Configuring System-Level SNMP Traps
The system-level trap configuration is always used for alerts that affect Security Admins. It is also used for group-level alerts if no specific group-level configuration exists in KeyControl Compliance Manager.
- Log into the KeyControl Compliance Manager webGUI with with Security Admin privileges.
- In the top right, click the Switch to Appliance Management link.
- In the top menu bar, click Settings.
- In the System Settings section, click SNMP Settings.
-
On the SNMP Settings page, specify the options you want to use.
Options
Field
SNMP Version
Description
Enabled All
Select True if you want KeyControl Compliance Manager to use this SNMP configuration. Server All
The hostname or IP address of the SNMP server. Port
All
The SNMP port number. The default SNMP port is 162.
Version
All
The SNMP version. KeyControl Compliance Manager supports version 2c and version 3.
Note: The rest of the fields displayed in page depend upon the selected version.
User 3
The user ID that should be associated with the trap.
Notification Type
3
This can be:
- Inform—KeyControl Compliance Manager sends the SNMP trap and expects an acknowledgment that the trap was received in return.
- Trap—KeyControl Compliance Manager sends the SNMP trap but does not expect an acknowledgment.
Security Level
3
This can be:
- No Authentication, No Privacy — KeyControl Compliance Manager sends the messages in plain text and no authentication is done by the SNMP server.
- With Authentication, No Privacy — KeyControl Compliance Manager sends the message in plain text but the SNMP server authenticates the message before logging it.
-
With Authentication, With Privacy — KeyControl Compliance Manager encrypts the message before sending it and the SNMP server authenticates the message before logging it.
For encryption, KeyControl Compliance Manager supports AES (Advanced Encryption Standard) or DES (Data Encryption Standard).
Authentication Protocol
3
The type of authentication to use with the SNMP server if one of the authentication options is selected in the Security Level field. KeyControl Compliance Manager supports MD5 and SHA (Secure Hash Algorithm).
Authentication Key
3
The authentication key that KeyControl Compliance Manager should send to the SNMP manager if one of the authentication options is selected in the Security Level field. If you want to view the key in plain text, click the eye icon. Privacy Protocol
3
The privacy protocol to use if With Authentication, With Privacy is selected in the Security Level field. This can be AES or DES.
Privacy Key
3
The privacy key to use if With Authentication, With Privacy is selected in the Security Level field. If you want to view the key in plain text, click the eye icon. Agent Port
All
The port to use for all SNMP Agent Users. The default is port 161.
- When you are finished, click Apply.
-
If you want to test the configuration, click Test SNMP Settings.
Note: The SNMP trap must be enabled and you must apply the settings before you can test the configuration.
- If you want to download the MIB file, click Download MIB File.