2.2.1 Ensure SNMP agent is disabled

Information

The Simple Network Management Protocol (SNMP) server is used to listen for SNMP commands from an SNMP management system, execute the commands or collect the information and then send results back to the requesting system.

Rationale:

The SNMP server can communicate using SNMP v1, which transmits data in the clear and does not require authentication to execute commands. Unless absolutely necessary, it is recommended that the SNMP service not be used. If SNMP is required the server should be configured to use only SNMPv3.

Solution

Run the following command to configure the SNMP.

CLI:
Hostname> set snmp agent off

GUI:

System Management > SNMP > Unhecked the Enable SNMP Agent

Default Value:

SNMP Agent Disabled

See Also

https://workbench.cisecurity.org/files/2828

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: CheckPoint

Control ID: 01e520352c19c5e53ca2bab358c83475d739ec2d494d31e1b0300cace546546d