Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4423
Views
0
Helpful
3
Replies

SNMPv3 issues

JoshGreen07630
Level 1
Level 1

‎06-25-2021 06:39 AM

Hi all, 

 

I'm just trying to t-shoot an on-going SNMPv3 issue with a customer, we seemingly can't seem to monitor their hardware from our monitoring system but from what I can see in the config and debugs, all should be working as expected? 

 

I have created the snmp-server group 

I have created the snmpv3 user (mapped to the group) with the Auth SHA <password> and Priv AES128 <password>

 

I have ran the following debugs:

debug snmp packet 

debug snmp detail 

 

and I get the following logs (I only managed to grab a snippet so they may be insufficient) 

 

switch>#
*Jun 22 15:41:53.896 BST: v3 packet security model: v3 security level: priv
*Jun 22 15:41:53.896 BST: username: XYZ
*Jun 22 15:41:53.896 BST: snmpEngineID: 800000090300706E6D811C00
*Jun 22 15:41:53.896 BST: snmpEngineBoots: 13 snmpEngineTime: 2684373
*Jun 22 15:41:53.897 BST: SNMP: Response, reqid 1117930302, errstat 16, erridx 0
ciscoMgmt.156.1.1.2.1.2 = NULL TYPE/VALUESrParseV3SnmpMessage: Failed.

*Jun 22 15:41:53.900 BST: SNMP: Packet sent via UDP to <Monitoring server>
*Jun 22 15:41:53.901 BST: SNMP: Packet sent via UDP to <Monitoring server>
*Jun 22 15:41:54.414 BST: SNMP: Get-bulk request, reqid 1117930303, nonrptr 0, maxreps 10
mib-2.25.4.2.1.2 = NULL TYPE/VALUESrDoSnmp: received get-bulk pdu
make_error_pdu: Authorization Error.

*Jun 22 15:41:54.416 BST:
Incoming SNMP packet
*Jun 22 15:41:54.416 BST: v3 packet security model: v3 security level: priv
*Jun 22 15:41:54.416 BST: username: XYZ
*Jun 22 15:41:54.417 BST: snmpEngineID: 800000090300706E6D811C00
*Jun 22 15:41:54.417 BST: snmpEngineBoots: 13 snmpEngineTime: 2684373
*Jun 22 15:41:54.417 BST: SNMP: Response, reqid 1117930303, errstat 16, erridx 0
mib-2.25.4.2.1.2 = NULL TYPE/VALUE
*Jun 22 15:41:54.420 BST: SNMP: Packet sent via UDP to <Monitoring Server>
*Jun 22 15:41:54.437 BST: SNMP: Packet received via UDP from <Monitoring Server> on Vlan100

 

The username and snmpEngineID are correct so I'm not sure what the Authorization Error means?

 

Any help would be appreciated.

 

Thanks,
Josh

Labels:
0 Helpful
3 Replies 3

marce1000
Hall of Fame
Hall of Fame

‎06-25-2021 10:36 PM

 

 - Check this thread :

          https://community.cisco.com/t5/network-management/snmpv3-not-working/td-p/2934301

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

JoshGreen07630
Level 1
Level 1
In response to marce1000

‎06-28-2021 01:12 AM

Hello,

 

I had previously checked that article you had linked but in that discussion the issue is that the EngineID is not configured, resulting in SNMP failure. In my instance, the EngineID is fine but there is something else not authenticating properly. 

 

Any ideas as to why that could be?

 

Thanks,

Josh

0 Helpful

marce1000
Hall of Fame
Hall of Fame
In response to JoshGreen07630

‎06-28-2021 01:38 AM

 

 - snmp v3 implementations have sometimes been buggy on cisco devices. Have a look at  the current installed software version for your particular device  - use an advisory release if applicable. Check if that can help.

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful
Customers Also Viewed These Support Documents