Manualshelf

User's Guide Part 1

ManualsBrandsCambium Networks ManualsElectronicsWireless Ethernet Bridge
81828384858687888990
System management Chapter 1 Product description
phn-0896_009v003
1-44
UNDER DEVELOPMENT
Feb 2010
Name templateMD5_AES templateSHA_AES
SecurityName templateMD5_AES templateSHA_AES
AuthProtocol usmHMACMD5AuthProtocol usmHMACSHAAuthProtocol
PrivProtocol usmAESPrivProtocol usmAESPrivProtocol
StorageType nonVolatile nonVolatile
PTP 600 creates the initial user and template users with localised authentication and
privacy keys derived from the passphrase string “123456789”. Authentication keys for
the templates users are fixed and cannot be changed.
Any or all of the template users can be deleted.
The default user
initial will have read/write access to the whole of the MIB. This is
described in further detail in View-based access control model on pa
ge 1-44 below.
The template users have no access to the MIB in the default configuration.
User
initial will normally be used to create one or more additional users with secret
authentication and privacy keys, and with appropriate access to the whole of the MIB
or to particular views of the MIB according to the operator’s security policy. New
users must be created by cloning template users. The user
initial may then be
deleted to prevent access using the well-known user name and keys. Alternatively, the
keys associated with
initial may be set to some new secret value.
View-based access control model
PTP 600 supports the SNMPv3 view-based access control model (VACM) with a single
context. The context name is the empty string. The context table is read-only, and
cannot be modified by users. The default user
initial is created with a view of the
entire MIB, requiring authentication for SET operations. There is no access for
template users.
NOTE
VACM grants access for requests sent with more than the configured
security level.
The default user
initial is assigned to VACM group initial in the
vacmSecurityToGroupTable table. The template users are not assigned to a group.
PTP 600 creates default view trees and access as shown in Table 1-9 and Table 1-10.
Table 1-9 Default view trees
Object Entry 1 Entry 2