Hi,
I’ve been asked to look at supporting SNMPv3 with HMAC_SHA256 authentication in
something at work. To test it, I’m using net-snmp v5.8 to receive the SNMP
traps/informs, but so far, I can’t get anything other than HMAC_SHA1 to work.
Is there a way to create users with this?
I have installed net-snmp on a Red Hat server using yum (i.e. not compiled from
source). The application that I’ve been roped into uses pysnmp, which as far as
I can tell only supports USM, so using DTLS is out of the question. When I try
setting pysnmp to use HMAC_ SHA256, the error it reports is “Wrong SNMP PDU
digest”, and the snmptrapd logs report “Authentication failed for user1”. I’ve
attached the configuration file I’m using; for the sake of testing, I’m
hard-coding in a user with authentication “SHA-256” and encryption AES.
If there’s anything missing, let me know. I am very much a noob at this 😊
Regards,
Philip Rowlands
disableAuthorization yes
snmpTrapdAddr udp:162
createUser user1 "SHA-256" <password> AES <password>
authUser log user1
authCommunity log user1
authCommunity log public
format1 \n%V\n %02.2h:%02.2j:%02.2k %y/%02.2m/%02.2l TRAP %A\nPDU INFO:\n
receivedfrom: %a\n agent hostname: %A\n communit$
format2 \n%V\n %02.2h:%02.2j:%02.2k %y/%02.2m/%02.2l TRAP %B\nPDU INFO:\n
receivedfrom: %b\n community: %P\nVARBINDS:\$
_______________________________________________
Net-snmp-users mailing list
Net-snmp-users@lists.sourceforge.net
Please see the following page to unsubscribe or change other options:
https://lists.sourceforge.net/lists/listinfo/net-snmp-users
