NS20 SNMP Community

Hi,

Please check the document " Configuring Celerra Events and Notifications "

https://support.emc.com/docu10547_Configuring-Celerra-Events-and-Notifications-6.0.41.pdf?language=en_US

Let me know if this helps

Thanks

Vanitha

My internal Qualys scan report shows the SNMP vulnerability on the CIFS server. There is no such option to enable SNMP on CIFS server. Following is the information on the vulnerability.

EOL/Obsolete Software SNMP Version Detected

THREAT:

Simple Network Management Protocol (SNMP) is an "Interrnet-standard protocol for managing devices on IP networks."

The authentication of clients of earlier versions of SNMP is performed only by a "community string", in effect a type of password, which is transmitted

in cleartext.

Earlier versions of SNMP are considered obsolete by the Internet Engineering Task Force.

IMPACT:

N/A

SOLUTION:

Disable SNMPv1/2c authentication. Use SNMP version 3 authentication

SNMPv3 provides additional security features:

Confidentiality - Encryption of packets to prevent snooping by an unauthorized source.

Integrity - Message integrity to ensure that a packet has not been tampered with in transit including an optional packet replay protection mechanism.

Authentication - to verify that the message is from a valid source.

Workaround:

As a temporary measure, block access to SNMP services at the network perimeter.

In situations where blocking or disabling SNMP is not possible,restrict all SNMP access to separate, isolated management networks that are not

publicly accessible.

RESULTS:

public allows SNMPv2c access which is an obsolete version.

See the SNMPv3 manual and configure SNMPv3 which will remove the public access