Manualshelf

User manual

ManualsBrandsProtium ManualsComputer equipment4050R
31323334353637383940
CONFIDENTIAL Protium Technologies, Inc. 4050-9901
Rev No: 05
5 GHz RF Modem 31-Jan-2007 38 of 84
This document and information contained herein is subject to the restrictions set forth on the title page
.
newuser The name of the new user to create
admin The name of the existing user from which to clone the new user. Any existing user may
be used as the basis for the new user. Note: the new user will initially have the same pass
phrases as the existing user.
5.4.1.2 Assigning Access Rights
Although a new user inherits the pass phrases of the cloned-from user, the new user does not inherit any access
rights. Unless access rights are explicitly assigned, the new user will have none and will not be able to do
anything useful.
The following command assigns the new user “newuser” to an existing group that gives the new user certain
access rights. The available group names are “admingroup” and “opergroup” for administrator and operator
access respectively.
snmpvacm [COMMON OPTIONS] createSec2Group 3 newuser groupname
The [COMMON OPTIONS] are those necessary to access SNMPv3 as described above.
The numeral “3” specified the USM security model.
5.4.1.3 Changing the Pass Phrase
When a new user is first created (cloned), the new user has the same pass phrases as the cloned-from user. The
pass phrases of the new user should be changed immediately. Note that is necessary to know the existing pass
phrase, i.e. the pass phrase of the cloned-from user, in order to change the pass phrase of the new user.
snmpusm
-v 3 -u newuser -l authPriv -a MD5 -A password –x DES –X password \
[-Ca][-Cx] passwd OLD-PASSPHRASE NEW-PASSPHRASE
This command will change the pass phrase of the user issuing the command. It is issued as the “newuser” using
the pass phrase of the cloned-from user (“password”). The “passwd” is the actual command to change the pass
phrase, all the parameters prior to that are to authenticate the command.
If the -Ca or -Cx options are specified, then only the authentication or privacy keys are changed. If these options
are not specified, then both the authentication and privacy keys are changed.
5.4.1.4 Committing Changes
After the user is created and access rights are assigned as described above, the user account will be active and
may be tested to ensure that everything was specified correctly. However, the user is not automatically saved to
non-volatile memory and will disappear if the system is powered off.
It is necessary to explicitly save the changes to non-volatile memory in order for them to remain after the system
is powered off. This may be done after the changes are verified to be correct, and perhaps after creating multiple
users.
Saving the user tables to non-volatile memory is done by simply writing “1” to a particular OID as in the
following example:
snmpset [COMMON OPTIONS] .1.3.6.1.4.1.2021.100.13.0 i 1