Configuring the SNMP Protocol

This operation enables you to configure SNMP. In this case, you can query system information as well as receive alarms generated by the system.

Context

Only super administrators and administrators can configure the SNMP protocol.

Procedure

  1. Choose Settings > SNMP Management > SNMP Protocol.

  2. Configure the SNMP protocol.

    Set basic SNMP protocol information. Table 1 describes related parameters.
    Table 1 SNMP protocol parameters

    Parameter

    Description

    Port

    Indicates the SNMP port number. The default value is 161 and cannot be modified.

    Context Name

    Indicates the name of a context engine. This parameter must be set to the context name specified on the network element.

    SNMPv1 and SNMPv2c

    If this option is enabled, the system uses SNMPv1 and SNMPv2c.

    NOTE:

    Enabling SNMPv1 and SNMPv2c causes security risks. You are advised to disable this option.

    Community

    Click Modify to change the read and write communities.

    NOTE:

    Community is required only when SNMPv1 and SNMPv2c is enabled. The third-party network management tool uses this community to connect to the SNMP service of the storage system. To ensure the security of SNMPv1 and SNMPv2c, you are advised to periodically maintain the SNMP community.

    Read Community

    Indicates the read community used for reading device information.

    NOTE:

    This parameter can be set after you click Modify.

    Confirm Read Community

    Confirms the read community.

    Write Community

    Indicates the write community used for reading device information or configuring devices.

    NOTE:

    This parameter can be set after you click Modify.

    Confirm Write Community

    Confirms the write community.

  3. Manage USM users.

    • Add a USM user.
      1. Click Add.

        The Add USM User page is displayed on the right.

      2. Set USM user information. Table 2 describes related parameters.
        Table 2 USM user parameters

        Parameter

        Description

        Username

        Indicates the USM user name.

        NOTE:
        • The name must be unique.
        • The name contains 4 to 32 characters.
        • The name can contain only letters, digits, underscores (_), and hyphens (-), and must start with a letter.

        User Permission

        Indicates the permission of the USM user. Possible options are Read and write and Read-only.

        User Authentication

        Indicates whether to enable user authentication. Security risks arise if user authentication is disabled. You are advised to enable user authentication and select the SHA512 authentication algorithm.

        Authentication Algorithm

        Indicates the algorithm used to authenticate the USM user. Possible options are MD5, SHA, SHA224, SHA256, SHA384, and SHA512.

        NOTE:

        The MD5, SHA, and SHA224 authentication algorithms have security risks. You are advised to select other algorithms.

        Authentication Password

        Indicates the authentication password of the USM user. The following requirements must be met:

        • The password length varies with the SNMP security policy.
        • The password must contain at least three types of the following characters: uppercase letters, lowercase letters, digits, and special characters.
        • The password must be different from the user name or the reverse of the user name.
        • The password does not contain repeated identical strings. You are advised to set a password with higher security based on the password complexity requirements.

        Confirm Authentication Password

        Confirms the authentication password of the USM user.

        Data Encryption

        Indicates whether to enable data encryption. Enabling data encryption improves security. You are advised to enable it.

        Encryption Algorithm

        Indicates the encryption protocol used by the USM user. Possible options are DES, 3DES, AES128, AES192, and AES256.

        NOTE:

        The DES and 3DES encryption algorithms have security risks. You are advised to select other algorithms.

        Data Encryption Password

        Indicates the data encryption password used by the USM user. The following requirements must be met:

        • The password length varies with the SNMP security policy.
        • The password must contain at least three types of the following characters: uppercase letters, lowercase letters, digits, and special characters.
        • The password must be different from the user name or the reverse of the user name.
        • The password must be different from the authentication password.
        • The password does not contain repeated identical strings. You are advised to set a password with higher security based on the password complexity requirements.

        Confirm Data Encryption Password

        Confirms the data encryption password used by the USM user.
      3. Click OK.
    • Modify the USM user information.
      1. Select the desired user and click Modify.

        You can also click More on the right of the desired user and select Modify.

      2. The Modify USM User page is displayed on the right. You can modify the USM user information as required. For details about the parameters, see Table 2.
    • Delete a USM user.
      1. Select the desired user and click Delete.

        You can also click More on the right of the desired user and select Delete.

      2. Confirm your operation as prompted.

  4. Click Save.

Parent topic: Managing the SNMP Service