?
Solved

Vmware management asssistant disable snmp access

Posted on 2013-06-10
3
Medium Priority
?
1,271 Views
Last Modified: 2013-06-27
Our vulnerability system(QUALYS) reported the following for VMA 4.1U1 that we are having:  
EOL/Obsolete Software SNMP Version Detected (4) ,
THREAT:
Simple Network Management Protocol (SNMP) is an "Interrnet-standard protocol for managing devices on IP networks."
The authentication of clients of earlier versions of SNMP is performed only by a "community string", in effect a type of password, which is
transmitted in cleartext.
All Servers Vulnerabilities by level page 29
The Internet Engineering Task Force (IETF) has designated SNMPv3 a full Internet standard, the highest maturity level for an RFC. It
considers earlier versions to be obsolete designating them ("Historic"). (http://www.ietf.org/rfc/rfc3410.txt)
IMPACT:
The system is at high risk of being exposed to security vulnerabilities. Since the vendor no longer provides updates, obsolete software is
more vulnerable to viruses and other attacks.
SOLUTION:
Disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication

Open in new window


If I understand properly there is snmp clinet which is running on the linux system and it accept communications through old snmp protocol.

Could you help me how to fix the issue.
0
Comment
Question by:dedri
  • 2
3 Comments
 
LVL 125
ID: 39234815
Try replacing with vMA 5.1

https://my.vmware.com/web/vmware/details?downloadGroup=VSP510-VMA-510&productId=285

Do not be surprised if you also get alarms with 5.1.
0
 

Author Comment

by:dedri
ID: 39234843
any idea how to fix the problem?
0
 
LVL 125

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 2000 total points
ID: 39234909
Again, there may not be an issue, other than what is being observed by your over zealous scanner, other than upgrade to a later version of vMA 5.1, I do not believe updates are available for vMA.

What is the risk to your organization, that this get's red flagged?

It's highly likely that vMA 4.1 does not supported v3 of SNMP, are you using SNMP in the vMA 4.x appliance, if not disable it.

SNMP has been removed from vMA 5.x. It's no longer supported.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article will go through how to backup a vPostgres DB from a broken vCenter Appliance and restore to a new vCenter Appliance.
This article explains how to use the rsync command to create backups and sync data across hosts. Rsync is a very useful command that is often used to copy data, make backups, migrate hosts, and bridge the gap between site staging and production envi…
Advanced tutorial on how to run the esxtop command to capture a batch file in csv format in order to export the file and use it for performance analysis. He demonstrates how to download the file using a vSphere web client (or vSphere client) and exp…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Suggested Courses

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question