1.11.4 Ensure 'SNMP traps' is enabled - authentication

Information

Enables SNMP traps to be sent to the NMS

Rationale:

The purpose of the SNMP service is to monitor in real time the events occurring on systems in order to meet the security requirement of availability of systems and services. The traps are SNMP notifications sent to the NMS and should be enabled in order to be sent and processed by the NMS. The NMS will then provide a comprehensive aggregation and reporting of events generated, thus helping administrator.

Solution

Run the following command to enable SNMP traps

HOSTNAME(CONFIG)# SNMP-SERVER ENABLE TRAPS SNMP AUTHENTICATION
HOSTNAME(CONFIG)# SNMP-SERVER ENABLE TRAPS SNMP COLDSTART
HOSTNAME(CONFIG)# SNMP-SERVER ENABLE TRAPS SNMP LINKDOWN
HOSTNAME(CONFIG)# SNMP-SERVER ENABLE TRAPS SNMP LINKUP

See Also

https://workbench.cisecurity.org/files/1903

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-2, CSCv7|11.1

Plugin: Cisco

Control ID: 33dffe5908e2dee932f6d5b94472a29f2b071cde40f2c44c5c5bd48926b156e7