Snmpv3 username list, Viewing the snmpv3 username list section, Snmpv3 username list section components – HP Secure Key Manager User Manual

SNMPv3 Username List

As the name suggests, the SNMPv3 Username List is used to configure the agent to communicate with
an NMS running SNMPv3 software. You can think of this section much in the same way as the
SNMPv1/SNMPv2 Community List in that the SNMPv3 Username List defines from which management
stations the SKM receives SNMP MIB requests. The main difference is that usernames are specific to
SNMPv3. Because SNMPv3 offers authentication and privacy, there is more to configure when creating
an SNMPv3 Username as opposed to a community.

NOTE:

If you are configuring the agent to communicate with an NMS running SNMPv1/v2 software, you
can disregard this section.

Figure 120 Viewing the SNMPv3 Username List section

The following table describes the components of the SNMPv3 Username List section.

Table 101 SNMPv3 Username List section components

Description

Component

The username defines from whom the SKM accepts SNMP messages, and it is one of
many elements used to create a key that is shared between the NMS and agent. User-
names can contain only alphanumeric characters and punctuation marks and they
cannot contain non–printing characters and white spaces.

Username

You have three choices for the security level

•

auth, priv – authorization and privacy. This option takes full advantage of the en-
hanced security features in SNMPv3. This option means that the SKM authenticates
the sender of the SNMP message; in addition, all data exchanged between the HP
agent and the NMS is encrypted using the DES algorithm and a secret key.

•

auth, no priv – authorization, no privacy. This option allows you to guarantee that
the SKM only accepts SNMP messages from trusted sources, but the data is not en-
crypted.

•

no auth, no priv – no authorization, no privacy. This option is similar to the security
offered in SNMPv1/v2. No encryption is performed, and the authenticity of the
sender of the SNMP message is not guaranteed.

Security Level

You can choose from MD5 and SHA.

Auth Protocol

This password is used to create the secret key that performs the MAC operation on the
data that is shared between the HP agent and the management station. The auth pass-
word must be between 8 and 64 characters.

Auth Password

Using the Management Console

214