D-Link DWS-1008 User Manual
Command Examples
The following command creates USM user
snmpmgr1
, associated with the local SNMP engine ID. This
user can send traps to notification receivers.
DWS-1008#
set snmp usm snmpmgr1 snmp-engine-id local
success: change accepted.
The following command creates USM user
securesnmpmgr1
, which uses SHA authentication and 3DES
encryption with passphrases. This user can send informs to the notification receiver that has engine ID
192.168.40.2.
DWS-1008#
set snmp usm securesnmpmgr1 snmp-engine-id ip 192.168.40.2
auth-type sha auth-pass-phrase myauthpword encrypt-type 3des
encrypt-pass-phrase mycryptpword
success: change accepted.
Setting SNMP Security
By default, MSS allows nonsecure SNMP message exchanges. You can configure MSS to require
secure SNMP exchanges instead.
Depending on the level of security you want MSS to enforce, you can require authentication of message
exchanges only, or of message exchanges and notifications. You also can require encryption in addition
to authentication.
SNMPv1 and SNMPv2c do not support authentication or encryption. If you plan to use SNMPv1 or
SNMPv2c, leave the minimum level of SNMP security set to unsecured.
To set the minimum level of security MSS requires for SNMP, use the following command:
set snmp security {unsecured | authenticated | encrypted | auth-req-unsec-notify}
You can specify one of the following options:
unsecured - SNMP message exchanges are not secure. This is the default, and is the only value
supported for SNMPv1 and SNMPv2c. (This security level is the same as the noAuthNoPriv level
described in SNMPv3 RFCs.)
authenticated - SNMP message exchanges are authenticated but are not encrypted. (This
security level is the same as the authNoPriv level described in SNMPv3 RFCs.)
encrypted - SNMP message exchanges are authenticated and encrypted. (This security level is
the same as the authPriv level described in SNMPv3 RFCs.)
auth-req-unsec-notify - SNMP message exchanges are authenticated but are not encrypted,
and notifications are neither authenticated nor encrypted.
Summary of Contents for DWS-1008
Page 1: ......