2.2.3 Ensure SNMP traps is enabled - configurationSave

Information

Enables SNMP traps to be sent to the NMS.

Rationale:

The purpose of the SNMP service is to monitor in real time the events occurring on systems in order to meet the security requirement of availability of systems and services. The traps are SNMP notifications sent to the NMS and should be enabled in order to be sent and processed by the NMS. The NMS will then provide a comprehensive aggregation and reporting of events generated, thus helping administrator.

Solution

Run the following command to Configure the SNMP traps.
CLI:

Hostname> set snmp traps trap authorizationError enable
Hostname> set snmp traps trap coldStart enable
Hostname> set snmp traps trap configurationChange enable
Hostname> set snmp traps trap configurationSave enable
Hostname> set snmp traps trap linkUpLinkDown enable
Hostname> set snmp traps trap lowDiskSpace enable

GUI:

Navigate to System Management > SNMP > Enabled Traps > Set and select the following traps
uthorizationError, coldStart, configurationChange, configurationSave, linkUpLinkDown and lowDiskSpace

Default Value:

Not Configured

See Also

https://workbench.cisecurity.org/files/2828

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12c.

Plugin: CheckPoint

Control ID: a6b33ee3c4c53ad005848d6d5448b40f711f202d849070ba4733edb2b07ad27f