HP StorageWorks 2/16V Brocade Fabric OS Command Reference Manual (53-1000240-0 - Page 657

Note: Enter commands in lowercase only; mixed case is for readability. snmpConfig 2 • 2 Error • 3 Warning • 4 Informational • 5 Debug SNMPv3 Configuration Parameters Two user roles, snmpadmin and snmpuser are supported. snmpadmin provides read-write access and snmpuser provides read-only access. Entries are added to USM table corresponding to each role. Total of three entries of role snmpadmin and three entries of role snmpuser are supported. Separate default passwords are provided for creation of authKey and privKey for each entry. Default set of passwords are published and default algorithm (MD5/SHA) is used to create initial set of auth keys. You can change these passwords using this option. You have the option to select authentication protocol MD5/SHA or no authentication for each entry. Select the following combination of protocols: • NoAuth/NoPriv • Auth/NoPriv • Auth/Priv The length of user name string should be in range of 2 to 32 characters. Note that the default user names are defined with noAuth and noPriv protocol. The factory default SNMPv3 user names are: • User 1: snmpadmin1 • User 2: snmpadmin2 • User 3: snmpadmin3 • User 4: snmpuser1 • User 5: snmpuser2 • User 6: snmpuser3 The user configuration is available in both secure and non-secure mode. When user select the --default option, the user name and passwords are set to default. In secure mode, the above configuration has to be updated by user on both primary and nonprimary switches individually and unlike community strings, user name and passwords is not distributed for other switches in the fabric. When new passwords are entered for any user entry, new authKey and privKey are generated. You have to update the new passwords on the client (such as a MIB browser) also. AuthKey and privKey can also be updated using delta key mechanism provided by SNMPv3 protocol. You are prompted for password and re-confirmation of password, if any protocol is selected other than NoAuth/NoPriv. The length of protocol passwords should be in range of 1 to 20 characters. Note that in order for an SNMP management station to receive SNMPv3 traps generated by the agent, the administrator must configure a trap recipient value to correspond to the IP address of the management station. Also, in addition the trap recipient should be able to pass the ACL check as described in accessControl section. The trap recipient value should be associated with one of the six users of SNMPv3 and trap severity level. Note that the factory default value for the SNMPv3 trap recipient of each user is '0.0.0.0'. Fabric OS Command Reference Manual Publication Number: 53-1000240-01 2-623