Versions Compared

Old Version 20

changes.mady.by.user Ross Tanner

Saved on

compared with

New Version 21

changes.mady.by.user Mitchell Saunders

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Code Block
/usr/local/nmis9/bin/admin/testtests.pl act=snmp node=NODENAME

...

Vendor / Operating SystemSHAAESNMIS Considerations
Cisco IOSSHA1AES256aes256c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
SHA1AES192aes192c needs to be configured as the entry.configuration.privprotocol value in NMIS
SHA1AES128
Cisco NX-OSSHA1AES128
SHA256AES128
FortinetSHA1AES
SHA224AES256 Ciscosha224 needs to be configured as the entry.configuration.authprotocol  value in NMIS value AND aes256c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
SHA256AES256 Ciscosha256 needs to be configured as the entry.configuration.authprotocol  value in NMIS value AND aes256c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
SHA384AES256 Ciscosha384 needs to be configured as the entry.configuration.authprotocol  value in NMIS value AND aes256c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
SHA512AES256 Ciscosha512 needs to be configured as the entry.configuration.authprotocol  value in NMIS value AND aes256c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
Palo AltoSHA1AES128
SHA224AES128
SHA256AES128
SHA384AES128
SHA224AES192aes192c needs aes192c needs to be configured as the entry.configuration.privprotocol value in NMIS
SHA256AES192aes192c needs aes192c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
SHA256AES256aes256c needs to be configured as the entry.configuration.privprotocol value in NMIS
SHA384AES192aes192c needs to be configured as the entry.configuration.privprotocol value in NMIS
SHA384AES256aes256c needs aes256c needs to be configured as the entry.configuration.privprotocol  value in NMISvalue
NET-SNMP (Tested on v5.8 with Ubuntu 20.04)SHA512AES128sha512 needs to be configured as the entry.configuration.authprotocol value

You may notice that when configuring SNMPv3 on a (for example) Cisco IOS device that there is not an explicit AES192C/AES256C in the command, rather it is needed to be defined as AES 192 and/or AES 256.

...