000026422 - How to configure SNMP for RSA Authentication Manager 8.x

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Jul 26, 2019
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000026422
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x
 
IssueThis article explains how to configure SNMP for RSA Authentication Manager 8.x
 
Resolution

To configure SNMP for RSA Authentication Manager 8.x, follow the steps below:



  1. In the Security Console, navigate to Setup > System Settings
  2. Under Advanced Settings on the lower right, select Network Monitoring (SNMP)
  3. Select the primary server or one of the replicas and click Next.
  4. Under Basics,
    1. Turn the option for Network Monitoring using SNMP v3 to On.
    2. Ensure that the default Request Port is 161.
    3. Add the security name.
    4. In the Security Level field, select a security level for SNMP communication:

  • No Authentication does not authenticate or encrypt SNMP communication. Go to step 11.
  • Authentication, No Privacy authenticates the sender of a GET or trap, but does not encrypt SNMP data communication.
  • Authentication and Privacy authenticates the sender of a GET or trap and encrypts SNMP data communication.


  1. If you are using authentication, 



    1. In the Authentication Password field, enter a password for authenticating the sender of a GET or trap. Some SNMP clients use the term “passphrase.”
    2. From the Authentication Protocol list, select the protocol for authenticating the sender of a GET or trap.

  2. If you are using encryption, do the following:



    1. In the Privacy Password field, enter the password for encrypting SNMP data communication. Some SNMP clients use the term “passphrase.”
    2. In the Privacy Protocol field, select the algorithm for encrypting SNMP data communication.
  3. Create authentication and privacy passwords.
  4. Click Download to obtain the MIB file for the SNMP Server
  5. Optionally configure the trap settings, for administrative, authentication and aystem events, as well as for OS traps.
  6. In Trap Receiver settings, enter information in the IP address or Hostname field, as well as the port numbers of the machines that receive SNMP trap notifications.
  7. Click Add.
  8. When done, click Update.
  9. Optionally, you can check the box to apply the settings defined here to the replicas in the deployment.
  10. Click Save.
Notes
  • For detailed information on SNMP refer to the RSA Authentication Manager Administrator's Guide for your version of the product.
  • The RSA Authentication Manager Administrator's Guide also discusses the need to download the Authentication Manager MIB so that your SNMP server knows what data RSA has available, and how to configure SNMP Gets or Traps in the Security Console.
  • In order for the machines to request Authentication Manager and RSA SecurID Appliance hardware data, it is necessary to copy the Authentication Manager Appliance MIB files onto those machines, and load them in a MIB browser.  For specific information related the OIDs supported by RSA for Authentication Manager 8.x, refer to RSA Authentication Manager SNMP Reference Guide for your version of the product.
Legacy Article IDa47293

Attachments

    Outcomes