000031956 - Monitoring replication status using SNMP in RSA Authentication Manager 8.x

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Jul 30, 2019
Version 11Show Document
  • View in full screen mode

Article Content

Article Number000031956
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x
 
IssueQuerying SNMP OID .1.3.6.1.4.1.2197.20.21.1.5 (replication status) with a parameter on the RSA Authentication Manager primary works correctly but is not working on the replica instance.
 
ResolutionSNMP OID .1.3.6.1.4.1.2197.20.21.1.5 is used to query replicationStatus from the path .iso.org.dod.internet.private.enterprises.rsa.ims.instanceTable.instanceEntry.replicationStatus, returning HEALTHY, OUT_OF_SYNC or SYNCHRONIZING responses, depending on the status of the replications.


When an administrator queries the replicationStatus on a primary instance, an additional value or parameter can be added to the OID; for example, SNMP OID .1.3.6.1.4.1.2197.20.21.1.5.0 for the primary instance or SNMP OID .1.3.6.1.4.1.2197.20.21.1.5.1, for the replica instance.


Following is an example of an snmpwalk done on a primary instance:

rsaadmin@app81p:~> snmpwalk -v 3 -u snmpuser -l authPriv -a MD5 -x DES -A "Password01." -X "Password01." 127.0.0.1 .1.3.6.1.4.1.2197.20.21.1.5.0
RFC1155-SMI::enterprises.2197.20.21.1.5.0 = STRING: "HEALTHY"
rsaadmin@app81p:~> snmpwalk -v 3 -u snmpuser -l authPriv -a MD5 -x DES -A "Password01." -X "Password01." 127.0.0.1 .1.3.6.1.4.1.2197.20.21.1.5.1
RFC1155-SMI::enterprises.2197.20.21.1.5.1 = STRING: "HEALTHY"


An administrator would query the replica instance with one OID value to return the value of replicationStatus for example, using SNMP OID .1.3.6.1.4.1.2197.20.21.1.5.0.


Following is an example of an snmpwalk done on a replica instance:

rsaadmin@app81r:~> snmpwalk -v 3 -u snmpuser -l authPriv -a MD5 -x DES -A "Password01." -X "Password01." 127.0.0.1 .1.3.6.1.4.1.2197.20.21.1.5.0
RFC1155-SMI::enterprises.2197.20.21.1.5.0 = STRING: "HEALTHY"

 

The syntax of the snmpwalk command is 
snmpwalk -v 3 -u <Security Name> -l <Security Level> -a <Authentication Protocol> -x <Privacy Protocol> -A <Authentication Password> -X <Privacy Password> <hostname/IP address> <OID value>

The values in the snmpwalk command were configured in the Security Console.



  1. Navigate to Setup > System Settings
  2. Under Advanced Settings, select Network Monitoring (SNMP)
  3. Select the primary or replica for the Instance Type. 
  4. Click Next.
The screen shot below from the Security Console shows where the values for the snmpwalk command can be found:

User-added image
NotesThe snmpwalk commands can be used in scripts or from third party products to monitor replication status where customers can engage RSA Professional Services for this type of assistance.

Attachments

    Outcomes