Re: [Isms] SNMP over (D)TLS draft available for review - tlstmServerAuthFailure and notification

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Isms] SNMP over (D)TLS draft available for review - tlstmServerAuthFailure and notification

To: "Wes Hardaker" <wjhns1 at hardakers.net>, <isms at ietf.org>
Subject: Re: [Isms] SNMP over (D)TLS draft available for review - tlstmServerAuthFailure and notification
From: "Donati Andrew-MGIA0477" <adonati at motorola.com>
Date: Fri, 30 Oct 2009 12:47:19 -0400
Delivered-to: isms at core3.amsl.com
In-reply-to: <sd7hug30d2.fsf at wjh.hardakers.net>
List-archive: <http://www.ietf.org/mail-archive/web/isms>
List-help: <mailto:isms-request@ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.ietf.org>
List-post: <mailto:isms@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=unsubscribe>
References: <sd7hug30d2.fsf at wjh.hardakers.net>
Thread-index: AcpXWdMOMCTu5lDeT6WBAj4rdpFefQCFKP2Q
Thread-topic: [Isms] SNMP over (D)TLS draft available for review - tlstmServerAuthFailure and notification

Wes,

Just a few more questions on notifications ... 

1.  tlstmServerAuthFailure notification.
Will it be helpful for network administrators to know the current count
of how many times the presented server certificate is invalid in each
tlstmServerAuthFailure notification?  If so, it may be helpful to have
tlstmSessionInvalidServerCertificates as an additional binding
especially if this object is the trigger.

2.  Standard authentication failure notification.
There might have been some previous discussions about possibly using the
standard authenticationFailure trap for tlstm authentication failures.
Will this be used or will there be no autonomous messages for these
events?

3. tlstmServerCertNotFound
Should there be scalar object that serves as a counter for this event? 
If implemented, this object can be added to this notification.

- Andy Donati 

-----Original Message-----
From: isms-bounces at ietf.org [mailto:isms-bounces at ietf.org] On Behalf Of
Wes Hardaker
Sent: Tuesday, October 27, 2009 7:04 PM
To: isms at ietf.org
Subject: [Isms] SNMP over (D)TLS draft available for review


As you probably saw from the official draft announcement, a new copy of
the SNMP over (D)TLS draft is available from:

  http://tools.ietf.org/html/draft-ietf-isms-dtls-tm-01

A diff from the previous version can be found here:

 
http://tools.ietf.org/rfcdiff?difftype=--hwdiff&url2=draft-ietf-isms-dtl
s-tm-01.txt

The -01 version reflects all outstanding issues that I'm aware of.  It
would be good if WG participants could review the document and/or
changes prior to the WG meeting in Hiroshima and list any issues you
have with the draft so we can use the meeting time to discuss any of
them that require a face-to-face meeting.
--
Wes Hardaker
Cobham Analytic Solutions
_______________________________________________
Isms mailing list
Isms at ietf.org
https://www.ietf.org/mailman/listinfo/isms

References:
- [Isms] SNMP over (D)TLS draft available for review
  - From: Wes Hardaker

Prev by Date: Re: [Isms] SNMP over (D)TLS draft available for review - Group compliance statements for notifications
Next by Date: Re: [Isms] wg last call on the (d)tls transport model
Previous by thread: Re: [Isms] SNMP over (D)TLS draft available for review - Group compliance statements for notifications
Next by thread: [Isms] radius vacm integration editing volunteer needed
Index(es):
- Date
- Thread

Re: [Isms] SNMP over (D)TLS draft available for review - tlstmServerAuthFailure and notification

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.