ConfD User Community

SNMP USM auth/priv protocol support in confd

Where can I know about
a. The list of protocols supported in usmUserAuthProtocol- Specially support of SHA256, SHA384, SHA512 etc.
b. How does confd validate the SNMPv3 requests with the auth/priv keys saved in usmUserTable?

Regards,

As described in the SNMP Agent Chapter of the ConfD 7.5 User Guide, the following authentication algorithms are supported:

  • SNMP-USER-BASED-SM-MIB::usmNoAuthProtocol No Authentication Protocol.
  • SNMP-USER-BASED-SM-MIB::usmHMACMD5AuthProtocol The HMAC-MD5-96 Digest Authentication Protocol.
  • SNMP-USER-BASED-SM-MIB::usmHMACSHAAuthProtocol The HMAC-SHA-96 Digest Authentication Protocol.

Refer to the ConfD AND HIGH SECURITY APPLICATIONS V2 at https://info.tail-f.com/hubfs/Whitepapers/Tail-f%20ConfDandHighSecurity%20rev%20F%202019-10-18.pdf for information on how to add support of the other SHA protocols.

Refer to the snmpa/5-simple-v3 example that comes with the ConfD premium distribution on how to generate the keys and populate an usmUserEntry.