1.5.8 Set 'snmp-server enable traps snmp'

Information

SNMP notifications can be sent as traps to authorized management systems.

Rationale:

SNMP has the ability to submit traps .

Impact:

Organizations using SNMP should restrict trap types only to explicitly named traps to reduce unintended traffic. Enabling SNMP traps without specifying trap type will enable all SNMP trap types.

Solution

Enable SNMP traps.

hostname(config)#snmp-server enable traps snmp authentication linkup linkdown coldstart

Default Value:

SNMP notifications are disabled.

See Also

https://workbench.cisecurity.org/files/3829

Item Details

Category: ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|AC-18, 800-53|SC-23, CSCv7|11.7

Plugin: Cisco

Control ID: 4cecaafc17c8eedee8a3cad77e9b8a2165aba0f6518850ebf06c99c2a2d6f329