Query the SNMP community name configured on an S series switch

14

For S series switches (except S1700), you can use the display snmp-agent community command to display the configured community name on the current agent when configuring a managed entity.
SNMPv1 and SNMPv2c support community names, but SNMPv3 does not support.

Other related questions:
How do I configure SNMP community name on S series switches
The snmp-agent community { read | write } community-name command can be used to configure community names on S series switches (except S1700). read indicates the read permission and write indicates the write permission. If the same community name is configured, the latter configuration overwrites the earlier community name. The following provides an example: [HUAWEI] snmp-agent community write community001 Community complexity check needs to be performed when SNMP community names are configured on S series switches (except S1700) in versions after V200R002. Community complexity requirements are as follows: 1. The community name must contain at least eight characters. The set password min-length command sets the value of minimum password length which must equal to or be larger than 8. 2. The community must be a combination of at least two of the following: uppercase letters A to Z, lowercase letters a to z, digits, and special characters (excluding question masks). You can use the snmp-agent community complexity-check disable command to disable community name complexity check on a switch. After community name complexity check is disabled, the value of community name length is an integer in the range 1 to 32. The configuration method is as follows: [HUAWEI] snmp-agent community complexity-check disable Note: If a configured community name does not meet complexity requirements, the system is prone to attacks including password cracking from malicious users, affecting system security. Therefore, it is recommended that community name complexity check be enabled.

How to configure an SNMP community name on a CE series switch
CE switches support SNMPv1, SNMPv2c, and SNMPv3, while only SNMPv1 and SNMPv2c support community name configuration. Run the snmp-agent community { read | write } { community-name | cipher community-name } [ alias alias-name ] command in the system view to set an SNMP community name. For example, set the read/write community name for SNMPv2c to Private123. system-view [~HUAWEI] snmp-agent sys-info version v2c [*HUAWEI] snmp-agent community write Private123 [*HUAWEI] commit

How do I delete the community name in ciphertext on an S series switch
S series switches (except S1700) support deleting community names in ciphertext. The method is as follows: Step 1: Query the community name in ciphertext. [HUAWEI] display snmp-agent community Community name:%^%#zvy$/Fpfs9pqOl'}(1"LgiAKQY\4DVfs~r'w-!s~wDe&LlFsJ4VUjk")m7<.IT!FQ5Bc%27w3BJWjMb7%^%# Group name:%^%#zvy$/Fpfs9pqOl'}(1"LgiAKQY\4DVfs~r'w-!s~wDe&LlFsJ4VUjk")m7<.IT!FQ5Bc%27w3BJWjMb7%^%# Storage-type: nonVolatile Step 2: Delete the community name in ciphertext. [HUAWEI] undo snmp-agent community %^%#zvy$/Fpfs9pqOl'}(1"LgiAKQY\4DVfs~r'w-!s~wDe&LlFsJ4VUjk")m7<.IT!FQ5Bc%27w3BJWjMb7%^%#

How do S series switches display passwords configured through SNMP in plain text
V100R006 of S series switches (except S1700) displays SNMP community names in configuration in plain text. To improve security, later versions display information including community names, encryption passwords, and authentication passwords configured through SNMP in ciphertext. The information cannot be displayed in plain text through commands or other methods.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top