SNMP

CHAPTER 16: SNMP

authoritative. When an SNMP message does not expect a response, the sender is authoritative

Community string - A text string used to authenticate messages between a management station and an SNMP v1/v2c engine

Data integrity - A condition or state of data in which a message packet has not been altered or destroyed in an unauthorized manner

Data origin authentication - The ability to verify the identity of a user on whose behalf the message is supposedly sent. This ability protects users against both message capture and replay by a different SNMP engine, and against packets received or sent to a particular user that use an incorrect password or security level

Encryption - A method of hiding data from an unauthorized user by scrambling the contents of an SNMP packet

Group - A set of users belonging to a particular security model. A group defines the access rights for all the users belonging to it. Access rights define what SNMP objects can be read, written to, or created. In addition, the group defines what notifications a user is allowed to receive

Notification host - An SNMP entity to which notifications (traps and informs) are to be sent

Notify view - A view name (not to exceed 64 characters) for each group that defines the list of notifications that can be sent to each user in the group

Privacy - An encrypted state of the contents of an SNMP packet where they are prevented from being disclosed on a network. Encryption is performed with an algorithm called CBC-DES (DES-56)

Read view - A view name (not to exceed 64 characters) for each group that defines the list of object identifiers (OIDs) that are accessible for reading by users belonging to the group

Security level - A type of security algorithm performed on each SNMP packet. The three levels are: noauth, auth, and priv. noauth authenticates a packet by a string match of the user name. auth authenticates a packet by using either the HMAC MD5 algorithms. priv authenticates a packet by using either the HMAC MD5 algorithms and encrypts the packet using the CBC-DES (DES-56) algorithm.

Security model - The security strategy used by the SNMP agent. Currently, ML1200 supports three security models: SNMPv1, SNMPv2c, and SNMPv3.

Simple Network Management Protocol (SNMP) - A network management protocol that provides a means to monitor and control network devices, and to manage configurations, statistics collection, performance, and security.

Simple Network Management Protocol Version 2c (SNMPv2c) - The second version of SNMP, it supports centralized and distributed network management strategies, and includes improvements in the Structure of Management Information (SMI), protocol operations, management architecture, and security.

SNMP engine - A copy of SNMP that can either reside on the local or remote device.

SNMP group - A collection of SNMP users that belong to a common SNMP list that defines an access policy, in which object identification numbers (OIDs) are both read- accessible and write-accessible. Users belonging to a particular SNMP group inherit all of these attributes defined by the group.

16–2

MULTILINK ML1200 MANAGED FIELD SWITCH – INSTRUCTION MANUAL

Page 256
Image 256
GE ML1200 instruction manual Snmp