Cisco Systems ASA 5510, ASA 5512-X, ASA 5515-X, ASA 5520, ASA 5525-X, ASA 5540, ASA 5545-X, ASA 5550, ASA 5555-X, ASA 5580, ASA 5585-X, ASA 5505 Information About SNMP Terminology, SNMP Version 3

78-2

Cisco ASA 5500 Series Configuration Guide using ASDM

Chapter78 Configuring SNMP

Information About SNMP

Information About SNMP Terminology

Table78-1 lists the terms that are commonly used when working with SNMP:

SNMP Version 3

This section describes SNMP Version 3 and includes the following topics:

•SNMP Version 3 Overview, page 78-2

•Security Models, page 78-3

•SNMP Groups, page 78-3

•SNMP Users, page 78-3

•SNMP Hosts, page 78-3

•Implementation Differences Between the ASA, ASA Services Module, and the Cisco IOS Software,

page 78-3

SNMP Version 3 Overview

SNMP Version 3 provides security enhancements that are not available in SNMP Version 1 or SNMP

Version 2c. SNMP Versions 1 and 2c transmit data between the SNMP server and SNMP agent in clear

text. SNMP Version 3 adds authentication and privacy options to secure protocol operations. In addition,

this version controls access to the SNMP agent and MIB objects through the User-based Security Model

Table78-1 SNMP Terminology

Term Description

Agent The SNMP server running on the ASA. The SNMP agent has the following features:

•Responds to requests for information and actions from the network management station.

•Controls access to its Management Information Base, the collection of objects that the SNMP

manager can view or change.

•Does not allow set operations.

Browsing Monitoring the health of a device from the network management station by polling required information

from the SNMP agent on the device. This activity may include issuing a series of GET-NEXT or

GET-BULK requests of the MIB tree from the network management station to determine values.

Management

Information

Bases (MIBs)

Standardized data structures for collecting information about packets, connections, buffers, failovers, and

so on. MIBs are defined by the product, protocols, and hardware standards used by most network devices.

SNMP network management stations can browse MIBs and request specific data or events be sent as they

occur.

Network

management

stations (NMSs)

The PCs or workstations set up to monitor SNMP events and manage devices, such as the ASA.

Object identifier

(OID)

The system that identifies a device to its NMS and indicates to users the source of information monitored

and displayed.

Trap Predefined events that generate a message from the SNMP agent to the NMS. Events include alarm

conditions such as linkup, linkdown, coldstart, warmstart, authentication, or syslog messages.

Cisco Systems Information About SNMP Terminology, SNMP Version 3

Models: ASA 5510 ASA 5512-X ASA 5515-X ASA 5520 ASA 5525-X ASA 5540 ASA 5545-X ASA 5550 ASA 5555-X ASA 5580 ASA 5585-X ASA 5505

SNMP Version 3 Overview