Hello All,
We are upgrading our switches to SNMP v3.
What do we need to consider (in relation to comms with DM) when we upgrade the switches please?
What authentication/encryption does v9.5 support please?
Do we need to make any changes on the DMAs to support SNMPv3 please?
Rgds,
Mark
Indeed, and not only on the DMA. On the side of the device it also requires CPU resources. There are situations where the polling of the device needed to be slowed down due to the CPU usage, so you might want to take a look at the resource usage of the device itself (if it’s possible to access that data of course) to see the difference between SNMPv2 and SNMPv3.
Hi,
If you're using 9.5 main release then you might want to consider upgrading to 9.5.3 feature release or 9.6 main release as from then onwards it's possible to switch the SNMP version of an element without having to upload a new protocol version. For DataMiner versions prior to 9.5.3 a protocol modification is needed.
The following Authentication algorithms are supported:
MD5, SHA, SHA 224, SHA 256, SHA 384, SHA 512
The following Encryption algorithms are supported:
DES, AES 128, AES 192, AES 256
(will need to confirm though which ones were also available in 9.5, will come back to that one)
Before DataMiner 9.6.12 SNMPv3 supports only MD5 and SHA for authentication and AES128 and DES for encryption.
The best encryption and ease of changing the existing elements without a driver modification would be achieved by updating the DataMiner to 9.6.12 feature release or 10.0 main release
Small side note: SNMP v3 communication uses encryption, and to encrypt and decrypt the messages extra CPU cycles are needed. If you have a lot of elements you switch to SNMP v3, it is possible you will notice an increase of CPU usage on the DMA…