managing Cisco Switches

Started by adon, November 25, 2012, 10:41:32 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

adon

November 25, 2012, 10:41:32 PM
Hi, we have SNMP disabled on my switches for PCI. is there any other way to manage my switches.

Thanks alot

Victor Kirhenshtein

#1
November 26, 2012, 12:04:34 AM
Hi!

With SNMP disabled, you can only ping the switches to check if they are alive. But why you cannot enable SNMP? You can use SNMP version 3 with AES encryption. If only read access allowed, and only via encrypted SNMP v3, it should be safe.

Best regards,
Victor

adon

#2
November 26, 2012, 07:22:43 PM
Victor, thanks for your reply. For PCI we have disabled SNMP. Let me check to see if SNMP vs is allowed for PCI.

Thanks

Victor Kirhenshtein

#3
November 26, 2012, 07:31:50 PM
After quick check on PCI DSS requirements regarding SNMP, it seems that it is only required to change default community strings/account names. Disabling SNMP completely is recommended, but not mandatory. We have several bank clients, and they pass PCI DSS compliance audits, while running SNMP for managing network devices.

Best regards,
Victor
Print
Go Up Pages1
User actions