Comtech EF Data SLM-5650A User Manual

SLM-5650A Satellite Modem

Revision 8

Ethernet-Based Management

MN-SLM5650A

6–7

6.4.4 SNMPv3 (NP Interface Only)

When the optional Network Processor (NP)

Interface is installed, the user may activate the

SNMPv3 option by changing the interface’s IP

Interface Security Mode security level setting to

"High". While in this mode, SNMPv1 and

SNMPv2c will not function. Instead of using the

public and private community strings identified

in Chapter Sect. 6.4.2, a username and

password are defined and used to authenticate

and encrypt SNMP communication to and from

the modem.

Four parameters are available to configure SNMPv3 on the NP Interface’s Admin | SNMP Web

page:

•

Engine ID – a 5– to 32–character length hex number that is used to encrypt/decrypt the

SNMP data. The default Engine ID is 0000000c000000007f000001.

•

User Name – A user-defined string used to authenticate SNMP communications (the

default is comtech).

•

Password – A user-defined string used to authenticate SNMP communications ( the

default is comtech).

•

Security Model – Using the drop-down menu, the user has a choice between two

security models to authenticate communications: md5 and sha (the default is md5).

Note the following:

1. Although the customer can choose the security model used, there is no choice on the

encryption method – data is always encrypted using DESC as a scheme.

2. The User Name and Password defined here are the ones used in an SNMP client, and are

separate from the user name/password used to access the SLM-5650A HTTP/HTTPS/Telnet

interfaces.

3. It is not necessary to change the Engine ID to have an acceptable level of encryption.

However, it should be noted that changing the Engine ID does affect the generation of

authentication keys.