IEEE8021-DEVID-MIB

The MIB module for managing an IEEE 802.1AR DevID (Secure Device
Identifier) Module. A DevID comprises: a DevID secret (a private
key) stored confidentially by the DevID module and accessible only 
through operations provided by the module; a DevID certificate 
containing the corresponding public key and a subject name that 
identifies the device; and a (possibly null) certificate chain. Use 
of the DevID module signing operations allows the device to prove 
possession of the DevID secret, and thus assert its identity in
authentication protocols. An initial IDevID provided by the
device supplier can be used directly or can be used to provision
one or more locally significant LDevIDs that reflect authorization 
decisions by the local network administrator with certificate fields 
that record those decisions.
An SNMP agent can manage a network element comprising one or  
many devices. They can include component (such as individual line 
cards in a chassis) or aggregate devices (such as the chassis and 
its current complement of cards). In each case a DevID module binds
DevIDs secrets and certificates to the device whose identity they can be
used to assert: they remain attached to a component device if it is
removed from the network  element, and are not retained by the SNMP
agent. The entPhysicalIndex defined by the ENTITY-MIB identifies each
device managed by the agent and is used to index tables of managed
objects for each device with a DevID module, so ENTITY-MIB objects are
correlated with and can supplement DevID information cryptographically
bound to the device.
The initial version of this ieee8021DevIDMIB used the object name
prefix 'devID' rather than 'ieee8021DevI' as recommended by 
RFC 4181. The 'devID' prefix has been retained for backwards 
compatibility and internal consistency.
    

Imported Objects

PhysicalIndex, entPhysicalIndexENTITY-MIB
SnmpAdminStringSNMP-FRAMEWORK-MIB
MODULE-COMPLIANCE, OBJECT-GROUPSNMPv2-CONF
MODULE-IDENTITY, OBJECT-TYPE, Unsigned32, Counter32SNMPv2-SMI
TruthValue, TEXTUAL-CONVENTIONSNMPv2-TC

Type Definitions (3)

Name Base Type Values/Constraints
DevIDAlgorithmIdentifierEnumerationrsaEncryption(1), idecPublicKey(2)
DevIDErrorStatusEnumerationnone(1), internalError(2)
DevIDFingerprintOctetStringrange: 0..49

Objects

ieee8021DevIDMIB .1.3.111.2.802.1.1.17
devIDMIBNotifications .1.3.111.2.802.1.1.17.0
devIDMIBObjects .1.3.111.2.802.1.1.17.1
devIDGlobalMIBObjects .1.3.111.2.802.1.1.17.1.1
devIDMgmtMIBObjects .1.3.111.2.802.1.1.17.1.2
devIDPublicKeyCount .1.3.111.2.802.1.1.17.1.2.1
devIDPublicKeyTable .1.3.111.2.802.1.1.17.1.2.2
devIDPublicKeyEntry
.1.3.111.2.802.1.1.17.1.2.2.1
devIDPublicKeyIndex .1.3.111.2.802.1.1.17.1.2.2.1.1
devIDPublicKeyEnabled
.1.3.111.2.802.1.1.17.1.2.2.1.2
devIDPublicKeyAlgorithm .1.3.111.2.802.1.1.17.1.2.2.1.3
devIDPublicKeyPubkeySHA1Hash
.1.3.111.2.802.1.1.17.1.2.2.1.4
devIDPublicKeyErrStatus .1.3.111.2.802.1.1.17.1.2.2.1.5
devIDCredentialCount .1.3.111.2.802.1.1.17.1.2.3
devIDCredentialTable .1.3.111.2.802.1.1.17.1.2.4
devIDCredentialEntry .1.3.111.2.802.1.1.17.1.2.4.1
devIDCredentialIndex .1.3.111.2.802.1.1.17.1.2.4.1.1
devIDCredentialErrStatus .1.3.111.2.802.1.1.17.1.2.4.1.10
devIDCredentialEnabled
.1.3.111.2.802.1.1.17.1.2.4.1.2
devIDCredentialSHA1Hash
.1.3.111.2.802.1.1.17.1.2.4.1.3
devIDCredentialSerialNumber .1.3.111.2.802.1.1.17.1.2.4.1.4
devIDCredentialIssuer
.1.3.111.2.802.1.1.17.1.2.4.1.5
devIDCredentialSubject
.1.3.111.2.802.1.1.17.1.2.4.1.6
devIDCredentialSubjectAltName
.1.3.111.2.802.1.1.17.1.2.4.1.7
devIDCredentialEntityIndex
.1.3.111.2.802.1.1.17.1.2.4.1.8
devIDCredentialPubkeyIndex .1.3.111.2.802.1.1.17.1.2.4.1.9
devIDStatisticsTable .1.3.111.2.802.1.1.17.1.2.5
devIDStatisticsEntry
.1.3.111.2.802.1.1.17.1.2.5.1
devIDStatisticKeyGenerationCount
.1.3.111.2.802.1.1.17.1.2.5.1.1
devIDStatisticKeyInsertionCount
.1.3.111.2.802.1.1.17.1.2.5.1.2
devIDStatisticKeyDeletionCount
.1.3.111.2.802.1.1.17.1.2.5.1.3
devIDStatisticCSRGenerationCount
.1.3.111.2.802.1.1.17.1.2.5.1.4
devIDStatisticCredentialInsertionCount
.1.3.111.2.802.1.1.17.1.2.5.1.5
devIDStatisticCredentialDeletionCount
.1.3.111.2.802.1.1.17.1.2.5.1.6
devIDStatisticCertInsertionCount
.1.3.111.2.802.1.1.17.1.2.5.1.7
devIDStatisticCertDeletionCount
.1.3.111.2.802.1.1.17.1.2.5.1.8
devIDModuleTable .1.3.111.2.802.1.1.17.1.2.6
devIDModuleEntry
.1.3.111.2.802.1.1.17.1.2.6.1
devIDModuleSupportsLDevIDs
.1.3.111.2.802.1.1.17.1.2.6.1.1
devIDModuleGeneratesLDevIDKeys
.1.3.111.2.802.1.1.17.1.2.6.1.2
devIDModuleInsertsLDevIDKeys
.1.3.111.2.802.1.1.17.1.2.6.1.3
devIDCertTable .1.3.111.2.802.1.1.17.1.2.7
devIDCertEntry
.1.3.111.2.802.1.1.17.1.2.7.1
devIDCertFingerprint .1.3.111.2.802.1.1.17.1.2.7.1.1
devIDCertPublicKeyInfoFprint .1.3.111.2.802.1.1.17.1.2.7.1.2
devIDCertIDevID
.1.3.111.2.802.1.1.17.1.2.7.1.3
devIDCertKeyEnabled
.1.3.111.2.802.1.1.17.1.2.7.1.4
devIDCertEnabled
.1.3.111.2.802.1.1.17.1.2.7.1.5
devIDCert .1.3.111.2.802.1.1.17.1.2.7.1.6
devIDChainTable .1.3.111.2.802.1.1.17.1.2.8
devIDChainEntry
.1.3.111.2.802.1.1.17.1.2.8.1
devIDChainCertIndex .1.3.111.2.802.1.1.17.1.2.8.1.1
devIDChainCertFingerprint .1.3.111.2.802.1.1.17.1.2.8.1.2
devIDChainCert .1.3.111.2.802.1.1.17.1.2.8.1.3
devIDStatsMIBObjects .1.3.111.2.802.1.1.17.1.3
devIDMIBConformance .1.3.111.2.802.1.1.17.2
devIDMIBCompliances .1.3.111.2.802.1.1.17.2.1
devIDMIBGroups .1.3.111.2.802.1.1.17.2.2