Security Model, Snmpd.conf, Alerts Using SNMPv3 | Intel ZT 7102

Intel® NetStructureTMZT 7102 Chassis Management Module

SNMP

To check the status of SNMP traps, issue the command:

cmmget -l cmm -d SNMPenable

19.5.3Alerts Using SNMPv3

The CMM utilizes the SNMPtrap utility to send the SNMPv3 ‘trap’ message. For receiving the SNMPv3 Trap, the remote application such as the trap listener needs to:

1.Set the SNMPv3 Trap User. The default trap user is root.

2.Set the MD5 Authentication password. The default MD5 Authentication password: is publiccmm.

3.Set the DES Encryption password. The default DES Encryption password is publiccmm.

Note: To change the passwords (MD5 and DES) for SNMPv3 trap, change the snmpTrapCommunity from the CLI interface or from the SNMP manager console.

19.5.4Alert Using UDP Alert

The CMM Management software also sends the alert via UDP port 10000. The IP address to receive this alert is the same as the SNMP Trap IP addresses. The UDP alert is enabled by default when the user enables SNMP traps.

19.6Security Model

19.6.1SNMPv3 Security: Authentication Protocol and Privacy Protocol

The CMM supports the highest security level for SNMPv3. The MD5 is used for authentication Protocol in the CMM. The DES is used for Privacy Protocol in the CMM. When in this mode, the user needs to specify each password (authKey, privKey) for these protocols. The SNMPv3 packet is securely encrypted during the transmission.

This is the default security level of the CMM when configured for SNMP v3.

The following fields are defined to handle all SNMPv3 security levels:

Table 44. SNMPv3 Security Fields

SecurityName	user name	Default Value:

AuthProtocol	authentication type (MD5)

AuthKey	authentication password	publiccmm

PrivProtocol	privacy type (DES)

PrivKey	privacy password	publiccmm

19.7snmpd.conf

For more information regarding SNMP configuration, and the snmpd.conf file, please visit:

http://www.net-snmp.org/man/snmpd.conf.html

Technical Product Specification

101

Image 101

Intel ZT 7102 manual Security Model, Snmpd.conf, Alerts Using SNMPv3, Alert Using UDP Alert, 101

Contents

Intel NetStructure ZT 7102 Chassis Management Module Technical Product Specification Technical Product Specification Contents 16.1 3.1 11.1.2 15.3 20.2.1 Figures Tables 116 Date Revision Description Revision History Overview ZT 7102 FeaturesIntroduction Functional Block Diagram Acronym Description Terms Used in This DocumentGlossary Intel NetStructureTMZT 7102 Chassis Management Module Hardware Specifications Slot Connections System ArchitectureBackplane Connections Fan Modules Power ModulesChassis Sensor Connections Chassis FRU Device Connections Face Plate Face Plate Feature Purpose Faceplate FeaturesFaceplate Features Board Dimensions and Weight ConnectorsPCB Dimensions Mechanical Connector Locations 2 J2 Backplane Connector 1 J1 Backplane ConnectorJ1 Connector Pinout Pin# J3 Connector Pinout 3 J3 Backplane ConnectorJ2 Connector Pinout Pin Type Definitions Backplane Pin DescriptionsPin Descriptions Sheet 1 Pin Type Definition Pin Descriptions Sheet 2 5 JA1 Ethernet Port 6 J6 Serial Port 7 J7 Telco Alarm ConnectorJA1 Ethernet Port Pinout J6 Serial Port Pinout J7 Telco Alarm Connector Pinout CMM PowerCMM Power Availability Electrical and Environmental Operating Temperature Power Ramp CircuitryReliability Absolute Maximum Ratings DC Operating Characteristics Onboard SwitchesDC Operating Characteristics Switch Cross Reference Table 10.1.1 S1 Alarm Cutoff and Board Reset Switch Descriptions10.1.2 SW1-1 Password Reset Processor and Chipset Flash MemoryDual Ethernet Controllers Serial I/O Alarm Relays Telco Alarm SignalReal Time Clock Network Time Synchronization Battery Backup Watchdog TimerReplacing the Battery Battery Characteristics Running Your System Without a CMM Operating System Command Line Interface CLI Software SpecificationsRemote Procedure Call RPC Interface Ethernet Interfaces CMM SEL Architecture Sensor Event Logs SELSatellite Management Controller SMC Boards Baseboard Management Controller BMC Boards Synchronization Hardware Redundancy SpecificationCMM Redundancy, Synchronization and Failover Files or data Description Path Synchronization RequirementsCMM Synchronization Scenarios That Force a Failover CMM FailoverScenarios That Prevent Failover Scenarios That Failover to a Healthier Standby CMM Manual Failover Scenarios That Failover to an Equally Healthy CMMFailover Timing Installing the CMM CMM Installation and RemovalUnpacking Connectivity Ejector Handle Operation Removing the CMM Intel NetStructureTMZT 7102 Chassis Management Module Intel NetStructureTMZT 7102 Chassis Management Module Bist Test Flow Built-In Self Test Boot-BIST Early-BIST Mid-BIST Late-BIST Boot-BISTEarly-BIST Mid-BIST Event Log Area and Event Management Late-BIST Monitoring the Static Images OS Flash Corruption Detection and Recovery DesignMonitoring the Dynamic Images CMM Failover Bist Test Descriptions 5 DS1307 RTC Test Fpga Version CheckNIC Presence/Local PCI Bus Test OS Image Checksum Test Connecting to the CLI CMM Connection and SetupConnecting through a Console CLI Overview FTP Into the CMM Initial Setup Logging in for the First TimeSetting IP Address Properties Eth1 and Eth11 Setting Eth0 to Dhcp Setting Auto-Logout Time Limit Rebooting the CMMSetting a Hostname Cmmget and cmmset syntax Command Line Interface CLI Syntax and ArgumentsHelp Parameter -h Location Parameter -l Dataitem Parameter -d Target Parameter -tTarget -t Keywords Dataitem -d Keywords for All Locations Sheet 1 Dataitem -d Keywords for System location Dataitem -d Keywords for All Locations Sheet 2Dataitem -d Keywords for BladeN Locations Data Item Description Get Valid Set Set Dataitem -d Keywords for Chassis LocationDataitem -d Keywords for CMM Location Sheet 1 Dataitem -d Keywords for CMM Location Sheet 2 Value ParameterSample CLI Operations Generating a System Status Report Resetting the Password in a Dual CMM System Resetting the PasswordResetting the Password in a Single CMM System Intel NetStructureTMZT 7102 Chassis Management Module Threshold-Based Sensors Sensor TypesDiscrete Sensors Threshold-Based Sensor Events Intel NetStructureTMZT 7102 Chassis Management Module Syntax of Health Event Strings Health Event StringsHealthevents Query Event Syntax SEL Event Syntax Snmp Trap Event Syntax Sensor TargetsCMM Sensor Targets Sensor Target Description HealthEvents Queries for Individual Sensors Healthevents QueriesHealthEvents Queries for All Sensors on a Location No Active Events Not Present or Non-IPMI Locations List of Possible Health Event Strings Power Supply Event Strings PowerSupplyN PowerSupplyN Location IPMI-Compliant Supplies OnlyAll Locations Event String Event Code Event Severity Bist Event Strings Bist Sheet 1 11.4.3 CMM Location Chassis Location CMM Failover Event Strings CMM Failover Slot Event Strings Slot N EventCMM Redundancy Event Strings CMM 1-2 Redundancy Event String Event Code If HealthEvents, its Severity CMM File Sync Event Strings CMM File SyncChassis Sensor Event Strings Intel NetStructureTMZT 7102 Chassis Management Module Slot Power-Up Sequence Slot Power ControlAssertion of BDSEL# System Master Boards Drone Mode Boards Obtaining the Power State of a BoardAssertion of HEALTHY# During Power-Up Fabric and PCI-Less Slots Power Sequencing Commands and Policies Controlling the Power State of a SlotPowering Off a Board Powering On a Board Retrieving the Maximum Power-Up Attempts Setting the Healthy# Ramp-Up TimeSetting the Maximum Power-Up Attempts Retrieving the Healthy# Ramp-Up Time CMM detects a slot has been placed in offline or active Power Sequencing SEL Events Intel NetStructureTMZT 7102 Chassis Management Module Power Supply Detection Power SuppliesInhibit, Degrade, and Fail Signals Inhibiting Power Supplies Enabling Power Supplies Removing a Drone Mode Capable SBC Drone Mode SBC SupportAdding a Drone Mode Capable SBC Intel NetStructureTMZT 7102 Chassis Management Module Setting a Slot to Active Mode Setting a Slot to Offline ModeLimitations of the Offline Mode Active vs. Offline Slots Intel NetStructureTMZT 7102 Chassis Management Module FRU Information Obtaining FRU InformationFRU Query Syntax Data Item Description Chassis FRU Validity Check Fan Control and Monitoring Setting Fan SpeedAutomatic Fan Control Considerations for Turning Off the Fans Querying Fan Tray Sensors CLI Scripting CMM ScriptingAssociating Scripts to Event Severity Script Synchronization Listing Scripts Associated With Events Setting Scripts for Specific Individual EventsRemoving Scripts From an Associated Event Event Codes Slot Events Setting Event Scripts Intel NetStructureTMZT 7102 Chassis Management Module High Level SNMP/MIB Layout Snmp CMM MIB Querying Non-IPMI Compliant Blades and Power SuppliesMIB Design Snmp Agent Configuring the Agent to Respond to Snmp v3 Requests Configuring the Snmp Agent PortConfiguring the Agent Back to Snmp Setting up an Snmp v3 MIB Browser Snmp Trap Utility Configuring and Enabling Snmp Trap Addresses Alert Using UDP Alert Alerts Using SNMPv3Security Model Snmpd.conf 102 Using the RPC Interface Setting Up the RPC Interface20.0 RPC 103 104 GetAuthCapabilityChassisManagementApi 105 106 Error and Return Codes for the RPC Interface Sheet 1Code # Error Code String Error Code Description 107 Error and Return Codes for the RPC Interface Sheet 2 108 Error and Return Codes for the RPC Interface Sheet 3 109 Error and Return Codes for the RPC Interface Sheet 4ChassisManagementApi Threshold Response Format Threshold Response Formats ChassisManagementApi String Response FormatString Response Formats Sheet 1 110 111 String Response Formats Sheet 2 112 String Response Formats Sheet 3 String Response Formats Sheet 4 ChassisManagementApi Integer Response FormatInteger Response Formats Sheet 1 113 Integer Response Formats Sheet 2 FRU String Response FormatFRU Data Items String Response Format Sheet 1 114 RPC Usage Examples RPC Sample CodeFRU Data Items String Response Format Sheet 2 115 116 RPC Usage Examples Sheet 1 117 RPC Usage Examples Sheet 2 118 RPC Usage Examples Sheet 3 119 Command Logging 120 Configuring the Telco Alarm Connector Pins Telco Alarm SensorsTelco Alarm Connector Sensor Naming 121 122 Telco Alarm Sensors and RedundancySensor Names using Snmp System Details Application HostingStartup and Shutdown Scripts System Resources Available to User Applications RAM-Disk Storage Locations Ram Disk Directory StructureRAM Constraints Interrupt Constraints 125 Busless Backplane Support 126 Update Process Architecture Key Features of the Firmware Update ProcessUpdating Software 127 Update Package Critical Software Update Files and DirectoriesList of Critical Software Update Files and Directories Contents of the Update Package Sheet 1 Update Firmware Package Version Update Package File ValidationContents of the Update Package Sheet 2 129 Component Versioning SaveList and Data PreservationSaveList Items and Their Priorities Sheet 1 130 UpdateMetadata File Update ModeSaveList Items and Their Priorities Sheet 2 131 Updating to an Older Synchronization Version Updating to a Newer Synchronization VersionSynchronization Behavior for Differing Synch Versions 132 Redundant CMM Systems Single CMM SystemCLI Support Updating to the Same Synchronization Version Data Restore User Scripts Update Mode User ScriptsHooks for User Scripts 134 135 136 Update Process Debugupdate Variable Update Process Status and LoggingUpdate Process Sensor and SEL Events 137 Required Setup RedBoot Update ProcessUpdate Procedure 138 139 Example CLI Commands Sheet 1Use Case CLI Command Return 140 Example CLI Commands Sheet 2 CompactPCI Intel CompactPCI* Product InformationIntel IOP310 Processor Chipset 141 142 143 Returning a Defective Product RMAFor the Americas 144 For EmeaFor Apac 145 146 147 Technical Support and Return for Service AssistanceSales Assistance 148 CE Certification SafetyEmissions Test Regulations EN 50081-1 Emissions Safety Precautions Product Safety InformationRegulatory Information Industry Canada Canada 151 152