This website uses cookies. By continuing to browse or login to this website, you consent to the use of cookies. Learn more.
OK

Give priority to SNMPv3 over earlier SNMP versions

Idea ID 1669976

Give priority to SNMPv3 over earlier SNMP versions

Status: Under Consideration Submitted by Micro Focus Expert on ‎2018-10-12 20:20

Where NNMi is managing a mix of SNMPv3 and SNMPv2/v1 devices, for example during migration to SNMPv3, then NNMi needs to allow multiple versions for Communication. If the Communication Configuration has both Community Strings and SNMPv3 credentials in a Region or Default Settings and the Minimum SNMP Security Level set to "Community", all current NNMi versions will try to use SNMPv2 first, then SNMPv1 and only if those fail will it try SNMPv3. This can cause slow rediscovery times, especially with multiple Community Strings, and will cause it to use the less secure version if the device is configured to allow both v2 and v3. It is possible to work around these limitations by defining separate Regions for v2 and v3 but that requires additional administrative effort.

 

It would be a better solution if NNMi gave precedence to SNMPv3, then SNMPv2 and finally SNMPv1. This would ensure it uses the most secure version that a device supports without the need for extra administration, and allow much faster rediscovery for SNMPv3 devices in a network were some SNMPv2 devices are still present.

 

8 Comments
TapanS
Micro Focus Expert
Micro Focus Expert
‎2018-10-31 04:39
‎2018-10-31 04:39
Changed the status to Waiting for Votes.
TapanS
Micro Focus Expert
Micro Focus Expert
‎2018-10-31 04:39
‎2018-10-31 04:39
Status changed to: Waiting for Votes
 
Ronnie
Cadet 3rd Class
Cadet 3rd Class
‎2018-11-21 19:46
‎2018-11-21 19:46

GM would like this fast tracked also.

TapanS
Micro Focus Expert
Micro Focus Expert
‎2018-12-03 22:54
‎2018-12-03 22:54
Moved to Waiting for Votes
TapanS
Micro Focus Expert
Micro Focus Expert
‎2018-12-03 22:54
‎2018-12-03 22:54
Status changed to: Waiting for Votes
 
AkashDeep
Micro Focus Expert
Micro Focus Expert
‎2019-01-27 08:03
‎2019-01-27 08:03
Status changed to: Under Consideration

Thanks to community for showing the interest. We are moving it to "Under Consideration" for technical fecibility and planning. We shall consider this idea for future release.

 

Radmilo
Commander Commander
Commander
‎2019-06-03 15:56
‎2019-06-03 15:56

CN would like ot fast track it. It is becoming increasingly important

Also, in mena time, will be nice to have OFFICIAL recommendation how to configure NNMi the best possible way to accomodate mix of SNMP v1, v2 and v3 devices to avoid 5-10 minutes SNMPv3 (re)discovery

Thanks

Radmilo

tka
Cadet 3rd Class Cadet 3rd Class
Cadet 3rd Class
‎2019-09-23 13:58
‎2019-09-23 13:58

In  our environment SNMPv2c and SNMPv3 is used. The trend is towards secured management communication and therefore SNMPv3.

Yes we would like to have this feature.

I am working for a tier one provider. Short rediscovery times are a must, for NNMi monitoring thousands of nodes with a huge amount of interfaces in order to provide accurate and up to date management incident. If rediscovery is slow, it is likely that the topology is outdated affecting the monitoring quality.

Most "Liked" Contributors
View All ≫
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.