Hot!SNMP OID ACL possible?

Author
J13224
New Member
  • Total Posts : 5
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/07/11 13:50:23
  • Status: offline
2018/12/13 09:53:06 (permalink)
0

SNMP OID ACL possible?

I have a client that recently started using a cloud hosted LOB application with an IPSEC Site 2 Site tunnel.  The  vender wants to be able to connect via SNMP to monitor the interface for any performance or connection issues.
I am not familiar with SNMP on Fortigates but I am concerned about giving too much information.  I don't want them accessing sensitive system/policy OIDs...
The SNMPv3 standard does have provisions for OID user permission (ACL) I think?  Does FortiGate support any of this?  I know it is not exposed in the GUI.
 
Am I being too paranoid?
 
Thanks,
 
#1

2 Replies Related Threads

    emnoc
    Expert Member
    • Total Posts : 5158
    • Scores: 333
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: online
    Re: SNMP OID ACL possible? 2018/12/13 11:22:14 (permalink)
    0

    Am I being too paranoid?

     
     
    ;) yes.... but it's safe to be safer.
     
    What your asking for are snmp-views and I believe FortiOS does not support that  level of views yet to allow certain users  the rights to  read specific OIDs
     
     

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #2
    J13224
    New Member
    • Total Posts : 5
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/07/11 13:50:23
    • Status: offline
    Re: SNMP OID ACL possible? 2018/12/19 16:11:50 (permalink)
    0
    Thanks for the response!
    #3
    Jump to:
    © 2019 APG vNext Commercial Version 5.5