Configuring for Network Management Applications

Using SNMP Tools To Manage the Switch

To enable or disable notification/traps for network security failures and other security events, enter the snmp-server enable traps command.

Syntax: [no] snmp-server enable traps [snmp-auth password-change-mgr login- failure-mgr port-security auth-server-fail]

Enables or disables sending one of the following types of security notification to configured trap receivers:

snmp-authsends a trap for a failed authentication attempt via SNMP.

password-change-mgrsends a trap when a manager password is reset.

login-failure-mgrsends a trap for a failed login with a manager password.

port-securitysends a trap for a failed authentication attempt through a web, MAC, or 801.X authentication session.

auth-server-failsends a trap if the connection with a RADIUS or TACACS+ authentication server fails.

To determine the specific cause of a security event, check the event log in the console interface to see why a trap was sent. For more information, refer to “Using the Event Log for Troubleshooting Switch Problems” on page C-24.

To display the current configuration for network security notifications, enter the show snmp-server traps command. Note that command output is a subset of the information displayed with the show snmp-servercommand in Figure 13- 12.

13-28