Wireshark uses this table to verify authentication and to decrypt encrypted
SNMPv3 packets.
This table is a user table, as described in Section 11.7, “User Accessible Tables”, with the
following fields:
- Engine ID
-
If given this entry will be used only for packets whose engine id is this. This
field takes a hexadecimal string in the form 0102030405.
- Username
-
This is the userName. When a single user has more than one password for
different SNMP-engines the first entry to match both is taken, if you need a
catch all engine-id (empty) that entry should be the last one.
- Authentication model
-
Which auth model to use (either “MD5”, “SHA1”, "SHA2-224", "SHA2-256", "SHA2-384" or "SHA2-512").
- Password
-
The authentication password. Use \xDD for unprintable characters. A
hexadecimal password must be entered as a sequence of \xDD characters. For
example, the hex password 010203040506 must be entered as
\x01\x02\x03\x04\x05\x06. The \ character must be treated as an unprintable
character, i.e., it must be entered as \x5C or \x5c.
- Privacy protocol
-
Which encryption algorithm to use (either “DES”, “AES”, "AES192" or "AES256").
- Privacy password
-
The privacy password. Use \xDD for unprintable characters. A hexadecimal
password must be entered as a sequence of \xDD characters. For example, the hex
password 010203040506 must be entered as \x01\x02\x03\x04\x05\x06. The \
character must be treated as an unprintable character, i.e., it must be entered
as \x5C or \x5c.
- Key expansion method
-
Which method to use to expand the key when the generated key provides too few bytes
for the selected encryption method (either based on "draft-reeder-snmpv3-usm-3desede-00" or
as implemented in AGENT++).