Home » TP-Link Manuals » Hubs & Switches » TP-Link T1600G-28PS » Manual Viewer

TP-Link T1600G-28PS T1600G-28PSUN V3 CLI Reference Guide Guide - Page 424

snmp-server user

View all TP-Link T1600G-28PS manuals

Add to My Manuals
Save this manual to your list of manuals

Page 424 highlights

49.4 snmp-server user Description The snmp-server user command is used to add User. To delete the corresponding User, please use no snmp-server user command. The User in an SNMP Group can manage the switch via the management station software. The User and its Group have the same security level and access right. Syntax snmp-server user name { local | remote } group-name [ smode v3 ] [ slev { noAuthNoPriv | authNoPriv | authPriv }] [ cmode { none | MD5 | SHA }] [ cpwd confirm-pwd ] [ emode { none | DES }] [ epwd encrypt-pwd ] no snmp-server user name Parameter name -- User Name, ranging from 1 to 16 characters. local | remote -- User Type, with local and remote options. Local indicates that the user is connected to a local SNMP engine, while remote means that the user is connected to a remote SNMP engine. As the remote engine ID and user password are used to compute the authentication and privacy digests, before configuring a remote user, you need to set the remote engine ID first. group-name -- The Group Name of the User. The User is classified to the corresponding Group according to its Group Name, Security Model and Security Level. v3 --The security mode for the user. v3 indicates SNMPv3, the most secure model. slev -- The Security Level of SNMP v3 Group. There are three options, including noAuthNoPriv (no authorization and no encryption), authNoPriv (authorization and no encryption) and authPriv (authorization and encryption). The security level from highest to lowest is: noAuthNoPriv, authNoPriv, authPriv, and the default is noAuthNoPriv. The security level of the user should not be lower than the group it belongs to. cmode -- The Authentication Mode of the SNMP v3 User, with none, MD5 and SHA options. None indicates no authentication method is used, MD5 indicates the port authentication is performed via HMAC-MD5 algorithm and SHA indicates the port authentication is performed via SHA (Secure Hash Algorithm). SHA authentication mode has a higher security than MD5 mode. By default, the Authentication Mode is "none". 403

Section	Page
Preface	22
Chapter 1 Using the CLI	26
1.1 Accessing the CLI	26
1.1.1 Logon by Telnet	26
1.1.2 Logon by SSH	27
1.2 CLI Command Modes	32
1.3 Privilege Restrictions	35
1.4 Conventions	35
1.4.1 Format Conventions	35
1.4.2 Special Characters	36
1.4.3 Parameter Format	36
Chapter 2 User Interface	37
2.1 enable	37
2.2 service password-encryption	37
2.3 enable password	38
2.4 enable secret	39
2.5 configure	40
2.6 exit	41
2.7 end	41
2.8 clipaging	42
2.9 history	42
2.10 history clear	43
Chapter 3 User Management Commands	44
3.1 user name (password)	44
3.2 user name (secret)	45
3.3 show user account-list	46
3.4 show user configuration	47
Chapter 4 System Configuration Commands	48
4.1 system-time manual	48
4.2 system-time ntp	48
4.3 system-time dst predefined	50
4.4 system-time dst date	51
4.5 system-time dst recurring	52
4.6 hostname	53
4.7 location	54
4.8 contact-info	54
4.9 ip address	55
4.10 ip address-alloc	56
4.11 reset	57
4.12 reboot	57
4.13 reboot-schedule	58
4.14 copy running-config startup-config	59
4.15 copy startup-config tftp	59
4.16 copy tftp startup-config	60
4.17 copy backup-config tftp	61
4.18 copy backup-config startup-config	61
4.19 copy running-config backup-config	62
4.20 copy tftp backup-config	62
4.21 boot application	63
4.22 boot config	64
4.23 remove backup-image	64
4.24 firmware upgrade	65
4.25 ping	66
4.26 tracert	67
4.27 show system-info	68
4.28 show image-info	68
4.29 show boot	69
4.30 show running-config	69
4.31 show startup-config	70
4.32 show system-time	70
4.33 show system-time dst	71
4.34 show system-time ntp	71
4.35 show cable-diagnostics interface	72
4.36 show cpu-utilization	72
4.37 show memory-utilization	73
Chapter 5 EEE Configuration Commands	74
5.1 eee	74
5.2 show interface eee	74
Chapter 6 SDM Template Commands	76
6.1 sdm prefer	76
6.2 show sdm prefer	77
Chapter 7 Time Range Commands	78
7.1 time-range	78
7.2 absolute	78
7.3 periodic	79
7.4 holiday (time-range mode)	80
7.5 holiday	81
7.6 show holiday	81
7.7 show time-range	82
Chapter 8 Port Configuration Commands	83
8.1 interface gigabitEthernet	83
8.2 interface range gigabitEthernet	83
8.3 description	84
8.4 shutdown	85
8.5 flow-control	86
8.6 duplex	86
8.7 jumbo-size	87
8.8 speed	87
8.9 clear counters	88
8.10 show interface status	89
8.11 show interface counters	89
8.12 show interface configuration	90
Chapter 9 Port Isolation Commands	91
9.1 port isolation	91
9.2 show port isolation interface	92
Chapter 10 Loopback Detection Commands	93
10.1 loopback-detection (global)	93
10.2 loopback-detection interval	93
10.3 loopback-detection recovery-time	94
10.4 loopback-detection (interface)	95
10.5 loopback-detection config process-mode	95
10.6 loopback-detection recover	96
10.7 show loopback-detection global	97
10.8 show loopback-detection interface	97
Chapter 11 Etherchannel Commands	99
11.1 channel-group	99
11.2 port-channel load-balance	100
11.3 lacp system-priority	101
11.4 lacp port-priority	102
11.5 show etherchannel	102
11.6 show etherchannel load-balance	103
11.7 show lacp	104
11.8 show lacp sys-id	104
Chapter 12 MAC Address Commands	106
12.1 mac address-table static	106
12.2 mac address-table aging-time	107
12.3 mac address-table filtering	107
12.4 mac address-table max-mac-count	108
12.5 show mac address-table	110
12.6 clear mac address-table	110
12.7 show mac address-table aging-time	111
12.8 show mac address-table max-mac-count	111
12.9 show mac address-table interface	112
12.10 show mac address-table count	112
12.11 show mac address-table address	113
12.12 show mac address-table vlan	114
Chapter 13 IEEE 802.1Q VLAN Commands	115
13.1 vlan	115
13.2 name	116
13.3 switchport general allowed vlan	116
13.4 switchport pvid	117
13.5 switchport check ingress	118
13.6 switchport acceptable frame	118
13.7 show vlan summary	119
13.8 show vlan brief	120
13.9 show vlan	120
13.10 show interface switchport	121
Chapter 14 MAC-based VLAN Commands	122
14.1 mac-vlan mac-address	122
14.2 mac-vlan	123
14.3 show mac-vlan	123
14.4 show mac-vlan interface	124
Chapter 15 Protocol-based VLAN Commands	125
15.1 protocol-vlan template	125
15.2 protocol-vlan vlan	126
15.3 protocol-vlan group	127
15.4 show protocol-vlan template	127
15.5 show protocol-vlan vlan	128
Chapter 16 GVRP Commands	129
16.1 gvrp	129
16.2 gvrp (interface)	129
16.3 gvrp registration	130
16.4 gvrp timer	131
16.5 show gvrp interface	132
16.6 show gvrp global	133
Chapter 17 IGMP Snooping Commands	134
17.1 ip igmp snooping (global)	134
17.2 ip igmp snooping version	134
17.3 ip igmp snooping drop-unknown	135
17.4 ip igmp snooping header-validation	136
17.5 ip igmp snooping vlan-config	136
17.6 ip igmp snooping vlan-config (immediate-leave)	138
17.7 ip igmp snooping vlan-config (report-suppression)	138
17.8 ip igmp snooping vlan-config (router-ports-forbidden)	139
17.9 ip igmp snooping vlan-config (rport interface)	140
17.10 ip igmp snooping vlan-config (static)	141
17.11 ip igmp snooping vlan-config (querier)	142
17.12 ip igmp snooping (interface)	143
17.13 ip igmp snooping max-groups	144
17.14 ip igmp snooping immediate-leave	145
17.15 ip igmp profile	145
17.16 deny	146
17.17 permit	146
17.18 range	147
17.19 ip igmp filter	148
17.20 clear ip igmp snooping statistics	148
17.21 show ip igmp snooping	149
17.22 show ip igmp snooping interface	149
17.23 show ip igmp snooping vlan	150
17.24 show ip igmp snooping groups	151
17.25 show ip igmp profile	152
Chapter 18 MLD Snooping Commands	153
18.1 ipv6 mld snooping (global)	153
18.2 ipv6 mld snooping drop-unknown	153
18.3 ipv6 mld snooping vlan-config	154
18.4 ipv6 mld snooping vlan-config (immediate-leave)	155
18.5 ipv6 mld snooping vlan-config (report-suppression)	156
18.6 ipv6 mld snooping vlan-config (router-ports-forbidden)	157
18.7 ipv6 mld snooping vlan-config (rport interface)	158
18.8 ipv6 mld snooping vlan-config (static)	158
18.9 ipv6 mld snooping vlan-config (querier)	159
18.10 ipv6 mld snooping (interface)	161
18.11 ipv6 mld snooping max-groups	161
18.12 ipv6 mld snooping immediate-leave	162
18.13 ipv6 mld profile	163
18.14 deny	164
18.15 permit	164
18.16 range	165
18.17 ipv6 mld filter	165
18.18 clear ipv6 mld snooping statistics	166
18.19 show ipv6 mld snooping	166
18.20 show ipv6 mld snooping interface	167
18.21 show ipv6 mld snooping vlan	168
18.22 show ipv6 mld snooping groups	168
18.23 show ipv6 mld profile	169
Chapter 19 MVR Commands	170
19.1 mvr (global)	170
19.2 mvr group	170
19.3 mvr mode	171
19.4 mvr querytime	172
19.5 mvr vlan	173
19.6 mvr (interface)	173
19.7 mvr type	174
19.8 mvr immediate	175
19.9 mvr vlan (group)	175
19.10 show mvr	176
19.11 show mvr interface	177
19.12 show mvr members	177
19.13 show mvr traffic	178
Chapter 20 MSTP Commands	179
20.1 debug spanning-tree	179
20.2 spanning-tree (global)	180
20.3 spanning-tree (interface)	180
20.4 spanning-tree common-config	181
20.5 spanning-tree mode	182
20.6 spanning-tree mst configuration	183
20.7 instance	183
20.8 name	184
20.9 revision	185
20.10 spanning-tree mst instance	186
20.11 spanning-tree mst	186
20.12 spanning-tree priority	187
20.13 spanning-tree timer	188
20.14 spanning-tree hold-count	189
20.15 spanning-tree max-hops	189
20.16 spanning-tree bpdufilter	190
20.17 spanning-tree bpduflood	191
20.18 spanning-tree bpduguard	191
20.19 spanning-tree guard loop	192
20.20 spanning-tree guard root	193
20.21 spanning-tree guard tc	193
20.22 spanning-tree mcheck	194
20.23 show spanning-tree active	194
20.24 show spanning-tree bridge	195
20.25 show spanning-tree interface	195
20.26 show spanning-tree interface-security	196
20.27 show spanning-tree mst	197
Chapter 21 LLDP Commands	199
21.1 lldp	199
21.2 lldp forward_message	199
21.3 lldp hold-multiplier	200
21.4 lldp timer	201
21.5 lldp receive	202
21.6 lldp transmit	202
21.7 lldp snmp-trap	203
21.8 lldp tlv-select	204
21.9 lldp management-address	204
21.10 lldp med-fast-count	205
21.11 lldp med-status	206
21.12 lldp med-tlv-select	206
21.13 lldp med-location	207
21.14 show lldp	208
21.15 show lldp interface	208
21.16 show lldp local-information interface	209
21.17 show lldp neighbor-information interface	210
21.18 show lldp traffic interface	210
Chapter 22 Static Routes Commands	212
22.1 ip routing	212
22.2 interface vlan	212
22.3 interface loopback	213
22.4 switchport	213
22.5 interface range port-channel	214
22.6 description	215
22.7 shutdown	215
22.8 interface port-channel	216
22.9 ip route	217
22.10 ipv6 routing	217
22.11 ipv6 route	218
22.12 show interface vlan	219
22.13 show ip interface	219
22.14 show ip interface brief	220
22.15 show ip route	220
22.16 show ip route specify	221
22.17 show ip route summary	222
22.18 show ipv6 interface	222
22.19 show ipv6 route	223
22.20 show ipv6 route summary	223
Chapter 23 IPv6 Address Configuration Commands	225
23.1 ipv6 enable	225
23.2 ipv6 address autoconfig	225
23.3 ipv6 address link-local	226
23.4 ipv6 address dhcp	227
23.5 ipv6 address ra	227
23.6 ipv6 address eui-64	228
23.7 ipv6 address	229
23.8 show ipv6 interface	230
Chapter 24 ARP Commands	231
24.1 arp	231
24.2 clear arp-cache	232
24.3 arp dynamicrenew	232
24.4 arp timeout	233
24.5 gratuitous-arp intf-status-up enable	233
24.6 gratuitous-arp dup-ip-detected enable	234
24.7 gratuitous-arp learning enable	234
24.8 gratuitous-arp send-interval	235
24.9 ip proxy-arp	236
24.10 ip local-proxy-arp	236
24.11 show arp	237
24.12 show ip arp (interface)	238
24.13 show ip arp summary	238
24.14 show gratuitous-arp	239
24.15 show ip proxy-arp	239
Chapter 25 DHCP Server Commands	241
25.1 service dhcp server	241
25.2 ip dhcp server extend-option capwap-ac-ip	241
25.3 ip dhcp server extend-option vendor-class-id	242
25.4 ip dhcp server exclude-address	243
25.5 ip dhcp server pool	243
25.6 ip dhcp server ping timeout	244
25.7 ip dhcp server ping packets	245
25.8 network	245
25.9 lease	246
25.10 address hardware-address	247
25.11 address client-identifier	247
25.12 default-gateway	248
25.13 dns-server	249
25.14 netbios-name-server	250
25.15 netbios-node-type	250
25.16 next-server	251
25.17 domain-name	252
25.18 bootfile	252
25.19 show ip dhcp server status	253
25.20 show ip dhcp server statistics	253
25.21 show ip dhcp server extend-option	254
25.22 show ip dhcp server pool	254
25.23 show ip dhcp server excluded-address	255
25.24 show ip dhcp server manual-binding	255
25.25 show ip dhcp server binding	256
25.26 clear ip dhcp server statistics	256
25.27 clear ip dhcp server binding	257
Chapter 26 DHCP Relay Commands	258
26.1 service dhcp relay	258
26.2 ip dhcp relay hops	258
26.3 ip dhcp relay time	259
26.4 ip helper-address	260
26.5 ip dhcp relay information	260
26.6 ip dhcp relay information strategy	261
26.7 ip dhcp relay information format	262
26.8 ip dhcp relay information circuit-id	263
26.9 ip dhcp relay information remote-id	263
26.10 ip dhcp relay default-interface	264
26.11 ip dhcp relay vlan	265
26.12 show ip dhcp relay	265
Chapter 27 DHCP L2 Relay Commands	267
27.1 ip dhcp l2relay	267
27.2 ip dhcp l2relay vlan	267
27.3 ip dhcp l2relay information	268
27.4 ip dhcp l2relay information strategy	268
27.5 ip dhcp l2relay information format	269
27.6 ip dhcp l2relay information circuit-id	270
27.7 ip dhcp l2relay information remote-id	271
27.8 show ip dhcp l2relay	271
27.9 show ip dhcp l2relay interface	272
Chapter 28 QoS Commands	273
28.1 qos trust mode	273
28.2 qos port-priority	274
28.3 qos cos-map	274
28.4 qos dot1p-remap	275
28.5 qos dscp-map	276
28.6 qos dscp-remap	277
28.7 qos queue mode	277
28.8 show qos cos-map	278
28.9 show qos dot1p-remap	279
28.10 show qos dscp-map	279
28.11 show qos dscp-remap	280
28.12 show qos port-priority interface	280
28.13 show qos trust interface	281
28.14 show qos queue interface	281
Chapter 29 Bandwidth Control Commands	283
29.1 storm-control rate-mode	283
29.2 storm-control	284
29.3 storm-control exceed	285
29.4 storm-control recover	285
29.5 bandwidth	286
29.6 show storm-control	287
29.7 show bandwidth	287
Chapter 30 Voice VLAN Commands	289
30.1 voice vlan	289
30.2 voice vlan (interface)	289
30.3 voice vlan priority	290
30.4 voice vlan oui	291
30.5 show voice vlan	291
30.6 show voice vlan oui-table	292
30.7 show voice vlan interface	292
Chapter 31 Auto VoIP Commands	294
31.1 auto-voip	294
31.2 auto-voip (interface)	294
31.3 auto-voip dot1p	295
31.4 auto-voip untagged	296
31.5 auto-voip none	296
31.6 no auto-voip (interface)	297
31.7 auto-voip dscp	297
31.8 auto-voip data priority	298
31.9 show auto-voip	298
Chapter 32 Access Control Commands	300
32.1 user access-control ip-based enable	300
32.2 user access-control ip-based	300
32.3 user access-control mac-based enable	301
32.4 user access-control mac-based	302
32.5 user access-control port-based enable	303
32.6 user access-control port-based	303
Chapter 33 HTTP and HTTPS Commands	305
33.1 ip http server	305
33.2 ip http port	306
33.3 ip http max-users	306
33.4 ip http session timeout	307
33.5 ip http secure-server	308
33.6 ip http secure-port	308
33.7 ip http secure-protocol	309
33.8 ip http secure-ciphersuite	310
33.9 ip http secure-max-users	311
33.10 ip http secure-session timeout	312
33.11 ip http secure-server download certificate	312
33.12 ip http secure-server download key	313
33.13 show ip http configuration	314
33.14 show ip http secure-server	315
Chapter 34 SSH Commands	316
34.1 ip ssh server	316
34.2 ip ssh port	316
34.3 ip ssh version	317
34.4 ip ssh algorithm	318
34.5 ip ssh timeout	318
34.6 ip ssh max-client	319
34.7 ip ssh download	320
34.8 remove public-key	320
34.9 show ip ssh	321
Chapter 35 Telnet Commands	322
35.1 telnet enable	322
35.2 telnet port	322
35.3 show telnet-status	323
Chapter 36 AAA Commands	324
36.1 tacacas-server host	324
36.2 show tacacs-server	325
36.3 radius-server host	326
36.4 show radius-server	327
36.5 aaa group	328
36.6 server	329
36.7 show aaa group	329
36.8 aaa authentication login	330
36.9 aaa authentication enable	331
36.10 aaa authentication dot1x default	332
36.11 aaa accounting dot1x default	333
36.12 show aaa authentication	333
36.13 show aaa accounting	334
36.14 line telnet	334
36.15 login authentication (telnet)	335
36.16 line ssh	336
36.17 login authentication (ssh)	336
36.18 enable authentication (telnet)	337
36.19 enable authentication (ssh)	338
36.20 ip http login authentication	338
36.21 ip http enable authentication	339
36.22 show aaa global	340
36.23 enable admin password	340
36.24 enable admin secret	341
36.25 enable-admin	343
Chapter 37 IEEE 802.1x Commands	344
37.1 dot1x system-auth-control	344
37.2 dot1x handshake	345
37.3 dot1x auth-protocol	345
37.4 dot1x vlan-assignment	346
37.5 dot1x accounting	347
37.6 dot1x mab	348
37.7 dot1x guest-vlan	348
37.8 dot1x timeout quiet-period	349
37.9 dot1x timeout supp-timeout	350
37.10 dot1x max- req	351
37.11 dot1x	351
37.12 dot1x port-control	352
37.13 dot1x port-method	353
37.14 dot1x auth-init	354
37.15 dot1x auth-reauth	354
37.16 show dot1x global	355
37.17 show dot1x interface	356
37.18 show dot1x auth-state interface	356
Chapter 38 Port Security Commands	358
38.1 mac address-table max-mac count	358
38.2 show mac address-table max-mac-count	358
Chapter 39 Port Mirroring Commands	360
39.1 monitor session destination interface	360
39.2 monitor session source	361
39.3 show monitor session	362
Chapter 40 ACL Commands	364
40.1 access-list create	364
40.2 access-list resequence	364
40.3 access-list mac	365
40.4 access-list ip	367
40.5 access-list combined	368
40.6 access-list ipv6	370
40.7 access-list action	372

Match case Limit results 1 per page

403

49.4

snmp-server user

Description

The

snmp-server user

command is used to add User. To delete the

corresponding User, please use

no snmp-server user

command. The User in

an SNMP Group can manage the switch via the management station software.

The User and its Group have the same security level and access right.

Syntax

snmp-server user

name

{ local | remote }

group-name

[

smode

v3 ] [

slev

{ noAuthNoPriv | authNoPriv | authPriv }] [

cmode

{ none | MD5 | SHA }] [

cpwd

confirm-pwd

] [

emode

{ none | DES }] [

epwd

encrypt-pwd

]

no snmp-server user

name

Parameter

name

—— User Name, ranging from 1 to 16 characters.

local | remote —— User Type, with local and remote options. Local indicates

that the user is connected to a local SNMP engine, while remote means that

the user is connected to a remote SNMP engine. As the remote engine ID and

user password are used to compute the authentication and privacy digests,

before configuring a remote user, you need to set the remote engine ID first.

group-name

—— The Group Name of the User. The User is classified to the

corresponding Group according to its Group Name, Security Model and

Security Level.

v3 ——The security mode for the user. v3 indicates SNMPv3, the most

secure model.

slev —— The Security Level of SNMP v3 Group. There are three options,

including noAuthNoPriv (no authorization and no encryption), authNoPriv

(authorization and no encryption) and authPriv (authorization and encryption).

The security level from highest to lowest is: noAuthNoPriv, authNoPriv,

authPriv, and the default is noAuthNoPriv. The security level of the user

should not be lower than the group it belongs to.

cmode —— The Authentication Mode of the SNMP v3 User, with none, MD5

and SHA options. None indicates no authentication method is used, MD5

indicates the port authentication is performed via HMAC-MD5 algorithm and

SHA indicates the port authentication is performed via SHA (Secure Hash

Algorithm). SHA authentication mode has a higher security than MD5 mode.

By default, the Authentication Mode is “none”.