Enter an alphanumeric string of exactly 40 characters, in hex form, to
define the key that will be used to authorize the agent to receive packets for the host.
priv – Adding the priv (privacy) parameter will allow for encryption in addition to the
authentication algorithm for higher security. The user may choose:
des – Adding this parameter will allow for a 56-bit encryption to be added using the
DES-56 standard using:
<priv_password 8-16> − An alphanumeric string of between 8 and 16 characters that will
be used to encrypt the contents of messages the host sends to the agent.
<priv_key 32-32> − Enter an alphanumeric key string of exactly 32 characters, in hex
form, that will be used to encrypt the contents of messages the host sends to the agent.
none – Adding this parameter will add no encryption.
Restrictions
Only Administrator-level users can issue this command.
Example usage:
To create an SNMP user on the Switch: