Vyatta NOS documentation

Learn how to install, configure, and operate Vyatta Network Operating System (Vyatta NOS), which helps to drive our virtual networking and physical platforms portfolio.

TSM configuration example

The example shows the following configurations for TSM:.
  • TSM user support and the file support.crt that holds the TSM certificate of this user
  • TSM user supportl2 and the file supportl2.crt that holds the TSM certificate of this user
    Note: The TSM user supportl2 is also configured as a USM user. See Defining the USM users
  • File snmpd.crt that holds the TSM certificate of the SNMP agent

To define the TSM users and specify the TSM certificates for the TSM users and an SNMP agent, perform the following steps in configuration mode.

Table 1. Defining the TSM Users and Specifying TSM Certificates for TSM Users and an SNMP Agent

Step

Command

Specify the name of the TSM user and TSM certificate of the user (either the certificate fingerprint or the file that holds the certificate).

vyatta@R1# set service snmp v3 user support tsm-key support.crt
vyatta@R1# set service snmp v3 user supportl2 tsm-key supportl2.crt

Specify the TSM certificate of the SNMP agent (either the certificate fingerprint or file that holds the certificate).

vyatta@R1# set service snmp v3 tsm local-key snmpd.crt

Commit the change.

vyatta@R1# commit

Verify the configuration.

vyatta@R1:~$ show snmp v3 user

SNMPv3 Users:

User                Auth Priv Mode Group
----                ---- ---- ---- -----
auditbot            md5       ro
netadmin            md5  des  ro
support                       ro
supportl2           md5  des  ro

Verify the configuration.

vyatta@R1:~$ show snmp v3 certificates
/etc/snmp/tls:

certs/snmpd.crt:
subject= /C=US/ST=CA/L=Davis/O=Net-SNMP/OU=Development/CN=raji/emailAddress=raji.mti@vyatta.com
SHA1 Fingerprint=DB:C8:BC:07:40:0D:A6:68:EF:7D:3E:CB:1B:22:52:E5:FA:FE:3D:D3

certs/support.crt:
subject= /C=US/ST=CA/L=Davis/O=Vyatta/OU=Development/CN=raji/emailAddress=raji.mti@vyatta.com
SHA1 Fingerprint=A9:E7:17:31:2A:84:96:DE:19:EE:2D:36:D8:FD:B1:97:F9:A3:FF:1B

certs/supportl2.crt:
subject= /C=US/ST=CA/L=Davis/O=Vyatta/OU=Development/CN=raji/emailAddress=raji.mti@vyatta.com
SHA1 Fingerprint=E9:4B:07:26:8E:65:C2:EC:25:37:76:15:9C:12:DC:EF:FA:FA:81:04