Monitor PGP Universal Server 3.0 with SNMP
search cancel

Monitor PGP Universal Server 3.0 with SNMP

book

Article ID: 153570

calendar_today

Updated On:

Products

Symantec Products

Issue/Introduction

This article details SNMP monitoring of PGP Universal Server 3.0.

 

Resolution


SNMP enables a network management application to monitor the health and activity of the PGP Universal Server software and the computer on which it is installed. The network management application can poll the PGP Universal Server on a regular basis to extract information.

Polling means that the network management application periodically queries the PGP Universal Server to get the desired status information, and SNMP is the protocol it uses.

The SNMP service should be configured to run on the management interface. You can configure all polling settings, including polling cycles, on the network management application. You can poll the following system information, as part of the standard MIB:

 

  • The number of instances of certain running processes
  • System memory usage
  • Disk usage
  • System load information



PGP custom MIBs allow you to poll for messaging statistics, including the number of messages:

 

  • Processed that day
  • Encrypted and/or signed that day
  • Decrypted that day
  • Processed total
  • Encrypted and/or signed total
  • Decrypted total
  • Currently in the mail queue

The following PGP Universal Server processes are monitored via SNMP:

 

  • proc httpd - Web Server Listener
  • proc pgpproxyd - PGP Email Proxy
  • proc pgpsyncd - PGP Clustering and PGP Desktop listener
  • proc pgptokend - Ignition Key service
  • proc pgptcpwrapper - PGP tcp connection wrapper
  • proc slapd - LDAP keyserver service

 

PGP provides a custom MIB extension to allow you to poll for PGP Universal Server specific information. The MIB files are called PGP-UNIVERSALMIB.mib and PGP-SMI.mib. These MIB files are downloaded on the Services > SNMP card of the server.



The PGP Universal Server can be monitored using SNMP Traps and queries. Traps are triggers set off by certain network events. You can configure the SNMP service to send out an alert every time these events occur:

 

  • The number of certain processes drops to zero
  • The available swap space drops too low
  • A disk has less than 20% free space
  • The 1-minute system load average rises above 4.0
  • The 5-minute system load average rises above 1.0
  • The 15-minute system load average rises above 1.0

SNMP Traps are sent with Object ID (OID) 1.3.6.1.2.1.88.2.1.1.0 for

Example SNMP Trap:

OID 1.3.6.1.2.1.88.2.1.1.0 : system load

 

Note: If the traps are configured via the Admin GUI, the following entries are added to the SNMP configuration.

monitor -u internal -r 60 -o prNames -o prErrMessage "process table" prErrorFlag != 0

monitor -u internal -r 60 -o memErrorName -o memSwapErrorMsg "memory usage" memSwapError != 0

monitor -u internal -r 60 -o dskPath -o dskErrorMsg "disk usage" dskErrorFlag != 0

monitor -u internal -r 60 -o laNames -o laErrMessage "system load" laErrorFlag != 0


PGP Universal Server only allows SNMP GET commands to monitor the server. When using an SNMP query, the Community name for the interface on the Services > SNMP card must match that of the connecting system.