1. System Overview
  2. What's New in Oracle Exadata Database Machine
  3. New Features for Oracle Exadata System Software 24ai
  4. What's New in Oracle Exadata System Software Release 24.1
  5. SNMP Security Enhancements

2.1.12 SNMP Security Enhancements

Oracle Exadata System Software release 24.1.0 introduces the following security enhancements for SNMP connections used by Management Server (MS) on all Exadata storage servers and database servers to propagate management information and alerts.

  • For all SNMP subscriber definitions, the administrator must specify the SNMP connection type, which implies the SNMP version being used. SNMP V3 is supported and encouraged for general subscribers (type=v3) and Oracle Auto Service Request (ASR) subscribers (type=v3ASR). The original type definitions for SNMP V1 (type=v1) and Oracle ASR (type=ASR) remain available. However, new SNMP V1 subscriber definitions are discouraged by a warning message recommending SNMP V3.

  • For all SNMP V1 (type=v1) and Oracle ASR subscribers (type=ASR), the administrator must specify the SNMP community. Furthermore, common default community values, such as public and private, are discouraged by a warning message.

  • For all SNMP V3 subscribers (type=v3 or type=v3ASR), the following SHA2 authentication protocols are available: SHA-224, SHA-256, SHA-384, and SHA-512.

    These protocols may be specified when adding a user for SNMP V3 subscriptions. For example:

    CellCLI> alter cell snmpuser.exampleuser512=(authprotocol='SHA-512',authpassword=*)

Parent topic: What's New in Oracle Exadata System Software Release 24.1