Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

public@1 authentication failure trap

Hi

I have some 3550's running VLAN's and I am using Aprisma Spectrum as my NMS.

Every so often the NMS sends and SNMP request with <public>@1 for comm string.

I have looked on CCO and I understand that this is used to get specfic variables from switches with VLAN's.

The problem I am having is that whenever the NMS does this the switch sends an authentication failure trap.

Is there something I need to do on the switch to get it to accept this comm string

1 ACCEPTED SOLUTION

Accepted Solutions

Re: public@1 authentication failure trap

what is the snmp config on your switch and which SW version does the switch has.

11 REPLIES
Bronze

Re: public@1 authentication failure trap

For Vlan 1, you don't need community index. Simply use the community itself.

New Member

Re: public@1 authentication failure trap

Ok I used a bad example I am actually getting @ where is each of the VLAN's configured on the switch

Bronze

Re: public@1 authentication failure trap

You could have run into following bugs. Give us the IOS image version would help

CSCdz46877

Externally found moderate defect: Closed (C)

Authentication Traps wrongly generated for indexed communities

CSCdz46877

Externally found moderate defect: Closed (C)

Authentication Traps wrongly generated for indexed communities

Re: public@1 authentication failure trap

do you get the authentication failure trap for every VLAN configured on the switch? Could it be that you only get the traps if your NMS tries to access vlan information for a vlan the switch does not have active ports in?

New Member

Re: public@1 authentication failure trap

Martin,

I am getting them for vlans which have active ports and vlans that do not.

chris

New Member

Re: public@1 authentication failure trap

I have run a snmp debug on the switch and I am seeing

snmp requests with public@1 coming from the NMS. As the switch only expects to seeing public for VLAN 1 could it be this request that is causing the problem

New Member

Re: public@1 authentication failure trap

Footnote: hopefully that was an example and you are not using public as your community string.. It is a good security practice to NOT use public/private for your community strings and put an ACL to restrict snmp to known snmp managers.

Re: public@1 authentication failure trap

what is the snmp config on your switch and which SW version does the switch has.

New Member

Re: public@1 authentication failure trap

I have found some info on Aprisma's website. It appears that this is a bug in either IOS or Spectrum. Cisco and Aprisma are working on it.

Thanks to all

New Member

Re: public@1 authentication failure trap

I have this error too, but I am using Openview and 3550 Switch; to aviod this error temporarily, using the following command:

snmp-server community @ RO

New Member

Re: public@1 authentication failure trap

If you are running IOS 12.1(20)EA1 see Bug CSCee13863.

193
Views
0
Helpful
11
Replies
CreatePlease to create content