Difference between revisions of "Simple Network Management Protocol"
(→SNMP) |
|||
| Line 3: | Line 3: | ||
SNMP is among the blackest of magical arts. | SNMP is among the blackest of magical arts. | ||
=== Create | == v3 User Management == | ||
net-snmp-create-v3-user -a SHA-512 -A | |||
=== Create === | |||
<code>net-snmp-create-v3-user -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> <firstuser></code><br> | |||
<code>net-snmp-create-v3-user -a SHA-512 -A 12345678 -x AES128 -X 12345678 default</code><br> | |||
<br> | |||
=== Clone === | |||
<code>snmpusm -v3 -l priv -u <firstuser> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> localhost create <template></code><br> | |||
<code>snmpusm -v3 -l priv -u default -x SHA-512 -X 12345678 -a AES128 -A 12345678 localhost create template</code><br> | |||
<br> | |||
<code>snmpusm -v3 -l priv -u <template> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> localhost create <newuser> <clonefrom></code><br> | |||
<code>snmpusm -v3 -l priv -u template -x SHA-512 -X 12345678 -a AES128 -A 12345678 localhost create newuser template</code><br> | |||
<br> | |||
=== Test === | |||
Add new users to /etc/snmp/snmpd.conf:<br> | |||
<code>rouser <username></code><br> | |||
<code>rwuser <username></code><br> | |||
<code>snmpstatus -v3 -l priv -u <username> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> localhost</code><br> | |||
<br> | |||
=== Change Passwords === | |||
Auth:<br> | |||
<code>snmpusm -v3 -l priv -u <user> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> -Ca localhost passwd <oldauthpass> <newauthpass> <user></code><br> | |||
Encr:<br> | |||
<code>snmpusm -v3 -l priv -u <user> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> -Cx localhost passwd <oldencrpass> <newencrpass> <user></code><br> | |||
<br> | |||
=== Delete === | |||
<code>snmpusm [auth options] localhost delete <targetuser></code><br> | |||
<br> | |||
=== Changes are not committed until clean restart or SIGHUP! === | |||
Revision as of 19:29, 10 October 2024
SNMP
SNMP is among the blackest of magical arts.
v3 User Management
Create
net-snmp-create-v3-user -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> <firstuser>
net-snmp-create-v3-user -a SHA-512 -A 12345678 -x AES128 -X 12345678 default
Clone
snmpusm -v3 -l priv -u <firstuser> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> localhost create <template>
snmpusm -v3 -l priv -u default -x SHA-512 -X 12345678 -a AES128 -A 12345678 localhost create template
snmpusm -v3 -l priv -u <template> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> localhost create <newuser> <clonefrom>
snmpusm -v3 -l priv -u template -x SHA-512 -X 12345678 -a AES128 -A 12345678 localhost create newuser template
Test
Add new users to /etc/snmp/snmpd.conf:
rouser <username>
rwuser <username>
snmpstatus -v3 -l priv -u <username> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> localhost
Change Passwords
Auth:
snmpusm -v3 -l priv -u <user> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> -Ca localhost passwd <oldauthpass> <newauthpass> <user>
Encr:
snmpusm -v3 -l priv -u <user> -a <authmode> -A <authpass> -x <encrmode> -X <encrpass> -Cx localhost passwd <oldencrpass> <newencrpass> <user>
Delete
snmpusm [auth options] localhost delete <targetuser>