Knowledge Base
cancel
Showing results for 
Search instead for 
Did you mean: 

After replacing Automation Server hardware the SNMP "msgAuthoritativeEngineID" changes

Issue

After replacing Automation Server hardware the SNMP "msgAuthoritativeEngineID" changes, is this a possible security breach?

Environment

Automation Server

SNMP Management console

Cause

This is intended behaviour and part of the snmpV3 implementation as described in RFC3414

2.2.1. msgAuthoritativeEngineID

The msgAuthoritativeEngineID value contained in an authenticated message is used to defeat attacks in which messages from one SNMP engine to another SNMP engine are replayed to a different SNMP engine. It represents the snmpEngineID at the authoritative SNMP engine involved in the exchange of the message.

When an authoritative SNMP engine is first installed, it sets its local value of snmpEngineID according to an enterprise-specific algorithm (see the definition of the Textual Convention for SnmpEngineID in the SNMP Architecture document [RFC3411]).

Resolution

The handling of this is not a StruxureWare Building Operation server activity. This is standard functionality as defined by the Automation Server's Linux platform and net-snmp protocol stack.

Tags (1)
Labels (1)
Version history
Revision #:
1 of 1
Last update:
‎2018-09-10 02:21 PM
Updated by: