Software Development Kit (SDK) and API Discussions

Disable SNMPv1/2c authentication. Use SNMPv 3 only

DKOROTKIKH
11,934 Views

Hello,

there was vulnerability found during the tests - "EOL/Obsolete Software SNMP Version Detected"

It means that the authentication of clients of earlier versions of SNMP is performed only by a "community string", in effect a type of password, which is transmitted in cleartext. So, we need to disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication.

We are searching for such possibility from Zabbix site, since we use it as monitoring system. However, is it possible to disable 1 and 2 versions and allow 3 only from NetApp site?

Our systems are 8.1.3P2 7-Mode

4 REPLIES 4

DKOROTKIKH
11,934 Views

I'm trying to use following guide:

https://library.netapp.com/ecmdocs/ECMP1155586/html/GUID-F1D89C7B-65A5-4DDE-A225-84EE6E827B33.html

However, I can't implement last step related with "snmpwalk" command.

Always gives me an error:

filer1> snmpwalk

snmpwalk not found.  Type '?' for a list of commands

Any ideas about this command?

ostiguy
11,934 Views

I think the manual is expecting you to use a snmpwalk on your host system

DKOROTKIKH
11,934 Views

Yeh! Found that snmpwalk should be implement on another site, not on storage site.

fletch2007
11,787 Views

Hi, I've got the exact same issue - how did you end up disabling SNMP v1 and v2, configuring v3 on the filer and converting your Zabbix monitoring to use v3?

 

Thanks!

 

Fletcher

Public