Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiADC 8.0.2 Administration Guide
    8.0.2
    8.0.2
    8.0.1
    8.0.0
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0

    Configuring SNMP v3

    Configuring SNMP v3

    To configure SNMP v3:
    1. Go to System > SNMP.
    2. Click the SNMPv3 tab.
    3. Click Create New to display the configuration editor.
    4. Configure the following SNMP v3 settings:
      SettingsGuidelines
      NameUser name that the SNMP Manager uses to communicate with the SNMP Agent. After you initially save the configuration, you cannot edit the name.
      StatusEnable/disable the configuration.
      Security Level
      • No Auth And No Privacy—Do not require authentication or encryption.
      • Auth But No Privacy—Authentication based on MD5 or SHA algorithms. Select an algorithm and specify a password.
      • Auth And Privacy—Authentication based on MD5 or SHA algorithms, and encryption based on AES or DES algorithms. Select an Auth Algorithm and specify an Auth Password; and select a Private Algorithm and specify a Private Password.

      Auth Algorithm

      The Auth Algorithm option is available if the Security Level is Auth But No Privacy or Auth And Privacy.

      Select an Authentication Algorithm from the following options:

      • SHA1

      • MD5

      • SHA224

      • SHA256

      • SHA384

      • SHA512

      Auth Password

      The Auth Password option is available if the Security Level is Auth But No Privacy or Auth And Privacy.

      Specify an Authentication Password.

      Private Algorithm

      The Private Algorithm option is available if the Security Level is Auth And Privacy.

      Select a Private Algorithm from the following options:

      • AES

      • DES

      • AES256

      • AES256CISCO

      Private Password

      The Private Password option is available if the Security Level is Auth And Privacy.

      Specify a Private Password.

      SNMP v3 PortEnter the port number on which the system listens for SNMP v3 queries from the SNMP managers. The default is 161.
      Host

      IP Address

      Enter the subnet address for the SNMP manager to be permitted to query the FortiADC system. SNMP managers have read-only access. You can add up to 8 SNMP managers to each community. To allow any IP address using this SNMP community name to query the FortiADC system, enter 0.0.0.0/0. For security best practice reasons, however, this is not recommended.

    5. Click Save.
      After the SNMP v3 configuration is saved, the Host section becomes available to configure.
    6. Under the Host section, click Create New to display the configuration editor.
    7. Configure the following Host settings:
      SettingsGuidelines

      IP Address

      Enter the subnet address for the SNMP manager to be permitted to query the FortiADC system. SNMP managers have read-only access. You can add up to 8 SNMP managers to each community. To allow any IP address using this SNMP community name to query the FortiADC system, enter 0.0.0.0/0. For security best practice reasons, however, this is not recommended.

    8. Save the Host list configuration and then save the SNMP v3 configuration to commit the Host list changes.
    Test both traps and queries (assuming you have enabled both). Traps and queries typically occur on different port numbers, and therefore verifying one does not necessarily verify that the other is also functional.

    To test queries, from your SNMP manager, query the FortiADC appliance.

    To test traps, cause one of the events that should trigger a trap.
    Previous
    Next

    Configuring SNMP v3

    Configuring SNMP v3

    To configure SNMP v3:
    1. Go to System > SNMP.
    2. Click the SNMPv3 tab.
    3. Click Create New to display the configuration editor.
    4. Configure the following SNMP v3 settings:
      SettingsGuidelines
      NameUser name that the SNMP Manager uses to communicate with the SNMP Agent. After you initially save the configuration, you cannot edit the name.
      StatusEnable/disable the configuration.
      Security Level
      • No Auth And No Privacy—Do not require authentication or encryption.
      • Auth But No Privacy—Authentication based on MD5 or SHA algorithms. Select an algorithm and specify a password.
      • Auth And Privacy—Authentication based on MD5 or SHA algorithms, and encryption based on AES or DES algorithms. Select an Auth Algorithm and specify an Auth Password; and select a Private Algorithm and specify a Private Password.

      Auth Algorithm

      The Auth Algorithm option is available if the Security Level is Auth But No Privacy or Auth And Privacy.

      Select an Authentication Algorithm from the following options:

      • SHA1

      • MD5

      • SHA224

      • SHA256

      • SHA384

      • SHA512

      Auth Password

      The Auth Password option is available if the Security Level is Auth But No Privacy or Auth And Privacy.

      Specify an Authentication Password.

      Private Algorithm

      The Private Algorithm option is available if the Security Level is Auth And Privacy.

      Select a Private Algorithm from the following options:

      • AES

      • DES

      • AES256

      • AES256CISCO

      Private Password

      The Private Password option is available if the Security Level is Auth And Privacy.

      Specify a Private Password.

      SNMP v3 PortEnter the port number on which the system listens for SNMP v3 queries from the SNMP managers. The default is 161.
      Host

      IP Address

      Enter the subnet address for the SNMP manager to be permitted to query the FortiADC system. SNMP managers have read-only access. You can add up to 8 SNMP managers to each community. To allow any IP address using this SNMP community name to query the FortiADC system, enter 0.0.0.0/0. For security best practice reasons, however, this is not recommended.

    5. Click Save.
      After the SNMP v3 configuration is saved, the Host section becomes available to configure.
    6. Under the Host section, click Create New to display the configuration editor.
    7. Configure the following Host settings:
      SettingsGuidelines

      IP Address

      Enter the subnet address for the SNMP manager to be permitted to query the FortiADC system. SNMP managers have read-only access. You can add up to 8 SNMP managers to each community. To allow any IP address using this SNMP community name to query the FortiADC system, enter 0.0.0.0/0. For security best practice reasons, however, this is not recommended.

    8. Save the Host list configuration and then save the SNMP v3 configuration to commit the Host list changes.
    Test both traps and queries (assuming you have enabled both). Traps and queries typically occur on different port numbers, and therefore verifying one does not necessarily verify that the other is also functional.

    To test queries, from your SNMP manager, query the FortiADC appliance.

    To test traps, cause one of the events that should trigger a trap.
    Previous
    Next