Snmp management station list, 100 snmpv3 username list section components – HP Secure Key Manager User Manual

Table 100 SNMPv3 Username List section components

Component

Description

Username

The username defines from whom the SKM accepts SNMP messages, and it is one

of many elements used to create a key that is shared between the NMS and agent.

Usernames can contain only alphanumeric characters and punctuation marks and they

cannot contain non–printing characters and white spaces.

Security Level

You have three choices for the security level

•

auth, priv – authorization and privacy. This option takes full advantage of

the enhanced security features in SNMPv3. This option means that the SKM

authenticates the sender of the SNMP message; in addition, all data exchanged

between the HP agent and the NMS is encrypted using the DES algorithm and

a secret key.

•

auth, no priv – authorization, no privacy. This option allows you to guarantee

that the SKM only accepts SNMP messages from trusted sources, but the data

is not encrypted.

•

no auth, no priv – no authorization, no privacy. This option is similar to the security

offered in SNMPv1/v2. No encryption is performed, and the authenticity of the

sender of the SNMP message is not guaranteed.

Auth Protocol

You can choose from MD5 and SHA.

Auth Password

This password is used to create the secret key that performs the MAC operation on the

data that is shared between the HP agent and the management station. The auth

password must be between 8 and 256 characters.

Priv Password

This password is used to create the secret key that performs the encrypt and decrypt

operations on the data shared between the agent and the NMS. The priv password

must be between 8 and 256 characters.

NOTE:

If you select the auth, priv security option and you enter a valid value in the Auth

Password field, and leave the Priv Password field blank, the value you entered in

the Auth Password field is used for the Priv Password as well.

MIB Access

•

Enterprise: Contains caching, SSL, CPU utilization, and operational statistics and

defines traps.

•

Standard: Also known as MIB–II, the standard MIB contains information on network

interface utilization, system health, and statistics for IP, TCP, ICMP, UDP, and SNMP.

Edit

Click Edit to change any of the values associated with a username, such as the security

level, the authorization protocol, the passwords, or the MIB access for the username.

Add

Click Add to add a username to the SKM.

Delete

Click the Delete to remove a username from the SKM.

SNMP Management Station List

The SNMP Management Station List provides a view of all the management stations configured on

the SKM. You can think of the SNMP Management Station List as the place where you specify the

management stations where traps should be sent from the HP SNMP agent.

Figure 121 Viewing the SNMP Management Station List section

The following table describes the components of the SNMP Management Station List section.

Secure Key Manager

195