NetWorker: SNMPv3 for Data Domain SNMP Monitoring

• Data Domain SNMP monitoring is configured through the NetWorker Management Console (NMC).
• Security scanner is detecting a security vulnerability due to SNMPv1/v2 usage

Readable SNMP Information
SNMP GETBULK Reflected Distributed Denial-of-Service Vulnerability.
Obsolete Software: SNMP Protocol Version Detected

Disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication.

• Authentication ensures that only the intended recipient reads the traps. As messages are created, they are given a special key that is based on the EngineID of the entity. The key is shared with the intended recipient and used to receive the message.
• Privacy encrypts the SNMP message payload to prevent unauthorized users from reading it. Any intercepted traps are filled with garbled characters and are unreadable. Privacy is especially useful in applications where SNMP messages must be routed over the Internet.

Data Domain offers SNMPv3 configuration options, but SNMPv3 cannot be configured when setting up NetWorker monitoring of the Data Domain.

Request for Enhancement (RFE) NWI-1312 has been opened for added functionality; include options for SNMPv3 Data Domain monitoring within NetWorker. Engage your Dell Sales Account representative if you would like to track this RFE.