xStack
®
DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual
39
create snmp user
Purpose Used to create a new SNMP user and adds the user to an SNMP group that is also
created by this command.
Syntax
create snmp user <username 32> <groupname 32> {encrypted [by_password auth
[md5 <auth_password 8–16> | sha <auth_password 8–20>] priv [none | des
<priv_password 8–16>] | by_key auth [md5 <auth_key 32–32> | sha <auth_key 40–
40>] priv [none | des <priv_key 32–32>]]}
Description The create snmp user command creates a new SNMP user and adds the user to an
SNMP group that is also created by this command. SNMP ensures:
Message integrity − Ensures that packets have not been tampered with during transit.
Authentication − Determines if an SNMP message is from a valid source.
Encryption − Scrambles the contents of messages to prevent it from being viewed by an
unauthorized source.
Parameters
<username 32> − An alphanumeric name of up to 32 characters that will identify the new
SNMP user.
<groupname 32> − An alphanumeric name of up to 32 characters that will identify the
SNMP group the new SNMP user will be associated with.
encrypted – Allows the user to choose a type of authorization for authentication using
SNMP. The user may choose:
• by_password – Requires the SNMP user to enter a password for authentication
and privacy. The password is defined by specifying the auth_password below.
This method is recommended.
• by_key – Requires the SNMP user to enter a encryption key for authentication
and privacy. The key is defined by specifying the key in hex form below. This
method is not recommended.
auth – The user may also choose the type of authentication algorithms used to
authenticate the snmp user. The choices are:
md5 − Specifies that the HMAC–MD5–96 authentication level will be used. md5 may be
utilized by entering one of the following:
• <auth password 8–16> – An alphanumeric sting of between 8 and 16 characters
that will be used to authorize the agent to receive packets for the host.
• <auth_key 32–32> – Enter an alphanumeric sting of exactly 32 characters, in hex
form, to define the key that will be used to authorize the agent to receive packets
for the host.
sha − Specifies that the HMAC–SHA–96 authentication level will be used.
• <auth password 8–20> – An alphanumeric sting of between 8 and 20 characters
that will be used to authorize the agent to receive packets for the host.
• <auth_key 40–40> – Enter an alphanumeric sting of exactly 40 characters, in hex
form, to define the key that will be used to authorize the agent to receive packets
for.
priv – Adding the priv (privacy) parameter will allow for encryption in addition to the
authentication algorithm for higher security. The user may choose:
• des – Adding this parameter will allow for a 56–bit encryption to be added using
the DES–56 standard using:
<priv_password 8–16> – An alphanumeric string of between 8 and 16
characters that will be used to encrypt the contents of messages the host
sends to the agent.
<priv_key 32–32> – Enter an alphanumeric key string of exactly 32 characters,
in hex form, that will be used to encrypt the contents of messages the host
sends to the agent.
• none – Adding this parameter will add no encryption.
Restrictions Only Administrator and Operator-level users can issue this command.
Example usage:
To create an SNMP user on the Switch:
