04-03-2013 07:56 AM
Our applications team ran a Vulnerability scan on some of there servers, and a recommendation was to:
Disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication
Can someone tell me how I can do this ???
=> ps -ef |grep -i snmp | grep -v grep
root 4529 1 0 Dec 10 ? 7:08 /usr/sbin/snmpdm
root 4573 1 0 Dec 10 ? 2:49 /usr/lbin/cmsnmpd
=> find / -name snmp*.conf
04-08-2013 01:50 AM
The HP-UX standard SNMP agent does not support SNMP version 3.
You should evaluate whether or not you need SNMP at all in your environment.
If you don't need it, disable it.
If you need SNMP, you will need to install Net-SNMP as a replacement for the standard SNMP agent, and configure it to accept SNMPv3 only. It is available for free from HP in the Internet Express kit: