D-Link DGS-6600-48TS Configuration Guide - Page 529
User-based Security Model, View-based Access Control Model, SNMP Configuring Commands
View all D-Link DGS-6600-48TS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 529 highlights
Volume 10-Network Management / Chapter 53-Simple Network Management Protocol (SNMP) Figure 8-1 illustrates the communications relationship between the SNMP agent and manager. SNMP Configuring Commands A manager can send the agent requests to get and set MIB values. The agent can respond to these requests. User-based Security Model SNMP v3 allows the administrator to define the users that are using different security models to manage the device. If the security model is SNMP v1 or SNMP v2c, no authentication and encryption will be performed. If the security model is SNMP v3, the security level, whether authentication or encryption are being used, must be specified. There are three alternative security levels available; noAuthNoPriv, authNoPriv, and authPriv. The alternative security levels are described in the following table: Security Level noAuthNoPriv authNoPriv authPriv Authentication Encryption User name is used for authentication No. check. The checksum based on the No. HMAC-MD5 or HMAC-SHA algorithms using the specified password are computed over the packet for authentication checks. The checksum based on the HMAC-MD5 or HMAC-SHA algorithms using the specified password are computed over the packet for authentication checks. The packet is encrypted based on DES 56-bit, using the specified password. Table 53-1 Alternative SNMP v3 Security Models View-based Access Control Model View-based Access Control Model (VACM) is a feature that controls user's access to MIB objects in terms of MIB view records. Each MIB view record defines a set of MIB sub-trees. VACM allows the administrator to specify each user a MIB view for read-only access, a MIB view for write access, and another MIB view for notification access. Therefore, if a user attempts to read objects that are out of the scope of the read-only MIB view or write objects that are out of the scope of the write MIB view, the operation will fail. As for the notification view, the system will not be able to send traps with binding variables that are out of the scope of the notification MIB view of the trap receiver. SNMP Configuring Commands The following topics are included in this sub-section: • Setting up Basic SNMP Server Information DGS-6600 Configuration Guide 529