Management and Monitoring Capabilities

Message stream modification: SNMP is designed to operate over a connectionless transport protocol. There is a threat that SNMP messages could be reordered, delayed, or replayed (duplicated) to effect unauthorized management operations. For example, a message to reboot a device could be copied and replayed later.

Disclosure: An entity could observe exchanges between a manager and an agent and thereby learns the values of managed objects and learn of notifiable events. For example, the observation of a set command that changes passwords would enable an attacker to learn the new passwords.

To address the security threats listed above, SNMPv3 provides the following when secure management is enabled:

Authentication: Provides data integrity and data origin authentication.

Privacy (a.k.a Encryption): Protects against disclosure of message payload.

Access Control: Controls and authorizes access to managed objects

NOTE:

The remainder of this guide describes how to configure an AP using the HTTP Web interface or the CLI interface. For information on how to manage devices using SNMP, refer to the documentation that came with your SNMP program. Also, refer to the MIB files for information on the parameters available via SNMP.

1-12

Avaya Wireless AP-4/5/6 User’s Guide

Page 30
Image 30
Avaya AP-4, AP-6, AP-5 manual Management and Monitoring Capabilities