Configuring SNMP Settings

You can configure SNMP settings for the CMP system and all Policy Management servers in the topology network. You can configure the Policy Management network such that the CMP system collects and forwards all traps to up to five external systems (SNMP managers) or such that each server generates and delivers its own traps.

Note: SNMP settings configuration must be done on the active CMP server in the primary cluster. A warning displays if the login is not on the active primary CMP system.

To configure SNMP settings:

From the Platform Setting section of the navigation pane, select SNMP Settings.
The SNMP Settings page opens, displaying the current settings.
Click Modify.
The Edit SNMP Settings page opens.
For each SNMP manager, enter a valid host name or an IPv4/IPv6 address.
The Hostname/IP Address field is required for an SNMP Manager to receive traps and send SNMP requests. The field has the following restrictions:
- The name can only contain the characters A through Z, a through z, 0 through 9, period (.), hyphen (-), and underline (_).
- The maximum length is 20 characters.
- The name is case insensitive (uppercase and lowercase are treated as the same).
By default, these fields are blank.
(Optional) You can configure a port for each SNMP manager by entering a port value between 1 and 65535 in the Port field. If left blank, the default value is 162.
From the Enabled Versions list, select one of the following versions:
- SNMPv2c
- SNMPv3
- SNMPv2c and SNMPv3 (default)
If you selected SNMPv2c or SNMPv2c and SNMPv3 from the Enabled Versions list, configure the following:
1. Traps Enabled—Specifies whether sending SNMPv2 traps is enabled. The default is enabled.
  Note: To use the SNMP Trap Forwarding feature, enable this option.
2. Traps from individual Servers—Specifies whether sending SNMPv2 traps from individual servers is enabled. If disabled, SNMPv2 traps are only sent from the active CMP system only. The default is disabled.
  Note: To use the SNMP Trap Forwarding feature, disable this option.
3. SNMPv2c Community Name—Enter the SNMP read-write community string. This field has the following restrictions:
  - The field is required if SNMPv2c is enabled.
  - The name can only contain the characters A through Z, a through z, 0 through 9, period (.), hyphen (-), and underline (_).
  - The name cannot exceed 31 characters in length.
  - The name cannot be either private or public.
  The default value is snmppublic.
If you selected SNMPv3 or SNMPv2c and SNMPv3 from the Enabled Versions list, configure the following:
1. SNMPv3 Engine ID—Enter an Engine ID for SNMPv3. The Engine ID can be 10 to 64 digits long and must use only hexadecimal digits (0-9 and a-f). The default is no value (null).
2. SNMPv3 Security Level—Select the level of SNMPv3 authentication and privacy from the list:
  - No Auth No Priv—Authenticate using the Username. No Privacy.
  - Auth No Priv—Authenticate using MD5 or SHA1 protocol.
  - Auth Priv (default)—Authenticate using MD5 or SHA1 protocol. Encrypt using the AES or DES protocol.
3. SNMPv3 Authentication Type—Select an SNMPv3 authentication protocol from the list:
  - SHA-1—Use Secure Hash Algorithm authentication.
  - MD5 (default)—Use Message Digest authentication.
4. SNMPv3 Privacy Type—Select an SNMPv3 privacy protocol from the list:
  - AES (default)—Use Advanced Encryption Standard privacy.
  - DES—Use Data Encryption Standard privacy.
5. SNMPv3 Username—Enter a user name. The user name can contain 0 to 32 characters and must only contain alphanumeric characters. The default is TekSNMPUser.
6. SNMPv3 Password—Enter an authentication password. The password must contain between 8 and 64 characters and can include any character.
  Note: The SNMPv3 password is also used for msgPrivacyParameters.
Click Save.

The SNMP settings for the network are configured.