[SNMP4J] SNMP4J Version 3 SecurityLevel.AUTH_PRIV example

Frank Fock fock at agentpp.com
Wed Nov 16 00:40:23 CET 2005 

Hi Jack,

Yes, the behavior you outlined is intended. If the target engine ID is
not known to SNMP4J it tries to discover it by a message with security
level noAuthNoPriv. Once the engine ID is available the authPriv level
will be used to exchange the real data.

You can check out MIB Explorer 2 Lite's Packet Analyzer to analyze
the packet exchanged during SNMPv3 engine ID discovery and USM
time synchronization. MIB Explorer 2 Lite uses SNMP4J and can be
downloaded for evaluation from http://www.mibexplorer.com

For more information on the background, see the RFC 3414.

Best regards,
Frank

Houghton, Jack SPAWAR wrote:

>Hi:
>I'm new to SNMP4J. First of all, congratulations on your work and thanks
>for making it available. I have been tracing through the code and don't
>understand one section. Let's say we want to send a SNMPv3 message
>(GETNEXT) with authentication and privacy as illustrated in the javadoc
>for the Snmp class. After performing the necessary initialization this
>call is made:
> 
>ResponseEvent response = snmp.send(pdu, target);
>
>This results in a call to
>Snmp.send( PDU              pdu,
>           Target           target,
>           TransportMapping transport ), which in turn calls
> 
>Snmp.sendMessage( PDU              pdu,
>                  Target           target,
>                  TransportMapping transport ), which in turn calls
> 
>MessageDispatcherImpl.sendPdu( TransportMapping transport,
>                               Address          transportAddress,
>                               int              messageProcessingModel,
>                               int              securityModel,
>                               byte[]           securityName,
>                               int              securityLevel,
>                               PDU              pdu,
>                               boolean          expectResponse ),
> 
>which in turn calls 
> 
>MPv3.prepareOutgoingMessage( Address         transportAddress,
>                             int             maxMessageSize,
>                             int             messageProcessingModel,
>                             int             securityModel,
>                             byte[]          securityName,
>                             int             securityLevel,
>                             PDU             pdu,
>                             boolean         expectResponse,
>                             PduHandle       sendPduHandle,
>                             Address         destTransportAddress,
>                             BEROutputStream outgoingMessage )
>
>In the body of this method, although securityLevel is input as
>SecurityLevel.AUTH_PRIV, because the MPv3 Hashtable variable engineIDs
>doesn't have any elements, securityLevel will be reset to
>SecurityLevel.NOAUTH_NOPRIV. Is this the desired behavior? Or have I
>missed something?
> 
>Thanks,
>Jack Houghton
>_______________________________________________
>SNMP4J mailing list
>SNMP4J at agentpp.org
>http://lists.agentpp.org/mailman/listinfo/snmp4j
>
>
>  
>


-- 
AGENT++
http://www.agentpp.com
http://www.mibexplorer.com
http://www.mibdesigner.com

More information about the SNMP4J mailing list