Disable SNMPv1/2c authentication. Use SNMPv 3 only

DKOROTKIKH · ‎2014-07-06

Hello,

there was vulnerability found during the tests - "EOL/Obsolete Software SNMP Version Detected"

It means that the authentication of clients of earlier versions of SNMP is performed only by a "community string", in effect a type of password, which is transmitted in cleartext. So, we need to disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication.

We are searching for such possibility from Zabbix site, since we use it as monitoring system. However, is it possible to disable 1 and 2 versions and allow 3 only from NetApp site?

Our systems are 8.1.3P2 7-Mode

DKOROTKIKH · ‎2014-07-07

I'm trying to use following guide:

https://library.netapp.com/ecmdocs/ECMP1155586/html/GUID-F1D89C7B-65A5-4DDE-A225-84EE6E827B33.html

However, I can't implement last step related with "snmpwalk" command.

Always gives me an error:

filer1> snmpwalk

snmpwalk not found. Type '?' for a list of commands

Any ideas about this command?

ostiguy · ‎2014-07-07

I think the manual is expecting you to use a snmpwalk on your host system

DKOROTKIKH · ‎2014-07-07

Yeh! Found that snmpwalk should be implement on another site, not on storage site.

fletch2007 · ‎2014-11-03

Hi, I've got the exact same issue - how did you end up disabling SNMP v1 and v2, configuring v3 on the filer and converting your Zabbix monitoring to use v3?

Thanks!

Fletcher

Disable SNMPv1/2c authentication. Use SNMPv 3 only

NetApp's KB Wins Again!