Authentication and authorization for simple network management protocol (SNMP)
First Claim
Patent Images
1. A system, comprising:
- a manager device configured to execute a Simple Network Management Protocol (SNMP) manager; and
an agent device configured to execute a SNMP agent, the SNMP agent in communication with the SNMP manager and configured to selectively provide access including for the SNMP manager to managed data,wherein the SNMP manager is configured to issue an SNMP data packet comprising a login command, a community name, a user identifier and a password to the SNMP agent and wherein the SNMP agent is configured to processes the login command and, if the login command is authenticated, is configured to allow access to the managed data, andwherein the SNMP agent is configured to forward the user identifier and the password instead of the community name to an authentication server and wherein the authentication server is configured to attempt to authenticate a user based on the user identifier and the password instead of the community name.
1 Assignment
0 Petitions
Accused Products
Abstract
A system is provided that includes a manager device that executes a Simple Network Management Protocol (SNMP) manager. The system also includes an agent device coupled to the manager device. The agent device executes a SNMP agent that selectively provides access to managed data. The SNMP manager enables a user to issue a login command. The SNMP agent processes the login command and, if the user is authenticated, allows the user to access the managed data using a session identifier.
-
Citations
20 Claims
-
1. A system, comprising:
-
a manager device configured to execute a Simple Network Management Protocol (SNMP) manager; and an agent device configured to execute a SNMP agent, the SNMP agent in communication with the SNMP manager and configured to selectively provide access including for the SNMP manager to managed data, wherein the SNMP manager is configured to issue an SNMP data packet comprising a login command, a community name, a user identifier and a password to the SNMP agent and wherein the SNMP agent is configured to processes the login command and, if the login command is authenticated, is configured to allow access to the managed data, and wherein the SNMP agent is configured to forward the user identifier and the password instead of the community name to an authentication server and wherein the authentication server is configured to attempt to authenticate a user based on the user identifier and the password instead of the community name. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A memory device that stores a Simple Network Management Protocol (SNMP) data packet issued by a SNMP manager executing on a managing device, the SNMP data packet comprising:
-
a community name data field; a login command data field; a user identifier data field; and a password data field, wherein a non-transitory login command contained in the login command data field causes a SNMP agent process values in the user identifier data field and the password data field for authentication instead of values in the community name data field. - View Dependent Claims (11, 19, 20)
-
-
12. A method, comprising:
-
issuing, by a Simple Network Management Protocol (SNMP) manager, a command using a SNMP data packet, the SNMP data packet comprising; a community name data field, a login command data field, a user identifier data field, and a password data field; and authenticating, by an authentication server, a user associated with the command based on values in the user identifier data field and the password data field instead of values the community name data field. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
Specification