Login
- Table of Contents
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 04-HH3C-SSH-MIB | 90.35 KB |
Contents
HH3C-SSH-MIB
About this MIB
Secure Shell (SSH) is a network security protocol. Using encryption and authentication, SSH can implement secure remote access and file transfer over an insecure network.
SSH uses the typical client-server model to establish a channel for secure data transfer based on TCP.
SSH includes two versions: SSH1.x and SSH2.0 (hereinafter referred to as SSH1 and SSH2), which are not compatible. SSH2 is better than SSH1 in performance and security.
Use this MIB to configure the SSH service.
MIB file name
hh3c-ssh.mib
Root object
iso(1).org(3).dod(6).internet(1).private(4).enterprises(1).hh3c(25506).hh3cCommon(2).hh3cSSH(22)
Scalar objects
hh3cSSHServerVersion
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHServerVersion (1.3.6.1.4.1.25506.2.22.1.1.1.1) |
read-only |
DisplayString |
Standard MIB values. |
The SSH protocol version of the SSH server. |
The default value is 2.00. It is not compatible with SSH 1.x versions. |
hh3cSSHServerCompatibleSSH1x
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHServerCompatibleSSH1x (1.3.6.1.4.1.25506.2.22.1.1.1.2) |
read-write |
INTEGER |
enableCompatibleSSH1x(1), disableCompatibleSSH1x(2) |
Compatibility with SSH 1.x versions. |
The default value is disableCompatibleSSH1x(2). |
hh3cSSHServerRekeyInterval
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHServerRekeyInterval (1.3.6.1.4.1.25506.2.22.1.1.1.3) |
read-write |
Integer32 |
Standard MIB values. |
Time interval at which the SSH server key is regenerated. |
Value range: 0 to 24. The default value is 0, meaning that the key will not be refreshed. |
hh3cSSHServerAuthRetries
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHServerAuthRetries (1.3.6.1.4.1.25506.2.22.1.1.1.4) |
read-write |
Integer32 |
Standard MIB values. |
Maximum number of SSH server authentication retries. |
Range from 1 to 5. The default value is 3. |
hh3cSSHServerAuthTimeout
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHServerAuthTimeout (1.3.6.1.4.1.25506.2.22.1.1.1.5) |
read-write |
Integer32 |
Standard MIB values. |
SSH server authentication timeout time. |
Range from 1 to 120. The default value is 60. |
hh3cSFTPServerIdleTimeout
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSFTPServerIdleTimeout (1.3.6.1.4.1.25506.2.22.1.1.1.6) |
read-write |
Integer32 |
Standard MIB values. |
SFTP connection idle timeout time. |
Range from 1 to 35791. The default value is 10. |
hh3cSSHServerEnable
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHServerEnable (1.3.6.1.4.1.25506.2.22.1.1.1.7) |
read-write |
INTEGER |
enableSSHServer(1), disableSSHServer(2) |
Enable or disable the SSH server. |
The default value is disableSSHServer(2). |
hh3cSFTPServerEnable
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSFTPServerEnable (1.3.6.1.4.1.25506.2.22.1.1.1.8) |
read-write |
INTEGER |
enableSFTPService(1), disableSFTPService(2) |
Enable or disable the SFTP server. |
The default value is disableSFTPService(2). |
hh3cSTelnetServerEnable
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSTelnetServerEnable (1.3.6.1.4.1.25506.2.22.1.1.1.1.9) |
read-write |
INTEGER |
enableSTelnetService(1), disableSTelnetService(2) |
Enable or disable Stelnet server. |
As per the MIB. |
hh3cSCPServerEnable
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSCPServerEnable (1.3.6.1.4.1.25506.2.22.1.1.1.1.10) |
read-write |
INTEGER |
enableSCPServer(1), disableSCPServer(2) |
Enable or disable SCP server. |
As per the MIB. |
hh3cSSHAttemptUserName
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHAttemptUserName (1.3.6.1.4.1.25506.2.22.1.2.1) |
accessible-for-notify |
DisplayString |
Standard MIB values. |
Name of the user who failed to connect to the server. |
Length: 1 to 255 characters. |
hh3cSSHAttemptIpAddrType
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHAttemptIpAddrType (1.3.6.1.4.1.25506.2.22.1.2.2) |
accessible-for-notify |
InetAddressType |
INTEGER{ unknown(0), ipv4(1), ipv6(2), dns(16) } |
Address type of the user who failed to connect to the server. |
As per the MIB. |
hh3cSSHAttemptIpAddr
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHAttemptIpAddr (1.3.6.1.4.1.25506.2.22.1.2.3) |
accessible-for-notify |
InetAddress |
OCTET STRING (0..255) |
Address of user who failed to connect to the server. |
As per the MIB. |
hh3cSSHUserAuthFailureReason
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHUserAuthFailureReason (1.3.6.1.4.1.25506.2.22.1.2.4) |
accessible-for-notify |
INTEGER |
exceedRetries(1), authTimeout(2), otherReason(3) |
Reason for the connection failure. |
As per the MIB. |
Tabular objects
hh3cSSHUserConfigTable
About this table
Use this table to configure or obtain SSH user information.
Support for operations
|
Create |
Edit/Modify |
Delete |
Read |
|
Supported |
Supported |
Supported |
Supported |
Columns
The table index is hh3cSSHUserName.
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHUserName (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.1) |
not-accessible |
DisplayString |
Standard MIB values. |
Name of an SSH user. |
Length: 1 to 255 characters. |
|
hh3cSSHUserServiceType (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.2) |
read-create |
INTEGER |
invalid(1), all(2), stelnet(3), sftp(4), scp(5), netconf(6) |
Service type of the SSH user. |
The default value is invalid(1). |
|
hh3cSSHUserAuthType (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.3) |
read-create |
INTEGER |
invalid(1), password(2), publicKey(3), any(4), publicKeyPassword(5), keyboardInteractive(6) |
Authentication type for the SSH user. |
The default value is invalid(1). If the value is password, the user must pass password authentication of AAA. If the value is publicKey, the user must pass the public key authentication of PKEY module. If the value is any, the user must pass password or public key authentication. If the value is publicKeyPassword, the user must pass both public key authentication and password authentication. |
|
hh3cSSHUserPublicKeyName (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.4) |
read-create |
DisplayString |
Standard MIB values. |
Name of the public key used for authentication of the SSH user. |
Length: 1 to 64 characters. The default value is a zero-length string. The value for this object is obtained from the public key generated in the PKEY module. |
|
hh3cSSHUserWorkDirectory (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.5) |
read-create |
DisplayString |
Standard MIB values. |
Work directory of the SSH user. |
Not supported. |
|
hh3cSSHUserRowStatus (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.6) |
read-create |
RowStatus |
active(1), notInService(2), notReady(3), createAndGo(4), createAndWait(5), destroy(6) |
Row status. |
When the hh3cSSHUserRowStatus is set to active(1), no objects in the conceptual row can be modified. In particular, a newly created user row which uses public key authentication cannot be made active(1) until the corresponding instance of `hh3cSSHUserAuthType' is 'publicKey' or 'publicKeyPassword', and the 'hh3cSSHUserPublicKeyName' or at least one of the 'hh3cSSHUserPublicKeyName[2-6]' is configured appropriately. |
|
hh3cSSHUserPublicKeyName2 (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.7) |
read-create |
DisplayString |
Standard MIB values. |
Name of the public key used for authentication of the SSH user. |
Length: 1 to 64 characters. The default value is a zero-length string. The value for this object is obtained from the public key generated in the PKEY module. |
|
hh3cSSHUserPublicKeyName3 (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.8) |
read-create |
DisplayString |
Standard MIB values. |
Name of the public key used for authentication of the SSH user. |
Length: 1 to 64 characters. The default value is a zero-length string. The value for this object is obtained from the public key generated in the PKEY module. |
|
hh3cSSHUserPublicKeyName4 (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.9) |
read-create |
DisplayString |
Standard MIB values. |
Name of the public key used for authentication of the SSH user. |
Length: 1 to 64 characters. The default value is a zero-length string. The value for this object is obtained from the public key generated in the PKEY module. |
|
hh3cSSHUserPublicKeyName5 (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.10) |
read-create |
DisplayString |
Standard MIB values. |
Name of the public key used for authentication of the SSH user. |
Length: 1 to 64 characters. The default value is a zero-length string. The value for this object is obtained from the public key generated in the PKEY module. |
|
hh3cSSHUserPublicKeyName6 (1.3.6.1.4.1.25506.2.22.1.1.2.1.1.11) |
read-create |
DisplayString |
Standard MIB values. |
Name of the public key used for authentication of the SSH user. |
Length: 1 to 64 characters. The default value is a zero-length string. The value for this object is obtained from the public key generated in the PKEY module. |
hh3cSSHSessionInfoTable
About this table
This table contains SSH session information.
Support for operations
|
Create |
Edit/Modify |
Delete |
Read |
|
Not supported |
Not supported |
Not supported |
Supported |
Columns
The table index is hh3cSSHSessionID.
|
Object (OID) |
Access |
Syntax |
Value range |
Description |
Implementation |
|
hh3cSSHSessionID (1.3.6.1.4.1.25506.2.22.1.1.3.1.1) |
not-accessible |
Integer32 |
Standard MIB values. |
VTY number of an SSH session. |
As per the MIB. |
|
hh3cSSHSessionUserName (1.3.6.1.4.1.25506.2.22.1.1.3.1.2) |
read-only |
DisplayString |
Standard MIB values. |
User name of the SSH session. |
Length: 1 to 255 characters. |
|
hh3cSSHSessionUserIpAddrType (1.3.6.1.4.1.25506.2.22.1.1.3.1.3) |
read-only |
InetAddressType |
INTEGER{ unknown(0), ipv4(1), ipv6(2), dns(16) } |
User IP address type of the SSH session. |
As per the MIB. |
|
hh3cSSHSessionUserIpAddr (1.3.6.1.4.1.25506.2.22.1.1.3.1.4) |
read-only |
InetAddress |
OCTET STRING (0..255) |
User IP address of the SSH session. |
As per the MIB. |
|
hh3cSSHSessionClientVersion (1.3.6.1.4.1.25506.2.22.1.1.3.1.5) |
read-only |
DisplayString |
Standard MIB values. |
Client protocol version of the SSH session. |
As per the MIB. |
|
hh3cSSHSessionServiceType (1.3.6.1.4.1.25506.2.22.1.1.3.1.6) |
read-only |
INTEGER |
invalid(1), stelnet(2), sftp(3), scp(4), netconf(5) |
Service type of the SSH session. |
As per the MIB. |
|
hh3cSSHSessionEncry (1.3.6.1.4.1.25506.2.22.1.1.3.1.7) |
read-only |
INTEGER |
invalid(1), aes128CBC(2), desCBC(3), des3CBC(4), aes128CTR(5), aes192CTR(6), aes256CTR(7), aes128GCM(8), aes256GCM(9), aes256CBC(10), other(11) |
Encryption algorithm of the SSH session. |
As per the MIB. |
|
hh3cSSHSessionState (1.3.6.1.4.1.25506.2.22.1.1.3.1.8) |
read-only |
INTEGER |
init(1), verExchange(2), keysExchange(3), authRequest(4), serviceRequest(5), established(6), disconnect(7) |
Status of the SSH session. |
As per the MIB. |
Notifications
hh3cSSHUserAuthFailure
Basic information
|
OID |
Event |
Type |
Severity |
Recovery notification |
Default status |
|
1.3.6.1.4.1.25506.2.22.1.3.0.1 |
User authentication failure |
Informational |
- |
- |
ON |
Description
This notification is generated when a user failed authentication.
Status control
This notification cannot be set to the OFF state.
Objects
|
OID (object name) |
Description |
Index |
Type |
Value range |
|
1.3.6.1.4.1.25506.2.22.1.2.1 (hh3cSSHAttemptUserName) |
Name of the invalid user. |
No |
DisplayString |
OCTET STRING(SIZE (0..255)) |
|
1.3.6.1.4.1.25506.2.22.1.2.2 (hh3cSSHAttemptIpAddrType) |
Address type of the invalid user. |
No |
InetAddressType |
INTEGER{ unknown(0), ipv4(1), ipv6(2), dns(16) } |
|
1.3.6.1.4.1.25506.2.22.1.2.3 (hh3cSSHAttemptIpAddr) |
Address of the invalid user. |
No |
InetAddress |
OCTET STRING(0..255) |
|
1.3.6.1.4.1.25506.2.22.1.2.4 (hh3cSSHUserAuthFailureReason) |
Reason for the authentication failure. |
No |
INTEGER |
exceedRetries(1) authTimeout(2) otherReason(3) |
This table does not contain indexes. For information about the index or indexes of a MIB object instance in an SNMP variable binding, see the section for that MIB object.
Recommended action
Make sure there are no invalid users attempt to log in.
hh3cSSHVersionNegotiationFailure
Basic information
|
OID |
Event |
Type |
Severity |
Recovery notification |
Default status |
|
1.3.6.1.4.1.25506.2.22.1.3.0.2 |
SSH version negotiation failure |
Informational |
- |
- |
ON |
Description
This notification is generated when SSH version negotiation fails.
Status control
This notification cannot be set to the OFF state.
Objects
|
OID (object name) |
Description |
Index |
Type |
Value range |
|
1.3.6.1.4.1.25506.2.22.1.2.2 (hh3cSSHAttemptIpAddrType) |
Address type of the invalid user. |
No |
InetAddressType |
INTEGER{ unknown(0), ipv4(1), ipv6(2), dns(16) } |
|
1.3.6.1.4.1.25506.2.22.1.2.3 (hh3cSSHAttemptIpAddr) |
Address of the invalid user. |
No |
InetAddress |
OCTET STRING (0..255) |
This table does not contain indexes. For information about the index or indexes of a MIB object instance in an SNMP variable binding, see the section for that MIB object.
Recommended action
Make sure the client and server use the same SSH version.
hh3cSSHUserLogin
Basic information
|
OID |
Event |
Type |
Severity |
Recovery notification |
Default status |
|
1.3.6.1.4.1.25506.2.22.1.3.0.3 |
User login |
Informational |
- |
- |
ON |
Description
This notification is generated when a user successfully logs in.
Status control
This notification cannot be set to the OFF state.
Objects
|
OID (object name) |
Description |
Index |
Type |
Value range |
|
1.3.6.1.4.1.25506.2.22.1.1.3.1.2 (hh3cSSHSessionUserName) |
User name of the SSH session. |
No |
DisplayString |
OCTET STRING (0..255) |
|
1.3.6.1.4.1.25506.2.22.1.1.3.1.3 (hh3cSSHSessionUserIpAddrType) |
User address type of the SSH session. |
No |
InetAddressType |
INTEGER{ unknown(0), ipv4(1), ipv6(2), dns(16) } |
|
1.3.6.1.4.1.25506.2.22.1.1.3.1.4 (hh3cSSHSessionUserIpAddr) |
User address of the SSH session. |
No |
InetAddress |
OCTET STRING (0..255) |
This table does not contain indexes. For information about the index or indexes of a MIB object instance in an SNMP variable binding, see the section for that MIB object.
Recommended action
No action is required.
hh3cSSHUserLogoff
Basic information
|
OID |
Event |
Type |
Severity |
Recovery notification |
Default status |
|
1.3.6.1.4.1.25506.2.22.1.3.0.4 |
User logout |
Informational |
- |
- |
ON |
Description
This notification is generated when a user logs out.
Status control
This notification cannot be set to the OFF state.
Objects
|
OID (object name) |
Description |
Index |
Type |
Value range |
|
1.3.6.1.4.1.25506.2.22.1.1.3.1.2 (hh3cSSHSessionUserName) |
User name of the SSH session. |
No |
DisplayString |
OCTET STRING (0..255) |
|
1.3.6.1.4.1.25506.2.22.1.1.3.1.3 (hh3cSSHSessionUserIpAddrType) |
User address type of the SSH session. |
No |
InetAddressType |
INTEGER{ unknown(0), ipv4(1), ipv6(2), dns(16) } |
|
1.3.6.1.4.1.25506.2.22.1.1.3.1.4 (hh3cSSHSessionUserIpAddr) |
User address of the SSH session. |
No |
InetAddress |
OCTET STRING (0..255) |
This table does not contain indexes. For information about the index or indexes of a MIB object instance in an SNMP variable binding, see the section for that MIB object.
Recommended action
Make sure the user is a valid user.
