No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Administrator Guide 15

OceanStor 5300 V3, 5500 V3, 5600 V3, 5800 V3, and 6800 V3 Storage System V300R003

Routine maintenance activities are the most common activities for the storage device, including powering on or off the storage device, managing users, modifying basic parameters of the storage device, and managing hardware components. This document applies to the system administrators who are responsible for carrying out routine maintenance activities, monitoring the storage device, and rectifying common device faults.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Managing USM Users

Managing USM Users

When transferring data using the SNMPv3 protocol, you can authenticate SNMPv3 protocol and encrypt data by setting USM users.

Viewing a USM user

This section describes how to view information about an added USM user.

Procedure

  1. Log in to DeviceManager.
  2. Choose Settings > Alarm Settings > USM User Management.
  3. View information about a USM user. For related parameters, see Table 3-16.

    Table 3-16  Description of USM users

    Parameter

    Description

    Username

    Name of a USM user

    Permission

    Permissions of a USM user, including Read-write and Read-only

    Authentication Protocol

    Authentication protocols of a USM user including MD5 and SHA

    Encryption Protocol

    Encryption protocols of a USM user including DES, AES, and 3DES.

Adding a USM User

This operation enables you to add a USM user.

Procedure

  1. Log in to DeviceManager.
  2. Choose Settings > Alarm Settings > USM User Management.
  3. Click Add.

    The Add USM User dialog box is displayed.

  4. Set USM parameters. For related parameters, see Table 3-17.

    Table 3-17  USM User parameters

    Parameter

    Description

    Value

    Username

    Name of a USM user

    [Rules]

    Username is a 4 to 32 character string, can contain only letters, digits, underscores (_), and hyphens (-), and must start with a letter.

    [Example]

    usm001

    User authentication

    Whether to enable user authentication

    [Default Value]

    Enable

    Authentication Protocol

    Authentication protocols of a USM user including MD5 and SHA

    NOTE:

    SHA is more secure than MD5. For security purposes, you are advised to select SHA for authentication.

    [Default Value]

    SHA

    Authentication Password

    Authentication password of a USM user

    [Default Rules]

    The password must meet the following complexity requirements:
    • Contains 6 to 32 characters.
    • Must contain special characters. Special characters include !"#$%&\'()*+,-./:;<=>?@[]^`{_|}~ and spaces.
    • Must contain two uppercase letters, lowercase letters, and digits.
    • Cannot be the same as the username or the username written backwards.
    NOTE:
    You can modify the default rule through CLI command change snmp safe_strategy.

    [Example]

    usmuser@123

    Confirm Authentication Password

    Confirming authentication password of a USM user

    [Example]

    usmuser@123

    Data encryption

    Whether to enable data encryption

    [Default Value]

    Enable

    Encryption Protocol

    Encryption protocols of a USM user including DES, AES, and 3DES.
    NOTE:
    The security ranking of three protocols is: AES> 3DES> DES, and you are suggested to use the AES encryption protocol for more security.

    [Default Value]

    AES

    Data encryption password

    Password used by a USM user to encrypt data

    [Default Rules]

    The password must meet the following complexity requirements:
    • Contains 6 to 32 characters.
    • Must contain special characters. Special characters include !"#$%&\'()*+,-./:;<=>?@[]^`{_|}~ and spaces.
    • Must contain two uppercase letters, lowercase letters, and digits.
    • Cannot be the same as the username or the username written backwards.
    NOTE:
    You can modify the default rule through CLI command change snmp safe_strategy.

    [Example]

    dataencrypt@123

    Confirm data encryption password

    Confirming that USM users used data encryption password

    [Example]

    dataencrypt@123

    User level

    User level of a USM user, including Read-write and Read-only.

    [Default Value]

    Read-write

  5. Click OK.
  6. Click Save.

    The Execution Result dialog box is displayed indicating that the operation succeeded.

  7. Click Close.

Modifying a USM User

This section describes how to modify USM user information.

Procedure

  1. Log in to DeviceManager.
  2. Choose Settings > Alarm Settings > USM User Management.
  3. Choose the USM user you want to modify and click Modify.

    The Modify USM User dialog box is displayed.

  4. Modify USM parameters. Table 3-18 describes the related parameters.

    Table 3-18  USM user parameters

    Parameter

    Description

    Value

    User authentication

    Whether to enable user authentication

    [Example]

    Enable

    Authentication Protocol

    Authentication protocols of a USM user including MD5 and SHA

    [Example]

    MD5

    Authentication Password

    Authentication password of a USM user

    [Rules]

    An authentication password is a 6 to 32 character string, and must contain at least two of the following character types: upper-case letters, lower-case letters, digits, and special characters. The password cannot be the same as the username or the username written backwards.

    [Example]

    usmuser@123

    Confirm Authentication Password

    Confirming authentication password of a USM user

    [Example]

    usmuser@123

    Data encryption

    Whether to enable data encryption

    [Example]

    Enable

    Encryption Protocol

    Encryption protocols of a USM user including DES, AES, and 3DES.
    NOTE:
    The security ranking of these three protocols is: AES> 3DES> DES. Use the AES encryption protocol for maximum security.

    [Example]

    AES

    Data encryption password

    Password used by a USM user to encrypt data

    [Rules]

    The data encryption password is a 6 to 32 character string, and must contain at least two types of uppercase letters, lowercase letters, digits, and special characters. The password must be different from the username or the username typed backwards.

    [Example]

    dataencrypt@123

    Confirm data encryption password

    Confirming the password used for data encryption

    [Example]

    dataencrypt@123

    User level

    Levels of a USM users, including Read-write and Read-only.

    [Example]

    Read-write

  5. Click OK.
  6. Click Save.

    The Execution Result dialog box is displayed indicating that the operation succeeded.

  7. Click Close.

Removing a USM User

This operation enables you to remove an unnecessary USM user.

Procedure

  1. Log in to DeviceManager.
  2. Choose Settings > Alarm Settings > USM User Management.
  3. Select the USM user that you want to remove and click Remove.
  4. Click Save.

    The Execution Result dialog box is displayed indicating that the operation succeeded.

  5. Click Close.
Translation
Download
Updated: 2019-04-17

Document ID: EDOC1000084191

Views: 85471

Downloads: 2297

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next