CISCO-TRUSTSEC-MIB

        This MIB module is for the configuration of a network
device on the Cisco Trusted Security (TrustSec) system.
        
TrustSec secures a network fabric by authenticating and
authorizing each device connecting to the network, allowing for
the encryption, authentication and replay protection of data
traffic on a hop by hop basis.
        
Glossary :
        
TrustSec - Cisco Trusted Security
        
EAP-FAST - Extensible Authentication Protocol-Flexible
           Authentication via Secure Tunneling (RFC 4851)
        
PAC - Protected Access Credential
      A credential dynamically downloaded from the
      Access Control Server.
        
ACS - Access Control Server
        
SGT - Security Group Tag
      A tag identifying its source, assigned to a packet on
      ingress to a TrustSec cloud, and used to determine
      security and other policy to be applied to it along
      its path through the cloud.

Imported Objects

ciscoMgmt	CISCO-SMI
CtsCredentialRecordType, CtsAcsAuthorityIdentity, CtsPasswordEncryptionType, CtsGenerationId, CtsSecurityGroupTag	CISCO-TRUSTSEC-TC-MIB
SnmpAdminString	SNMP-FRAMEWORK-MIB
MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP	SNMPv2-CONF
OBJECT-TYPE, NOTIFICATION-TYPE, Counter32, Unsigned32, MODULE-IDENTITY	SNMPv2-SMI
RowStatus, DateAndTime, TruthValue	SNMPv2-TC

Objects

ciscoTrustSecMIB		.1.3.6.1.4.1.9.9.730
ciscoTrustSecMIBNotifs		.1.3.6.1.4.1.9.9.730.0
ciscoTrustSecMIBObjects		.1.3.6.1.4.1.9.9.730.1
ctsCacheObjects		.1.3.6.1.4.1.9.9.730.1.1
ctsCacheEnabled	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.1.1
ctsCacheNvStorage	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.1.2
ctsCacheClear	Enumeration	.1.3.6.1.4.1.9.9.730.1.1.3
ctsSgtObjects		.1.3.6.1.4.1.9.9.730.1.2
ctsSecurityGroupTagId	CISCO-TRUSTSEC-TC-MIBCtsSecurityGroupTag	.1.3.6.1.4.1.9.9.730.1.2.1
ctsSgtAssignmentMethod	Enumeration	.1.3.6.1.4.1.9.9.730.1.2.2
ctsCredentialObjects		.1.3.6.1.4.1.9.9.730.1.3
ctsDeviceId	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.3.1
ctsKeystoreRxBadFragmentLengths	SNMPv2-SMICounter32	.1.3.6.1.4.1.9.9.730.1.3.10
ctsKeystoreCorruptions	SNMPv2-SMICounter32	.1.3.6.1.4.1.9.9.730.1.3.11
ctsKeystorePasswordRecordTable		.1.3.6.1.4.1.9.9.730.1.3.13
ctsKeystorePasswordRecordEntry	ctsKeystorePasswordRecordName	.1.3.6.1.4.1.9.9.730.1.3.13.1
ctsKeystorePasswordRecordName	OctetString	.1.3.6.1.4.1.9.9.730.1.3.13.1.1
ctsKeystorePasswordRecordType	CISCO-TRUSTSEC-TC-MIBCtsCredentialRecordType	.1.3.6.1.4.1.9.9.730.1.3.13.1.2
ctsKeystorePacRecordTable		.1.3.6.1.4.1.9.9.730.1.3.14
ctsKeystorePacRecordEntry	ctsKeystorePacRecordName	.1.3.6.1.4.1.9.9.730.1.3.14.1
ctsKeystorePacRecordName	OctetString	.1.3.6.1.4.1.9.9.730.1.3.14.1.1
ctsKeystorePacRecordType	CISCO-TRUSTSEC-TC-MIBCtsCredentialRecordType	.1.3.6.1.4.1.9.9.730.1.3.14.1.2
ctsPacInfoTable		.1.3.6.1.4.1.9.9.730.1.3.15
ctsPacInfoEntry	ctsPacAcsAuthId	.1.3.6.1.4.1.9.9.730.1.3.15.1
ctsPacAcsAuthId	OctetString	.1.3.6.1.4.1.9.9.730.1.3.15.1.1
ctsPacAcsDescription	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.3.15.1.2
ctsPacType	Enumeration	.1.3.6.1.4.1.9.9.730.1.3.15.1.3
ctsPacExpirationTime	SNMPv2-TCDateAndTime	.1.3.6.1.4.1.9.9.730.1.3.15.1.4
ctsPacTimeToRefresh	seconds Unsigned32	.1.3.6.1.4.1.9.9.730.1.3.15.1.5
ctsPacStatus	SNMPv2-TCRowStatus	.1.3.6.1.4.1.9.9.730.1.3.15.1.6
ctsCredentialsClearAll	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.3.16
ctsDevicePasswordType	CISCO-TRUSTSEC-TC-MIBCtsPasswordEncryptionType	.1.3.6.1.4.1.9.9.730.1.3.2
ctsDevicePassword	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.3.3
ctsKeystoreType	Enumeration	.1.3.6.1.4.1.9.9.730.1.3.4
ctsKeystoreFwVersion	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.3.5
ctsKeystoreFwAlerts	SNMPv2-SMICounter32	.1.3.6.1.4.1.9.9.730.1.3.6
ctsKeystoreFwResets	SNMPv2-SMICounter32	.1.3.6.1.4.1.9.9.730.1.3.7
ctsKeystoreRxTimeouts	SNMPv2-SMICounter32	.1.3.6.1.4.1.9.9.730.1.3.8
ctsKeystoreRxBadChecksums	SNMPv2-SMICounter32	.1.3.6.1.4.1.9.9.730.1.3.9
ctsEnvironmentDataObjects		.1.3.6.1.4.1.9.9.730.1.4
ctsEnvDataLastDownloadStatus	Enumeration	.1.3.6.1.4.1.9.9.730.1.4.1
ctsEnvSecurityGroupNameTable		.1.3.6.1.4.1.9.9.730.1.4.16
ctsEnvSecurityGroupNameEntry	ctsEnvSecurityGroupNameSgt	.1.3.6.1.4.1.9.9.730.1.4.16.1
ctsEnvSecurityGroupNameSgt	Unsigned32	.1.3.6.1.4.1.9.9.730.1.4.16.1.1
ctsEnvSecurityGroupNameSgtGenId	CISCO-TRUSTSEC-TC-MIBCtsGenerationId	.1.3.6.1.4.1.9.9.730.1.4.16.1.2
ctsEnvSecurityGroupNameSgtFlag	Bits	.1.3.6.1.4.1.9.9.730.1.4.16.1.3
ctsEnvSecurityGroupName	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.4.16.1.4
ctsEnvSecurityGroupTagId	CISCO-TRUSTSEC-TC-MIBCtsSecurityGroupTag	.1.3.6.1.4.1.9.9.730.1.4.2
ctsEnvSecurityGroupTagGenId	CISCO-TRUSTSEC-TC-MIBCtsGenerationId	.1.3.6.1.4.1.9.9.730.1.4.3
ctsEnvDataLastUpdate	SNMPv2-TCDateAndTime	.1.3.6.1.4.1.9.9.730.1.4.4
ctsEnvDataRefreshInterval	seconds Unsigned32	.1.3.6.1.4.1.9.9.730.1.4.5
ctsEnvDataTimeLeft	seconds Unsigned32	.1.3.6.1.4.1.9.9.730.1.4.6
ctsEnvDataTimeToRefresh	seconds Unsigned32	.1.3.6.1.4.1.9.9.730.1.4.7
ctsEnvDataSource	Enumeration	.1.3.6.1.4.1.9.9.730.1.4.8
ctsEnvDataAction	Enumeration	.1.3.6.1.4.1.9.9.730.1.4.9
ctsNotifsControlObjects		.1.3.6.1.4.1.9.9.730.1.5
ctsSwKeystoreFileErrNotifEnable	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.5.1
ctsSwKeystoreSyncFailNotifEnable	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.5.2
ctsAuthzCacheFileErrNotifEnable	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.5.3
ctsCacheFileAccessErrNotifEnable	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.5.4
ctsSrcEntropyFailNotifEnable	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.5.5
ctsSapRandomNumberFailNotifEnable	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.5.6
ctsNotifsInfoObjects		.1.3.6.1.4.1.9.9.730.1.6
ctsFileErrNotifReason	Enumeration	.1.3.6.1.4.1.9.9.730.1.6.1
ctsSwKeystoreSyncFailNotifReason	Enumeration	.1.3.6.1.4.1.9.9.730.1.6.2
ctsNotifMessageString	SNMP-FRAMEWORK-MIBSnmpAdminString	.1.3.6.1.4.1.9.9.730.1.6.3
ctsCriticalAuthObjects		.1.3.6.1.4.1.9.9.730.1.7
ctsCriticalAuthEnabled	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.7.1
ctsCriticalAuthFallback	Enumeration	.1.3.6.1.4.1.9.9.730.1.7.2
ctsCriticalAuthPeerSgt	CISCO-TRUSTSEC-TC-MIBCtsSecurityGroupTag	.1.3.6.1.4.1.9.9.730.1.7.3
ctsCriticalAuthPeerSgtTrust	SNMPv2-TCTruthValue	.1.3.6.1.4.1.9.9.730.1.7.4
ctsCriticalAuthDefaultPmk	OctetString	.1.3.6.1.4.1.9.9.730.1.7.5
ctsCriticalAuthViewDefaultPmk	OctetString	.1.3.6.1.4.1.9.9.730.1.7.6
ciscoTrustSecMIBConform		.1.3.6.1.4.1.9.9.730.2
ciscoTrustSecMIBCompliances		.1.3.6.1.4.1.9.9.730.2.1
ciscoTrustSecMIBGroups		.1.3.6.1.4.1.9.9.730.2.2

Notifications/Traps

Name	OID	Description
ctsSwKeystoreFileErrNotif ctsFileErrNotifReason	.1.3.6.1.4.1.9.9.730.0.1	A ctsSwKeystoreFileErrNotif is generated when system encounters an error while performing operation on the software keystore file.
ctsSwKeystoreSyncFailNotif ctsSwKeystoreSyncFailNotifReason	.1.3.6.1.4.1.9.9.730.0.2	A ctsSwKeystoreSyncFailNotifReason is generated when system fails to sync software keystore information from the active supervisor to the standby supervisor.
ctsAuthzCacheFileErrNotif ctsFileErrNotifReason ctsNotifMessageString	.1.3.6.1.4.1.9.9.730.0.3	A ctsAuthzCacheFileErrNotif is generated when the system encounters error downloading TrustSec authorization related environment data to a cache file.
ctsCacheFileAccessErrNotif ctsFileErrNotifReason ctsNotifMessageString	.1.3.6.1.4.1.9.9.730.0.4	A ctsCacheFileAccessErrNotif is generated when the system fails to perform open/read/write operation for a TrustSec cache file.
ctsSrcEntropyFailNotif	.1.3.6.1.4.1.9.9.730.0.5	A ctsSrcEntropyFailNotif is generated when the periodic health tests for the CTR-DRBG (Counter- Deterministic Random Bit Generator) implementation fails due to issues with the source entropy.
ctsSapRandomNumberFailNotif ctsNotifMessageString	.1.3.6.1.4.1.9.9.730.0.6	A ctsSapRandomNumberFailNotif is generated when the the system fails to obtain a random number from CTR-DRBG block for SAP (Security Association Protocol) key-counter.