Software Development Kit (SDK) and API Discussions

Disable SNMPv1/2c authentication. Use SNMPv 3 only

DKOROTKIKH

Hello,

there was vulnerability found during the tests - "EOL/Obsolete Software SNMP Version Detected"

It means that the authentication of clients of earlier versions of SNMP is performed only by a "community string", in effect a type of password, which is transmitted in cleartext. So, we need to disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication.

We are searching for such possibility from Zabbix site, since we use it as monitoring system. However, is it possible to disable 1 and 2 versions and allow 3 only from NetApp site?

Our systems are 8.1.3P2 7-Mode

4 REPLIES 4

fletch2007

Hi, I've got the exact same issue - how did you end up disabling SNMP v1 and v2, configuring v3 on the filer and converting your Zabbix monitoring to use v3?

 

Thanks!

 

Fletcher

DKOROTKIKH

I'm trying to use following guide:

https://library.netapp.com/ecmdocs/ECMP1155586/html/GUID-F1D89C7B-65A5-4DDE-A225-84EE6E827B33.html

However, I can't implement last step related with "snmpwalk" command.

Always gives me an error:

filer1> snmpwalk

snmpwalk not found.  Type '?' for a list of commands

Any ideas about this command?

ostiguy

I think the manual is expecting you to use a snmpwalk on your host system

DKOROTKIKH

Yeh! Found that snmpwalk should be implement on another site, not on storage site.

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

Public