LMS 4.2 and SNMPv3 traps
Hello,
Does LMS4.2 or better the DFM of LMSv4.2 support SNMPv3 traps? I read in lms42rel.pdf => In this release, Trap support is provided for SNMPv3 configured devices, SNMPv2 configured devices, unknown devices, and non-Cisco devices.
If yes, do we need to provide the SNMP Engine-IDs of target devices sending traps so that LMS can decrypt the traps or will LMS deploy the Engine-IDs from the poll cache to the DFM trap receiver? If manual Engine-ID maintanance is required, where in LMS can we type in the Engine-ID's?
thx for answers in advance,
Steffen
Seems the SNMP v3 config is not correct.
Please see my comments inline (in bold blue) as per your config, in what i think is incorrect:
snmp-server view LMS iso included --> correct
snmp-server view LMS ####at excluded --> dont know if #'s are by mistake
snmp-server view NMS snmpUsmMIB excluded --> Not sure if NMS is typo or you made a new view after LMS.
snmp-server view LMS snmpVacmMIB excluded --> correct
snmp-server view LMS snmpCommunityMIB excluded --> correct
snmp-server group LMS v3 priv read v3read write v3write notify LMS `--> Incorrerect, as after read and write you should have a SNMP View which is configured with "snmp-server view" command, which is either LMS or NMS in your case. There is no v3read or v3write configured.
snmp-user LMS LMS v3 auth md5 authPW priv aes 128 privPW -->Not sure if "snmp-user" is again a typo, else everything is correct.
snmp-server host x.x.x.x traps version 3 priv NMS --> There is no user as 'NMS'. after priv it should be either "SNMPv1/v2c community string or SNMPv3 user name". I dont see any username as NMS, as per config it should be LMS.
-Thanks
Similar Messages
-
SNMPv3 Traps Nexus and Engine ID
I am trying to configure SNMPv3 TRAPS on Cisco Nexus running 5.2 NxOS. I need to be able to configure an SNMP Engine ID, but the OS appears to only support Engine ID for informs, not traps. Is there a way to configure the engine ID for SNMPv3 TRAPS in Nexus?
The SNMP manager must know the user credentials (authKey/PrivKey) based on the SNMP engineID of the Cisco Nexus 5000 Series switch to authenticate and decrypt the SNMPv3 messages.
You can configure EngineID with individual command or with SNMP v3 user :
Individual:
snmp-server engineID local 123456789012345678901234
SNMP v3 User :
switch(config)# snmp-server user name [auth {md5 | sha} passphrase [auto] [priv [aes-128] passphrase] [engineID id] [localizedkey]]
Example :
snmp-server user NMS auth sha abcd1234 priv abcdefgh engineID 00:00:00:63:00:01:00:a1:ac:15:10:03
The engineID format is a 12-digit colon-separated hexadecimal number.
You can check the existing EngineID using show snmp engineID.
You dont have to bind EngineID with either Trap or Inform as such in configuration, in snmp v3 as it is common configuration for both :
switch(config)# snmp-server host ip-address {traps | informs} version 3 {auth | noauth | priv} username [udp_port number]
The above command configures snmp v3 traps or informs. The username can be any alphanumeric string up to 255 characters. The UDP port number range is from 0 to 65535.
-Thanks
Vinod
**Encourage Contributors. RATE them.** -
LMS 3.1 and CiscoView 6.1.8 not swhowing 10Gb modules
Hi!.
We´ve got a CiscoWorks (LMS 3.1) with CV 6.1.8 and it doesn´t display the new installed 10Gb (X2-10Gb-SR=) modules in the Catlyst 6509E chassis and Catalyst 3750E, what can I do to fix it?
Thanks.Hi ,
Upgarde the LMS to LMS 3.2 and then check the issue..
Download link for LMS 3.2:
https://cisco.mediuscorp.com/market/networkers/productView.se.work?/nxt/rcrs/proieidentity/=17651
Note : you do not need a new liense for LMS 3.2 , your existing license will just work fine
Thanks
Afroj -
LMS 3.2 and MS SCOM and SCCM
Is there any recommendation regarding installation of CW LMS 3.2 and MS SCOM and SCCM on the same server?
This was not tested internally, so I cannot say whether or not there are any conflicts or problems. If possible, consider virtualizing LMS on one VM with the MS managers on another VM. Provided resources on the hardware are sufficient, this would be the safest course if all suites need to be on the same physical server.
-
Lms 3.2 and window server 2008 r2 standard
we have bought lms 3.2 and window server 2008 r2 standard. Now we know, it cant be used togetther
Could we upgrade to lms 4.0.1 ? If so, how can we do ?
thank you.
Duyen.Correct, LMS 3.2 is not supported on Windows 2008 R2. You can upgrade to LMS 4.0 (which is supported on R2), but that is not a free upgrade from LMS 3.x. You can, however, download a free 90-day eval of LMS 4.0 from http://www.cisco.com/go/nmsevals .
It sounds like you need to contact your reseller or account manager to see what they can do. If you just purchased LMS 3.2, you may be able to get a free or discounted upgrade to 4.0. -
Lms 3.2 and window server 2008 standard: License Server/Daemon Manager is down
LMS 3.2 and window server 2008 standard, get error when we try
Khi truy nhập vào menu chức năng:
License Server/Daemon Manager is down. Please check license.log for more information.
access licensing:
Error communicating with License Server. License Server may be down. Please start the License Server, then refresh the page.
Lincense.txt is file log of LMS
Must I have to active window server 2008 first ?
thank you very much ?Hi ,
--Add the Casuser to the Administrator Group
and then reset the casuser password:
1. Go to CSCOpx\setup\support> and run the following command:
resetCasuser.exe
2. Restart the daemon manager:
Net stop crmdmgtd
Net start crmdmgtd
Let me know how it works
If above did not help then send me the syslog.log and screen shot of the EventViewer with the latest Application Error that you see there.
--also screen shot of the below directory :
NMSROOT\etc\license
Thanks
Afroj -
LMS 3.2 and QPM 4.1.2
Hi Forum,
my customer play to deploy LMS 3.2 and last QPM 4.1.2 on the same server.
In the documentation of QPM only Common Services 3.2 are mentioned. Does this match with LMS 3.2 - since LMS utilizes CS 3.3?
Does anybody know something about that?
Thanks a lot in advance.
FrankNo, you cannot install these two on the same server. Doing so will break both products. You must dedicate a server to each since they require different versions of Common Services.
-
Hi experts,
I'm searching some information about the possebilities with SolMan and SNMP traps.
I know that it is possible to send SNMP traps from SolMan to e.g. an external monitoring tool, to send alert information (CCMS/RZ20) to this monitoring tool.
But is it possibel to recieve SNMP traps in SolMan and e.g. create Service Desk tickets out of them?
Thanks
ThomasThomas,
Can you please share your experience about sending SNMP traps to solution manager? I am trying to find information on how to configure Solution Manager for receiving the SNMP traps. Please guide me on this.
Thanks
DG -
LMS 2.1 and nGenius Real-Time Monitor 1.4
Dear NetPros,
Is the LMS 2.1 and the nGenius Real-Time Monitor 1.4 can be installed on the same system?
Regards,
SteveYes, but not recommended. Keeping them on separate servers will be more beneficial.
-
LMS 4.0 and Prime Infrastructure..!
Hi,
I am using LMS 4.0 and as the licenses got expired I came to know that I need to buy Prime Infrastructure license as LMS 4.0 reached End of life.
So now if I buy the prime infrastructure licenses, will it work on LMS 4.0 or I need to upgrade? and how can I get the upgrade?
Thanks..!You would need to upgrade. Prime Infrastructure 1.2 has LMS and WAN buildt in.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered" -
Configuring rcp on ciscoworks LMS 2.5 and cisco 3560 switch
Dear All,
i am having LMS 2.5 and nearly 50 cisco 3560 in my network. And I want to configure rcp. How can I do it. Kindly help
regards,
RAHIL KHANHave a look at this link for the server:
http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_resource_manager_essentials/4.0/user/guide/swmgt.html#wp1328314
For the device you'll need something like:
username cwuser password 7 000C1C0A05
ip rcmd rcp-enable
ip rcmd remote-host cwuser 172.17.246.221 cwuser enable
ip rcmd remote-username cwuser -
Hello Experts;
I tried reading on the following terms but i am still not clear on it...Can anyone help explain and give examples on what a fan trap and chasm trap is. Thank youHi,
Both involve 3 entities, connected by parent-child (that is, one-to-many) relationships.
A Chasm Trap has a parent with 2 children (siblings).
A Fan Trap has a parent, a child, and a grandchild.
Another way of looking at it is that you have 3 tables, A, B and C: A is related to B, and B is related to C.
A Chasm Trap occurs when B is the parent of both A and C (that is, each row in B can be related to many rows in A, and it can also be related to many rows in C.)
A Fan Trap ioccurs when B is the parent of one of the other tables, but the child of the other.
See http://everythingoracle.com/obieefanch.htm
WARNING: Some people reverse the definitions as given above. Some people even use either term for either kind of relationship, indiscriminantly. Be careful when reading anything using these terms. -
Hi All,
We are seeing unidentified traps continuously on the LMS 4.2.3.
Unidentified Trap Generic Trap:6 Specific Trap:1 EnterpriseOid:.1.3.6.1.4.1.9.9.41.2
What are these traps and how to avoid the same. as these traps are coming from all the devices in the network.
Regards,
ChannaHello Channa,
the 'Unidentified Trap' Alerts that you provided :
NOTIFICATION ORIGINATOR = Fault Management Module
The EnterpriseOid in this Alert tells me that this is the cisco syslog trap :
.1.3.6.1.4.1.9.9.41.2.0.1
clogMessageGenerated OBJECT-TYPE
-- FROM CISCO-SYSLOG-MIB
TRAP
VARBINDS { clogHistFacility, clogHistSeverity,
clogHistMsgName, clogHistMsgText, clogHistTimestamp }
DESCRIPTION "When a syslog message is generated by the device a
clogMessageGenerated notification is sent. The
sending of these notifications can be enabled/disabled
via the clogNotificationsEnabled object."
This tells me that you have configured this device with 'snmp-server enable trap syslog' , which means that every syslog message that is generated on the device will also be sent as an snmp trap.
Is there a specific reason why the sending of syslog messages as an snmp trap has been enabled on this device (and others) ?
To stop LMS generating an Alert for every syslog message I would recommend that you disable this device from sending syslog traps to LMS. If there are multiple devices sending syslog traps to LMS then the sending of these traps to LMS should be disabled on all such devices.
Thanks-
Afroz
***Ratings Encourages Contributors **** -
LMS 4.2.1 - unidentified traps in fault monitor
MY LMS, under fault monitor, shows many messages (actually hundreds), "Unidentified Trap Generic Trap:6 Specific Target:1 EnterpriseOid:.1.3.6.1.4.1.9.9.41.2"
This OID leads me down the CISCO-SYSLOG-MIB.my, to ciscoSyslogMIBNotification.
vestigaiton looks like this MIB actually doesn't do anything (other than generate a fault message on LMS).
Anyone have any ideas how I can get rid of this fault in LMS, such as adding the CISCO-SYSLOG-MIB.my to my LMS so that it can at least identify the OID being sent.
Along these lines, I have downloaded the above referenced MIB, and have tried in LMS to upload it, but the "upload MIB" functionality ONLY allows the loading of MIBS which already exist on LMS (only choose a server side path).
Any ideas would be aprpeciated.
JoeHi Joe,
check the below link for more results on Unidentified traps:
http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_device_fault_manager/3.1
/user/guide/TrapFwd.html#wpxref57860
It looks like "snmp-server enable traps syslog" is enabled on your devices, and this will appears as Unidentified trap , you can stop this by change the configuration on the Device , or disable the "InformAlarm" from the notification Group under : Admin > Network > Notification and Action Settings > Fault Notification Group From the following Link you can check the traps that will generate "INFORM ALARM" event :
I hope this will help
Thanks-
Afroz -
Ciscoworks LMS 4.0 DFM Custom Traps
Hello,
We want to use Ciscoworks LMS 4.0 for Access Control List Monitoring. i.e. if we end the ACLs with "log" entry, we may send the ACL deny logs to the Ciscoworks as Syslog or Snmp Trap format.
With "debug snmp packets" command we may observe the packets are sent to the LMS, but the traps don't show up as alarms. Is it possible to observe any trap entry with LMS DFM Fault Manager by customizing the module, because we think the engine of the DFM analyzes the traps and shows some of the traps, not all of the traps are observable.
The command output is as below:
Thanks in Advance,
Best Regards,
Mar 2 10:28:30.028: SNMP: Queuing packet to 10.10.10.1
.Mar 2 10:28:30.028: SNMP: V1 Trap, ent ciscoSyslogMIB.2, addr 10.10.20.1, gen trap 6, spectrap 1
clogHistoryEntry.2.742 = SEC
clogHistoryEntry.3.742 = 7
clogHistoryEntry.4.742 = IPACCESSLOGDP
clogHistoryEntry.5.742 = list 191 denied icmp 10.10.10.1 -> 10.10.20.1 (0/0), 10 packets
clogHistoryEntry.6.742 = 69082382DFM consumes the traps and decides based on its built-in code-book what to do - rise one of the predefined Events or just silently ignore it. The best DFM can do is forward the trap as-is to another trap receiver.
Perhaps the LMS Syslog-Server can do what you want and lauch automated actions (like scripts or e-mail) based on certain criteria.
But you should take care of the underlying syslog file and keep its size under control with logrot.pl utility.
The online help of LMS should give you more details on the syslog capabilities or this link to the LMS 4.0 Administration Guide:
http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_lan_management_solution/4.0/user/guide/admin/useNotif.html#wp1075603
Maybe you are looking for
-
I am trying to view the two viewlets on the following links and they dont work. http://otn.oracle.com/tech/xml/htdocs/XDBDemo1_viewlet.htm http://otn.oracle.com/tech/xml/htdocs/XDBDemo2_viewlet.html
-
SAVE AS BUTTON WITH JAVA SCRIPT FOR MOUSE UP EVENT
Please any one help with complete code for "SAVE AS" button to auto save the acrobat form in a user specified path with unique name or incremental name.Please post only full script for MOUSE UP event.
-
Transferring files stored in a network directory to SAP.
hi Guys, my requirement is this is an inbound interface, transferring PDF files stored in a network directory to SAP and web direcotry. i think this is something releated to system call, can some one give me some idea on it or from soemwhere i could
-
Is there anyway to stop the auto-refresh when using HsGetValue?
Hi there I am just wondering if there is a way to stop the automatic refresh when opening a workbook that has HsGetValue functions? The issue I am having is that when you create a report in Smart View using the HsGetValue function, save it down, disc
-
when trying to save a file which I changed, the file will not save and I receive the following. the prodedure entry point PropVariantToString could not be located in the dynamic link library Propsys.dll New Windows 7 computer, new Acrobat standard in