cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

SNMP Data Source

Hi

In our organization, we have a data source that reports events by SNMP Traps. How can I integrate it in SIEM?

Thanks

2 Replies
Reliable Contributor David1111
Reliable Contributor
Report Inappropriate Content
Message 2 of 3

Re: SNMP Data Source

Hi,

first create a SNMP Profile:

Physical Display > Profile managment > Add > Profile Type = SNMP trap.

fill the Fields of the SNMP trap.

 

Create A data Source:

Receiver > Add Data Source > fill in the fields > in the "Enabled" field Check the SNMP Trap with the Profile you created.

 

Best Regards👍👍👍

David.

 

 

Reliable Contributor sssyyy
Reliable Contributor
Report Inappropriate Content
Message 3 of 3

Re: SNMP Data Source

Keen to find out if this actually works. Is this related?

https://docs.mcafee.com/bundle/enterprise-security-manager-10.1.0-product-guide-unmanaged/page/GUID-...

Can you only get these five type of events, not others? Is it possible to write custom parsers for SNMP type data source? Thanks.

- Authentication Failure
- Cold Start
- EGP Neighbor Loss
- Link Down
- Link Up and Warm Start

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community