snmp-server user

Last Updated : Jul 02, 2019 |

Configures settings for an SNMPv3 user. If the user does not exist, it is created. Use no snmp-server user to remove the user from specific groups. If no groups are specified, the user is removed from all groups. After entering the command, the administrator can enter and confirm the authentication and privacy passwords.

Important:

Only SNMPv3 users are allowed when FIPS mode is enabled.

Syntax

snmp-server user username groupname {{v1|v2c}|{v3 [auth {md5|sha} [priv {des56|aes128}]}}

no snmp-server user username [groupname {v1|v2c|v3}]]

Parameters

Parameter

Description

Possible Values

Default Value

username

A character string specifying the username of this user

A string of up to 32 characters

groupname

A character string specifying the groupname this user is associated with

A string of up to 32 characters

v1

Keyword specifying that the user is authorized for SNMP v1 functionality in the specified group

v2c

Keyword specifying that the user is authorized for SNMP v2c functionality in the specified group

v3

Keyword specifying that the user is authorized for SNMP v3 functionality in the specified group

md5

Keyword specifying to use the MAC-MD5 authentication protocol

sha

Keyword specifying to use the HMAC-SHA authentication protocol

des56

Keyword specifying the DES 56-bit encryption

aes128

Keyword specifying to use the AES-128 authentication protocol

User level

admin

Context

general

Example

To configure settings for an SNMPv3 user with username john and groupname L2Group, authorized for SNMP v3 functionality, using the MAC-MD5-96 authentication protocol, with authentication password and privacy password:

  • Enter authentication password: ********

  • Confirm authentication password: ********

  • Enter privacy password: *********

  • Confirm privacy password: *********

  • Done!

Gxxx-001(super)# snmp-server user john L2Group v3 auth md5 ******** priv des56 
uktanatan