Monitoring vApp with snmp
search cancel

Monitoring vApp with snmp

book

Article ID: 247784

calendar_today

Updated On:

Products

CA Identity Suite

Issue/Introduction

Followed this document to enable the snmp services for Vaap 14.4

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-suite/14-4/virtual-appliance/monitoring-virtual-appliance.html#concept.dita_623d8fec621bc878635f3ca9102edc2337ff98c7_MonitoringwithSNMP

chkconfig snmpd on
chkconfig snmptrapd on
service snmpd start
service snmptrapd start
 
But the monitoring team is not able to get in the machine in the port 161.
There is another default port to monitor? 
 
 

Environment

Release : 14.4 (Centos8)

Component : IdentityMinder(Identity Manager)

Cause

The problem is because the procedure in documentation is for snmp v1 and v2.
Now Centos8 is delivered with snmp v3 that procedure is different.

Resolution

14.4 onwards is using centos8 version.
Here is using SNMP Version 3(SNMPv3),
So the same configurations will not work as was disabled v1 and v2 SNMP configurations.

1) Stop snmpd service

service snmpd stop

2) Create a user to use for snmpv3, SHA is used for the authentication and AES for the encryption, for authentication you can use SHA|MD5 for encryption you can use AES|DES, please refer the snmpv3 documentation for more details.

net-snmp-create-v3-user -ro -A firewall -X firewall -a SHA -x AES snmpv3user

On successful creation of user, it will print something similar to this

adding the following line to /var/lib/net-snmp/snmpd.conf:
   createUser snmpv3user SHA "firewall" AES "firewall"
adding the following line to /etc/snmp/snmpd.conf:
   rouser snmpv3user

 

3)Start snmpd service

service snmpd start

4) Now use snmpwalk command to walk through the OID's and MIB's, Successful snmpwalk should provide tons of output as follows

snmpwalk -u snmpv3user -A firewall -a SHA -X firewall -x AES -l authPriv 127.0.0.1 -v3

SNMPv2-MIB::sysDescr.0 = STRING: Linux vappServer.test.net 4.18.0-348.el8.x86_64 #1 SMP Tue Oc
t 19 15:14:17 UTC 2021 x86_64
SNMPv2-MIB::sysObjectID.0 = OID: NET-SNMP-MIB::netSnmpAgentOIDs.10
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (15630) 0:02:36.30
SNMPv2-MIB::sysContact.0 = STRING: Root <root@localhost> (configure /etc/snmp/snmp.local.conf)
SNMPv2-MIB::sysName.0 = STRING: vAPPServer.test.net
SNMPv2-MIB::sysLocation.0 = STRING: Unknown (edit /etc/snmp/snmpd.conf)
SNMPv2-MIB::sysORLastChange.0 = Timeticks: (0) 0:00:00.00
SNMPv2-MIB::sysORID.1 = OID: SNMP-FRAMEWORK-MIB::snmpFrameworkMIBCompliance
SNMPv2-MIB::sysORID.2 = OID: SNMP-MPD-MIB::snmpMPDCompliance
SNMPv2-MIB::sysORID.3 = OID: SNMP-USER-BASED-SM-MIB::usmMIBCompliance
SNMPv2-MIB::sysORID.4 = OID: SNMPv2-MIB::snmpMIB
SNMPv2-MIB::sysORID.5 = OID: SNMP-VIEW-BASED-ACM-MIB::vacmBasicGroup
SNMPv2-MIB::sysORID.6 = OID: TCP-MIB::tcpMIB
SNMPv2-MIB::sysORID.7 = OID: IP-MIB::ip
SNMPv2-MIB::sysORID.8 = OID: UDP-MIB::udpMIB

Powered by Wolken Software