Are the user's authentication password of an snmp agent (plaintext, 8 letters
long, for example: mypass12), and the user's secret authentication key the
same thing? In the RFC3414, section 7, I read that the shared secret authKey
(20 bytes long for SHA, 16 MD5) is used to calculate the digest of the message,
that later is sent with the message to the recipient in the field
authentication parameters (12 octects).
Example: - admin agent: windows 7 pc with WhatsUp Gold application installed.
Inside I have configured a snmpv3 credential Root and the authentication
password mypass12 and a auth protocol SHA.- monitored agent: cisco router,
which has snmpv3 configured with a user Root with SHA authentication password
mypass12.
Mypass12 is used by the authentication module to generate the message's digest
or instead the secret value is used (20 bytes for SHA, 16 bytes for MD5)? If
the secret auth key is used, what mechanism is used to obtain it and what is
used to do that (the username, the password or the username + password)?
I really need this help, thanks so much in advance.
From: marcelino_1101c...@hotmail.com
To: net-snmp-users@lists.sourceforge.net
Subject: About authentication process (HMAC method)
Date: Sat, 23 Nov 2013 02:20:30 -0500
I've been reading a lot about the authentication and privacy processes in
snmpv3 messages (RFC3414). I have a lot of questions but I'm going to begin
with the very basic ones, because those are the basis for the rest of concepts.
Is the password (8 bits long) related to some user and the secret auth key the
same thing? In the document it says that the secret auth key (20 bytes long) is
used to calculate the digest of the message, that is sent with the message to
the recipient in the field authentication parameters (12 octects).
For example, I have installed whatsup gold program and inside I have configured
a user Root with a password "mypass12", and a remote router is monitored with
that program, obviously, the router has configured a user Root with that
password too. So, I though that the password and the message were computed
together into a hash function to produce the digest message; but reading the
document, it seems that an auth key (perhaps a digest result of the user +
password) is the real value that is appended to the original message before the
hashing function produces the digest... Please can someone clarify this to me?
I'm confused.
For the moment, that is the question, with that clarified, I can have more
discernment to ask a little bit about this topic and have a very clear picture
of the authentication functionality of USM module. Thanks in advance
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
Net-snmp-users mailing list
Net-snmp-users@lists.sourceforge.net
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
Net-snmp-users mailing list
Net-snmp-users@lists.sourceforge.net
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users
