Browse Prior Art Database

An Administrative Infrastructure for SNMPv2 (RFC1909)

IP.com Disclosure Number: IPCOM000004152D
Original Publication Date: 1996-Feb-01
Included in the Prior Art Database: 2000-Sep-13
Document File: 16 page(s) / 43K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

K. McCloghrie: AUTHOR

Abstract

A management system contains: several (potentially many) nodes, each with a processing entity, termed an agent, which has access to management instrumentation; at least one management station; and, a management protocol, used to convey management information between the agents and management stations. Operations of the protocol are carried out under an administrative framework which defines authentication, authorization, access control, and privacy policies.

This text was extracted from a ASCII Text document.
This is the abbreviated version, containing approximately 7% of the total text.

Network Working Group K. McCloghrie, Editor

Request for Comments: 1909 Cisco Systems, Inc.

Category: Experimental February 1996

An Administrative Infrastructure for SNMPv2

Status of this Memo

This memo defines an Experimental Protocol for the Internet

community. This memo does not specify an Internet standard of any

kind. Discussion and suggestions for improvement are requested.

Distribution of this memo is unlimited.

Table of Contents

1. Introduction ................................................ 2

2. Overview .................................................... 2

2.1 Contexts ................................................... 3

2.2 Authorization: Access Rights and MIB Views ................. 3

2.3 Authentication and Privacy ................................. 4

2.4 Access Control ............................................. 5

2.5 Security Models ............................................ 5

2.6 Proxy ...................................................... 5

3. Elements of the Model ....................................... 7

3.1 SNMPv2 Entity .............................................. 7

3.2 SNMPv2 Agent ............................................... 7

3.3 SNMPv2 Manager ............................................. 8

3.4 SNMPv2 Dual-Role Entity .................................... 8

3.5 View Subtree and Families .................................. 9

3.6 MIB View ................................................... 9

3.7 SNMPv2 Context ............................................. 10

3.7.1 Local SNMPv2 Context ..................................... 11

3.7.2 Proxy SNMPv2 Context ..................................... 11

3.8 SNMPv2 PDUs and Operations ................................. 12

3.8.1 The Report-PDU ........................................... 12

3.9 SNMPv2 Access Control Policy ............................... 13

4. Security Considerations ..................................... 13

5. Editor's Address ............................................ 14

6. Acknowledgements ............................................ 14

7. References .................................................. 14

Appendix A Disambiguating the SNMPv2 Protocol Definition ....... 16

Appendix B Who Sends Inform-Requests? ......................... 17

Appendix B.1 Management Philosophy ............................. 17

Appendix B.2 The Danger of Trap Storms ......................... 17

Appendix B.3 Inform-Requests ................................... 18

1. Introduction

A management system contains: several (potentially many) nodes, each

with a processing entity, termed an agent, which has access to

management instrumentation; at least one management station; and, a

management protocol, used to convey management information betwee...