SNMP User Configuration on the WAP551 and WAP561 Access Points

Objective

The User based security model in SNMPv3 allows the administrator to separate devices into user groups, assign them various security credentials, and thus control the authorization of management operation. The user configuration page on WAP551 and WAP561 access points allows you to define up to eight new users. This article explains how to configure Simple Network Management Protocol (SNMP) user configuration on WAP551 and WAP561 Access Points.

Applicable Devices

• WAP551
• WAP561

 Software Version

• 1.0.4.2

SNMP User Configuration

Step 1. Log in to the web configuration utility, choose SNMP > Users. The Users page opens:

Step 2. Click Add to add a new user.

Step 3. Check the check box of the new user and click Edit.

Step 4. Enter the user name of the new SNMP user in the User Name field.

Step 5. Choose a group for the user from the Group drop-down list. The Read Only (RO) group allows a user to only view the configuration. The Read and Write (RW) group allows a user to view the configuration and also make the necessary changes to the configuration. You may also have the option to choose other groups if they have been created in the Group page. To see how groups are created, please refer to the article Configure Simple Network Management Protocol (SNMP) Groups on the WAP551 and WAP561 Access Points. 

Step 6. Choose the authentication type for the user from the Authentication Type drop-down list. If you want to use a password to strengthen authentication, choose MD5. MD5 is a hash function that produces a 128 bit hash value for the password. Otherwise choose None. Skip Step 7 if you have chosen None.

Step 7. Enter the associated authentication pass phrase for the user in the Authentication Pass Phrase field if you chose MD5 in Step 6. This is the SNMP password that has to be configured to authenticate the devices in order for them to connect with each other. The pass phrase has to match on both the devices.

Step 8. The access point provides the encryption of data with the DES encryption algorithm. Choose DES from the Encryption Type drop-down list to provide encryption in the network if you wish to use DES authentication on SNMPv3 requests, otherwise choose None. Skip Step 9 if you have chosen None.

Step 9. If you have chosen DES in the previous step, enter the associated encryption pass phrase for the user in the Encryption Pass Phrase field. This is used to encrypt the data sent to the other devices in the network. This password is also used to decrypt the data on the other end. The pass phrase has to match in the communicating devices.

Step 10. Click Save to save this user.

Step 11. (Optional) Click Add and repeat Steps 2 through 8 for each additional user as needed. 

Step 11. (Optional) To edit a user, check the check box of the appropriate user and then click Edit, edit the desired fields, and click Save.

Step 12. (Optional) The SNMPv3 Users section displays the current users configured on the Access Point. To remove a user from the list, check the check box of the user to be removed, click Delete, and click Save.