Where can I know about
a. The list of protocols supported in usmUserAuthProtocol- Specially support of SHA256, SHA384, SHA512 etc.
b. How does confd validate the SNMPv3 requests with the auth/priv keys saved in usmUserTable?
Regards,
As described in the SNMP Agent Chapter of the ConfD 7.5 User Guide, the following authentication algorithms are supported:
- SNMP-USER-BASED-SM-MIB::usmNoAuthProtocol No Authentication Protocol.
- SNMP-USER-BASED-SM-MIB::usmHMACMD5AuthProtocol The HMAC-MD5-96 Digest Authentication Protocol.
- SNMP-USER-BASED-SM-MIB::usmHMACSHAAuthProtocol The HMAC-SHA-96 Digest Authentication Protocol.
Refer to the ConfD AND HIGH SECURITY APPLICATIONS V2 at https://info.tail-f.com/hubfs/Whitepapers/Tail-f%20ConfDandHighSecurity%20rev%20F%202019-10-18.pdf for information on how to add support of the other SHA protocols.
Refer to the snmpa/5-simple-v3 example that comes with the ConfD premium distribution on how to generate the keys and populate an usmUserEntry.