Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1426
Views
30
Helpful
6
Replies

Trouble changing credentials

Go to solution
fmoghimi
Level 1
Level 1

‎01-26-2021 12:29 AM

Hello

I'm a junior network engineer and i'm having issues changing the snmp credentials on a 9000 series.

I'm trying to change SNMP credentials and get the following error.

I don't know what the problem is and can't seem to fix this.

snm.png

Does it expect a hash value for the auth and priv?

Any help is greatly appreciated.

Thanks in advance!

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Sergiu.Daniluk
VIP Alumni
VIP Alumni
In response to fmoghimi

‎01-26-2021 11:15 PM

Hi @fmoghimi 

 It's expected behavior.  Localized key simply means password encrypted and in HEX format. In the running config you will see the snmp-user password always with localized key format password.

The only thing you should be careful: when you configure a snmp user, automatically, NXOS will create a username with it which can be used for switch management. However, if you configure the snmp user using localized key format (like for example copy pasting the command on multiple switches), if there is already a username created for that snmp user, the command will not synchronize the password with it.

 

Stay safe,

Sergiu

 

 

View solution in original post

6 Replies 6

Go to solution
Javier Acuña
Spotlight
Spotlight

‎01-26-2021 03:51 AM

Saludos SNMP es un protocolo que ayuda al gestión de información entre dispositivos de redes, pero en muchos caso se ha visto que proporcionan una seguridad Debil, exite una mejora en la versión SNMP3 para el caso del Cisco 9000 te cargo un link done aparece el paso a paso para configurar el SNMP en el disposotivo.

Recurda calificar esta respuesta ya que esto motiva a seguir apoyando en la comunidad.

 

 

https://www.cisco.com/en/US/docs/storage/san_switches/mds9000/sw/rel_3_x/configuration/guides/cli_3_3_1/snmp.html#wp1351705

 

Saludos 

Go to solution
fmoghimi
Level 1
Level 1

‎01-26-2021 06:32 AM

Yes the thing is, the switch is asking for hexadecimal format even when I don't use the 'localizedkey' at the end of the command.

0 Helpful

Go to solution
Sergiu.Daniluk
VIP Alumni
VIP Alumni

‎01-26-2021 10:25 AM

Hi @fmoghimi 

It asks for a localized key, and implicitly for a HEX value, because most likely the user is already created with "localizedkey"

Use the "show run | grep <username>" command (so in your case " show run | grep admin256 ") and see if the user is already present.

 

Cheers,

Sergiu

Go to solution
fmoghimi
Level 1
Level 1
In response to Sergiu.Daniluk

‎01-26-2021 11:35 AM

Thank you, I tried that and I saw the user was created with localizedkey.

So I deleted the user and then I tried to make a new one without, and used the "show run | grep SIadmin" command and it also showed with localizedkey.

So it seems that it automatically creates the snmp user with localized key even if I dont tell it to.

Is this a bug or a setting that I need to turn off?

Thanks!

0 Helpful

Go to solution
Sergiu.Daniluk
VIP Alumni
VIP Alumni
In response to fmoghimi

‎01-26-2021 11:15 PM

Hi @fmoghimi 

 It's expected behavior.  Localized key simply means password encrypted and in HEX format. In the running config you will see the snmp-user password always with localized key format password.

The only thing you should be careful: when you configure a snmp user, automatically, NXOS will create a username with it which can be used for switch management. However, if you configure the snmp user using localized key format (like for example copy pasting the command on multiple switches), if there is already a username created for that snmp user, the command will not synchronize the password with it.

 

Stay safe,

Sergiu

 

 

Go to solution
fmoghimi
Level 1
Level 1
In response to Sergiu.Daniluk

‎01-27-2021 01:56 AM

Thank you!

I'll just delete the user and make it again with the new credentials.

Seems to work.

Thanks again.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents