nv-l
[Top] [All Lists]

[nv-l] RE: Authentication failure traps from Windows

To: "Rob Withington" <Rob.Withington@axa-iom.co.im>
Subject: [nv-l] RE: Authentication failure traps from Windows
From: "Glen Warn" <Glen.Warn@pemcocorp.com>
Date: Wed, 19 Oct 2005 10:20:59 -0700
Cc: <nv-l@lists.us.ibm.com>
Delivery-date: Wed, 19 Oct 2005 18:22:10 +0100
Envelope-to: nv-l-archive@lists.skills-1st.co.uk
Reply-to: nv-l@lists.us.ibm.com
Sender: owner-nv-l@lists.us.ibm.com
Thread-index: AcXNnhjyNgJrgPFDRr+QbxP7vklQBAHM0ojQ
Thread-topic: Authentication failure traps from Windows
That did it!  Thanks very much.

Glen Warn
PEMCO Corporation Computer Services (PCCS)
glen.warn@pemcocorp.com
206-628-5770

-----Original Message-----
From: Rob Withington [mailto:Rob.Withington@axa-iom.co.im] 
Sent: Monday, October 10, 2005 6:26 AM
To: Glen Warn
Subject: Authentication failure traps from Windows

whiles browsing caught your thread on nv-l

sounds like you have applied security filters to stop SNMP packets
coming from any host, but forgot to add your localhost (127.0.0.1) as
well as your console/poller as an acceptable host from which to receive
packets.

your local hp/compaq services will be communicating locally and failing
to auth correctly.

see the Security tab on your SNMP Service Properties dialog

regards,
rob


----------------
                        Running 7.1.4 FP3 on Redhat AS2.1
                        I am being bombarded with auth failure traps
from some of my Windows 200x servers  (not even a majority).  Odd part
is I can do a demand poll and run a sniffer trace at the same time.  I
see the poll run successfully (using the appropriate RO community
string) then the same server issue an auth failure trap back to Netview
(I have all my servers set to do this so I can detect rogue queries)
None of my traces reveal any other boxes trying to run queries (what I
had assumed in the beginning)
                         
                        
                        I think this has been happening for a long time
(all along?) but just became aware of a big problem because I
accidentally hidden from myself thru event configuration (setting to
"Don't display or Log") that I used a long time ago to debug something
but never reverted. 
                         
                        Any ideas?  I have tried changing the comm
strings to something basic, put in a host specific snmp config, etc.
The devices are scattered across 5 different companies and dozens of
subnets.
                         
                        In the mean time, I believe this flood of traps
is severely hampering Netviews ability to process other traps (because
there are so many coming in non-stop)
                         
                        Glen Warn
                        PEMCO Corporation Computer Services (PCCS)
                        glen.warn@pemcocorp.com 
                        206-628-5770
This message and any files transmitted with it are confidential and
intended solely for the individual or entity to whom they are addressed.
If you have received this in error, you should not disseminate or copy
this email.  Please notify the sender immediately and delete this email
from your system.

Please also note that any opinions presented in this email are solely
those of the author and do not necessarily represent those of The AXA UK
Plc Group.

Email transmission cannot be guaranteed to be secure, or error free as
information could be intercepted, corrupted, lost, destroyed, late in
arriving or incomplete as a result of the transmission process.  The
sender therefore does not accept liability for any errors or omissions
in the contents of this message which arise as a result of email
transmission.

Finally, the recipient should check this email and any attachments for
viruses.  The AXA UK Plc Group accept no liability for any damage caused
by any virus transmitted by this email.

This email originates from;

AXA Isle of Man Services Limited, registered number 059248c, provides
services to the following companies which are all registered with or
authorised by the Isle of Man Government Insurance and Pensions
Authority (as noted below): 

AXA Isle of Man Limited, registered number 056473c, authorised to carry
on the business of Insurance in or from the Isle of Man in Classes 1 and
2 pursuant to the Insurance Act 1986; 

AXA Isle of Man Administration Limited, registered number 106739c,
registered as a Retirement Benefits Schemes Administrator pursuant to
s.45 of the Retirement Benefit Schemes Act 2000; 

AXA Isle of Man Insurance Management Limited, registered number 109218c,
registered as an Insurance Manager pursuant to s.27 of the Insurance Act
1986; 

Services are also provided to AXA Isle of Man Management Limited,
registered number 059247c, which is licensed to conduct Investment
Business as a Category 3(b) Licenceholder by the Isle of Man Government
Financial Supervision Commission.

All the above companies are registered in the Isle of Man and are
limited by shares. Their registered office is: Royalty House, Walpole
Avenue, Douglas, Isle of Man, IM1 2SL, British Isles, Telephone +44 (0)
1624 643333, Facsimile +44 (0) 1624 643444.



<Prev in Thread] Current Thread [Next in Thread>
  • [nv-l] RE: Authentication failure traps from Windows, Glen Warn <=

Archive operated by Skills 1st Ltd

See also: The NetView Web