Using SNMP
The SNMP community string is a shared secret between the security appliance and the NMS. The key is
a case-sensitive value up to 32 characters in length. Spaces are not permitted.
(Optional) To set the SNMP server location or contact information, enter the following command:
Step 4
hostname(config)# snmp-server {contact | location} text
Where text defines the SNMP server location or lists contact information.
To enable the adaptive security appliance to send traps to the NMS, enter the following command:
Step 5
hostname(config)# snmp-server enable traps [all | syslog | snmp [ trap ] [...] |
entity [ trap ] [...] | ipsec [ trap ] [...] | remote-access [ trap ]]
Enter this command for each feature type to enable individual traps or sets of traps, or enter the all
keyword to enable all traps.
The default configuration has all SNMP traps enabled (snmp-server enable traps snmp authentication
linkup linkdown coldstart). You can disable these traps using the no form of this command with the
snmp keyword. However, use the clear configure snmp-server command to restore the default enabling
of SNMP traps.
If you enter this command and do not specify a trap type, then the default is the syslog trap. (The default
SNMP traps continue to be enabled along with the syslog trap.)
SNMP traps include:
•
authentication
linkup
•
linkdown
•
coldstart
•
Entity traps include:
config-change
•
fru-insert
•
•
fru-remove
IPSec traps include:
start
•
stop
•
Remote-access traps include:
session-threshold-exceeded
•
To enable system log messages to be sent as traps to the NMS, enter the following command:
Step 6
hostname(config)# logging history
Where level defines the logging severity level.
You must also enable syslog traps using the snmp-server enable traps command.
To enable logging, so that system messages are generated and can then be sent to an NMS, enter the
Step 7
following command:
hostname(config)# logging enable
Cisco Security Appliance Command Line Configuration Guide
42-4
Chapter 42
level
Monitoring the Security Appliance
OL-12172-03