SNMP-TLS-TM-MIB

        
The TLS Transport Model MIB
        
Copyright (c) 2010-2011 IETF Trust and the persons identified
as authors of the code.  All rights reserved.
        
Redistribution and use in source and binary forms, with or
without modification, is permitted pursuant to, and subject
to the license terms contained in, the Simplified BSD License
set forth in Section 4.c of the IETF Trust's Legal Provisions
Relating to IETF Documents
(http://trustee.ietf.org/license-info).
    

Imported Objects

SnmpAdminStringSNMP-FRAMEWORK-MIB
snmpTargetAddrName, snmpTargetParamsNameSNMP-TARGET-MIB
NOTIFICATION-GROUP, OBJECT-GROUP, MODULE-COMPLIANCESNMPv2-CONF
OBJECT-TYPE, NOTIFICATION-TYPE, Gauge32, Unsigned32, Counter32, snmpDomains, mib-2, OBJECT-IDENTITY, MODULE-IDENTITYSNMPv2-SMI
TEXTUAL-CONVENTION, TimeStamp, RowStatus, StorageType, AutonomousTypeSNMPv2-TC

Type Definitions (2)

Name Base Type Values/Constraints
SnmpTLSAddressrange: 1..255
SnmpTLSFingerprintrange: 0..255

Objects

snmpTlstmMIB .1.3.6.1.2.1.198
snmpTlstmNotifications .1.3.6.1.2.1.198.0
snmpTlstmIdentities .1.3.6.1.2.1.198.1
snmpTlstmCertToTSNMIdentities .1.3.6.1.2.1.198.1.1
snmpTlstmCertSpecified .1.3.6.1.2.1.198.1.1.1
snmpTlstmCertSANRFC822Name .1.3.6.1.2.1.198.1.1.2
snmpTlstmCertSANDNSName .1.3.6.1.2.1.198.1.1.3
snmpTlstmCertSANIpAddress .1.3.6.1.2.1.198.1.1.4
snmpTlstmCertSANAny .1.3.6.1.2.1.198.1.1.5
snmpTlstmCertCommonName .1.3.6.1.2.1.198.1.1.6
snmpTlstmObjects .1.3.6.1.2.1.198.2
snmpTlstmSession .1.3.6.1.2.1.198.2.1
snmpTlstmSessionOpens
.1.3.6.1.2.1.198.2.1.1
snmpTlstmSessionInvalidCaches
.1.3.6.1.2.1.198.2.1.10
snmpTlstmSessionClientCloses
.1.3.6.1.2.1.198.2.1.2
snmpTlstmSessionOpenErrors
.1.3.6.1.2.1.198.2.1.3
snmpTlstmSessionAccepts
.1.3.6.1.2.1.198.2.1.4
snmpTlstmSessionServerCloses
.1.3.6.1.2.1.198.2.1.5
snmpTlstmSessionNoSessions
.1.3.6.1.2.1.198.2.1.6
snmpTlstmSessionInvalidClientCertificates
.1.3.6.1.2.1.198.2.1.7
snmpTlstmSessionUnknownServerCertificate
.1.3.6.1.2.1.198.2.1.8
snmpTlstmSessionInvalidServerCertificates
.1.3.6.1.2.1.198.2.1.9
snmpTlstmConfig .1.3.6.1.2.1.198.2.2
snmpTlstmCertificateMapping .1.3.6.1.2.1.198.2.2.1
snmpTlstmCertToTSNCount
.1.3.6.1.2.1.198.2.2.1.1
snmpTlstmCertToTSNTableLastChanged
.1.3.6.1.2.1.198.2.2.1.2
snmpTlstmCertToTSNTable .1.3.6.1.2.1.198.2.2.1.3
snmpTlstmCertToTSNEntry .1.3.6.1.2.1.198.2.2.1.3.1
snmpTlstmCertToTSNID .1.3.6.1.2.1.198.2.2.1.3.1.1
snmpTlstmCertToTSNFingerprint .1.3.6.1.2.1.198.2.2.1.3.1.2
snmpTlstmCertToTSNMapType
.1.3.6.1.2.1.198.2.2.1.3.1.3
snmpTlstmCertToTSNData .1.3.6.1.2.1.198.2.2.1.3.1.4
snmpTlstmCertToTSNStorageType
.1.3.6.1.2.1.198.2.2.1.3.1.5
snmpTlstmCertToTSNRowStatus
.1.3.6.1.2.1.198.2.2.1.3.1.6
snmpTlstmParamsCount
.1.3.6.1.2.1.198.2.2.1.4
snmpTlstmParamsTableLastChanged
.1.3.6.1.2.1.198.2.2.1.5
snmpTlstmParamsTable .1.3.6.1.2.1.198.2.2.1.6
snmpTlstmParamsEntry
.1.3.6.1.2.1.198.2.2.1.6.1
snmpTlstmParamsClientFingerprint .1.3.6.1.2.1.198.2.2.1.6.1.1
snmpTlstmParamsStorageType
.1.3.6.1.2.1.198.2.2.1.6.1.2
snmpTlstmParamsRowStatus
.1.3.6.1.2.1.198.2.2.1.6.1.3
snmpTlstmAddrCount
.1.3.6.1.2.1.198.2.2.1.7
snmpTlstmAddrTableLastChanged
.1.3.6.1.2.1.198.2.2.1.8
snmpTlstmAddrTable .1.3.6.1.2.1.198.2.2.1.9
snmpTlstmAddrEntry
.1.3.6.1.2.1.198.2.2.1.9.1
snmpTlstmAddrServerFingerprint .1.3.6.1.2.1.198.2.2.1.9.1.1
snmpTlstmAddrServerIdentity
.1.3.6.1.2.1.198.2.2.1.9.1.2
snmpTlstmAddrStorageType
.1.3.6.1.2.1.198.2.2.1.9.1.3
snmpTlstmAddrRowStatus
.1.3.6.1.2.1.198.2.2.1.9.1.4
snmpTlstmConformance .1.3.6.1.2.1.198.3
snmpTlstmCompliances .1.3.6.1.2.1.198.3.1
snmpTlstmGroups .1.3.6.1.2.1.198.3.2
snmpTLSTCPDomain .1.3.6.1.6.1.8
snmpDTLSUDPDomain .1.3.6.1.6.1.9

Notifications/Traps

NameOIDDescription
snmpTlstmServerCertificateUnknown

.1.3.6.1.2.1.198.0.1
Notification that the server certificate presented by an SNMP
over (D)TLS server was invalid because no configured
fingerprint or CA was acceptable to validate it.  This may be
because there was no entry in the snmpTlstmAddrTable or
because no path could be found to known Certification
Authority.
          
To avoid notification loops, this notification MUST NOT be
sent to servers that themselves have triggered the
notification.
snmpTlstmServerInvalidCertificate


.1.3.6.1.2.1.198.0.2
Notification that the server certificate presented by an SNMP
over (D)TLS server could not be validated even if the
fingerprint or expected validation path was known.  That is, a
cryptographic validation error occurred during certificate
validation processing.
          
To avoid notification loops, this notification MUST NOT be
sent to servers that themselves have triggered the
notification.