Device Properties — v3 Security
Device Properties — v3 Security
The SNMP V3 Security settings are only available when Version 3 is selected as the SNMP version in Communications.
SNMPv3 Settings
Username: Specify the username that will be associated with the authorization and privacy keys. It is blank by default.
Note: If a device sending SNMP version 3 traps uses a different username, a second device with the user credentials for the trap receiver can be used to receive the traps. This means that each device in the server can only be associated with one set of user credentials. Users can have multiple devices with the same credentials; however, one set of credentials has no effect on another because user credentials are tied to the device. Context Name: Specify a contextual name for the SNMP message request. It is blank by default.
Security Level: Specify the security level. Options include NoAuthNoPriv, AuthNoPriv, and AuthPriv. The default setting is NoAuthNoPriv. Descriptions of the options are as follows:
• NoAuthNoPriv: This level includes neither authentication nor encryption.
• AuthNoPriv: This level includes authentication, but not encryption.
• AuthPriv: This level includes both authentication and encryption. Note: When the Security Level is set to AuthNoPriv or AuthPriv, the following properties will be available for configuration.
Note: When the Security Level is set to AuthNoPriv or AuthPriv, the following properties will be available for configuration.Authentication
Authentication Style: Specify the style of authentication. Options include HMAC-MD5 and HMAC-SHA1. The default setting is MHMAC-MD5.
Passphrase: This property generates a localized key that is used to authenticate the SNMP data frames.
Passphrase (Verify): This property is used to verify the previously entered passphrase.
Privacy
Encryption Style: Specify the style of encryption. Options include DES, AES 128, AES 192, and AES 256. The default setting is DES. Note: AES 192 and AES 256 are non-standard extensions of the SNMP User Security Model (USM) and are not supported by all SNMP V3 Agents.
Note: AES 192 and AES 256 are non-standard extensions of the SNMP User Security Model (USM) and are not supported by all SNMP V3 Agents.
For more information on the key expansion algorithms for AES 192 and AES 256, refer to the SNMP V3 Working Group's Internet-Draft Extension to the User-Based Security Model (USM) to Support Triple-DES EDE in "Outside" CBC Mode. Passphrase: This property generates a localized key that is used to encrypt/decrypt the data in an SNMP frame.
Passphrase (Verify): This property is used to verify the previously entered passphrase.