Send netdisco-users mailing list submissions to
netdisco-users@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/netdisco-users
or, via email, send a message with subject or body 'help' to
netdisco-users-requ...@lists.sourceforge.net
You can reach the person managing the list at
netdisco-users-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of netdisco-users digest..."
Today's Topics:
1. Re: SNMPv3 Issues (Koen Dooms)
2. Re: SNMPv3 Issues (Oliver Gorwits)
--- Begin Message ---
Ariel,
Maybe NetDisco truncates your passphrase on a certain (special) character?
An @ maybe?
I'm not sure if there is a way to reveal the phrase in the netdisco-do
output.
Regards,
Koen
Op do 27 jun 2024 om 04:20 schreef Ariel Jones <ariel.jo...@gfcmsu.edu>:
> I have been working to get SNMPv3 working with my Cisco switches, however
> no matter what I do I can’t seem to get it working with NetDisco. I have
> confirmed I can connect with SNMPv3 with two other tools we utilize without
> any issue. Any help would be appreciated. The error “Error: passphrase
> chosen is below the length requirements of the USM (min=8).” shows in the
> output, however the passphrase is 15+ characters long.
>
> *deployment.yml file:*
>
>
>
> device_auth:
>
> - tag: 'Snmpv3cfg'
>
> user: 'USERNAME'
>
> auth:
>
> pass: 'PASSWORD'
>
> proto: 'SHA'
>
> priv:
>
> pass: 'PASSWORD'
>
> proto: 'AES'
>
>
>
> *Configuration from Cisco switches:*
>
>
>
> snmp-server view snmp-v3-ReadOnly-View internet included
>
> snmp-server view snmp-v3-ReadOnly-View lldpObjects included
>
> snmp-server view snmp-v3-ReadOnly-View cisco included
>
> snmp-server group snmp-v3-ReadOnly v3 auth context vlan- match prefix
>
> snmp-server view snmp-v3-ReadOnly-View iso included
>
> snmp-server group snmp-v3-ReadOnly v3 priv read snmp-v3-ReadOnly-View
>
> snmp-server user USERNAME snmp-v3-ReadOnly v3 auth sha PASSWORD priv aes
> 128 PASSWORD
>
> snmp-server group snmp-v3-ReadOnly v3 auth
>
> (There is also an access list allowing access)
>
>
>
> *Result of netdisco-do -D discover -d:*
>
>
>
> itservices@netdisco:~/netdisco/config$ sudo docker-compose run
> netdisco-do -D discover -d 10.10.80.80
>
> Creating itservices_netdisco-do_run ... done
>
> Attempting to create directory /home/netdisco/perl5
>
> [1] 2024-06-26 22:38:59 info App::Netdisco version 2.072003 loaded.
>
> [1] 2024-06-26 22:38:59 info discover: [10.10.80.80] started at Wed Jun
> 26 22:38:59 2024
>
> [1] 2024-06-26 22:39:00 debug discover: running with timeout 600s
>
> [1] 2024-06-26 22:39:00 debug => running workers for phase: check
>
> [1] 2024-06-26 22:39:00 debug -> run worker check/1000000
> "internal::backendfqdn"
>
> [1] 2024-06-26 22:39:00 debug -> run worker check/1000000
> "internal::snmpfastdiscover"
>
> [1] 2024-06-26 22:39:00 debug running with configured SNMP timeouts
>
> [1] 2024-06-26 22:39:00 debug -> run worker check/0 "discover"
>
> [1] 2024-06-26 22:39:00 debug Discover is able to run.
>
> [1] 2024-06-26 22:39:00 debug => running workers for phase: early
>
> [1] 2024-06-26 22:39:00 debug -> run worker early/100
> "discover::properties"
>
> [1] 2024-06-26 22:39:00 debug snmp reader cache warm: [10.10.80.80]
>
> [1] 2024-06-26 22:39:00 debug [10.10.80.80:161] try_connect with v: 3, t:
> 0.2, r: 0, class: SNMP::Info, comm: <hidden>
>
> Error: passphrase chosen is below the length requirements of the USM
> (min=8).
>
> [1] 2024-06-26 22:39:00 debug [10.10.80.80:161] try_connect with v: 3, t:
> 3, r: 2, class: SNMP::Info, comm: <hidden>
>
> Error: passphrase chosen is below the length requirements of the USM
> (min=8).
>
> [1] 2024-06-26 22:39:00 debug discover failed: could not SNMP connect to
> 10.10.80.80
>
> [1] 2024-06-26 22:39:00 debug -> run worker early/100
> "discover::properties"
>
> [1] 2024-06-26 22:39:00 debug -> run worker early/100
> "discover::properties"
>
> [1] 2024-06-26 22:39:00 debug -> run worker early/100
> "discover::properties"
>
> [1] 2024-06-26 22:39:00 debug -> run worker early/100
> "discover::properties"
>
> [1] 2024-06-26 22:39:00 debug => running workers for phase: main
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100
> "discover::canonicalip"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::entities"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::neighbors"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100
> "discover::neighbors::docsis"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100
> "discover::neighbors::routed"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::portpower"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100
> "discover::portproperties"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100
> "discover::portproperties::portaccessentity"
>
> [1] 2024-06-26 22:39:00 debug pae failed: could not SNMP connect to
> 10.10.80.80
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/0
> "discover::properties::tags"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/0
> "discover::properties::tags"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::vlans"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::wireless"
>
> [1] 2024-06-26 22:39:00 debug -> run worker main/0 "discover::withnodes"
>
> [1] 2024-06-26 22:39:00 debug => running workers for phase: late
>
> [1] 2024-06-26 22:39:00 debug -> run worker late/0 "discover::hooks"
>
> [1] 2024-06-26 22:39:00 debug [10.10.80.80] hooks - skipping due to
> incomplete job
>
> [1] 2024-06-26 22:39:00 debug -> run worker late/0 "discover::snapshot"
>
> [1] 2024-06-26 22:39:00 debug discover failed: could not SNMP connect to
> 10.10.80.80
>
> [1] 2024-06-26 22:39:00 info discover: finished at Wed Jun 26 22:39:00
> 2024
>
> [1] 2024-06-26 22:39:00 info discover: status defer: discover failed:
> could not SNMP connect to 10.10.80.80
>
> ERROR: 1
> _______________________________________________
> Netdisco mailing list
> netdisco-users@lists.sourceforge.net
> https://sourceforge.net/p/netdisco/mailman/netdisco-users/
>
--
mvg,
Koen
--- End Message ---
--- Begin Message ---
Yes, likely the SNMP library inside Netdisco is truncating.
For example I found this article via google:
https://support.checkpoint.com/results/sk/sk172066
Try setting a new passphrase without special characters?
On Thu, 27 Jun 2024 at 11:34, Koen Dooms <drhn...@gmail.com> wrote:
> Ariel,
>
> Maybe NetDisco truncates your passphrase on a certain (special) character?
> An @ maybe?
> I'm not sure if there is a way to reveal the phrase in the netdisco-do
> output.
>
> Regards,
> Koen
>
> Op do 27 jun 2024 om 04:20 schreef Ariel Jones <ariel.jo...@gfcmsu.edu>:
>
>> I have been working to get SNMPv3 working with my Cisco switches, however
>> no matter what I do I can’t seem to get it working with NetDisco. I have
>> confirmed I can connect with SNMPv3 with two other tools we utilize without
>> any issue. Any help would be appreciated. The error “Error: passphrase
>> chosen is below the length requirements of the USM (min=8).” shows in the
>> output, however the passphrase is 15+ characters long.
>>
>> *deployment.yml file:*
>>
>>
>>
>> device_auth:
>>
>> - tag: 'Snmpv3cfg'
>>
>> user: 'USERNAME'
>>
>> auth:
>>
>> pass: 'PASSWORD'
>>
>> proto: 'SHA'
>>
>> priv:
>>
>> pass: 'PASSWORD'
>>
>> proto: 'AES'
>>
>>
>>
>> *Configuration from Cisco switches:*
>>
>>
>>
>> snmp-server view snmp-v3-ReadOnly-View internet included
>>
>> snmp-server view snmp-v3-ReadOnly-View lldpObjects included
>>
>> snmp-server view snmp-v3-ReadOnly-View cisco included
>>
>> snmp-server group snmp-v3-ReadOnly v3 auth context vlan- match prefix
>>
>> snmp-server view snmp-v3-ReadOnly-View iso included
>>
>> snmp-server group snmp-v3-ReadOnly v3 priv read snmp-v3-ReadOnly-View
>>
>> snmp-server user USERNAME snmp-v3-ReadOnly v3 auth sha PASSWORD priv aes
>> 128 PASSWORD
>>
>> snmp-server group snmp-v3-ReadOnly v3 auth
>>
>> (There is also an access list allowing access)
>>
>>
>>
>> *Result of netdisco-do -D discover -d:*
>>
>>
>>
>> itservices@netdisco:~/netdisco/config$ sudo docker-compose run
>> netdisco-do -D discover -d 10.10.80.80
>>
>> Creating itservices_netdisco-do_run ... done
>>
>> Attempting to create directory /home/netdisco/perl5
>>
>> [1] 2024-06-26 22:38:59 info App::Netdisco version 2.072003 loaded.
>>
>> [1] 2024-06-26 22:38:59 info discover: [10.10.80.80] started at Wed Jun
>> 26 22:38:59 2024
>>
>> [1] 2024-06-26 22:39:00 debug discover: running with timeout 600s
>>
>> [1] 2024-06-26 22:39:00 debug => running workers for phase: check
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker check/1000000
>> "internal::backendfqdn"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker check/1000000
>> "internal::snmpfastdiscover"
>>
>> [1] 2024-06-26 22:39:00 debug running with configured SNMP timeouts
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker check/0 "discover"
>>
>> [1] 2024-06-26 22:39:00 debug Discover is able to run.
>>
>> [1] 2024-06-26 22:39:00 debug => running workers for phase: early
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker early/100
>> "discover::properties"
>>
>> [1] 2024-06-26 22:39:00 debug snmp reader cache warm: [10.10.80.80]
>>
>> [1] 2024-06-26 22:39:00 debug [10.10.80.80:161] try_connect with v: 3,
>> t: 0.2, r: 0, class: SNMP::Info, comm: <hidden>
>>
>> Error: passphrase chosen is below the length requirements of the USM
>> (min=8).
>>
>> [1] 2024-06-26 22:39:00 debug [10.10.80.80:161] try_connect with v: 3,
>> t: 3, r: 2, class: SNMP::Info, comm: <hidden>
>>
>> Error: passphrase chosen is below the length requirements of the USM
>> (min=8).
>>
>> [1] 2024-06-26 22:39:00 debug discover failed: could not SNMP connect to
>> 10.10.80.80
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker early/100
>> "discover::properties"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker early/100
>> "discover::properties"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker early/100
>> "discover::properties"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker early/100
>> "discover::properties"
>>
>> [1] 2024-06-26 22:39:00 debug => running workers for phase: main
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100
>> "discover::canonicalip"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::entities"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::neighbors"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100
>> "discover::neighbors::docsis"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100
>> "discover::neighbors::routed"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::portpower"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100
>> "discover::portproperties"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100
>> "discover::portproperties::portaccessentity"
>>
>> [1] 2024-06-26 22:39:00 debug pae failed: could not SNMP connect to
>> 10.10.80.80
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/0
>> "discover::properties::tags"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/0
>> "discover::properties::tags"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::vlans"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/100 "discover::wireless"
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker main/0 "discover::withnodes"
>>
>> [1] 2024-06-26 22:39:00 debug => running workers for phase: late
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker late/0 "discover::hooks"
>>
>> [1] 2024-06-26 22:39:00 debug [10.10.80.80] hooks - skipping due to
>> incomplete job
>>
>> [1] 2024-06-26 22:39:00 debug -> run worker late/0 "discover::snapshot"
>>
>> [1] 2024-06-26 22:39:00 debug discover failed: could not SNMP connect to
>> 10.10.80.80
>>
>> [1] 2024-06-26 22:39:00 info discover: finished at Wed Jun 26 22:39:00
>> 2024
>>
>> [1] 2024-06-26 22:39:00 info discover: status defer: discover failed:
>> could not SNMP connect to 10.10.80.80
>>
>> ERROR: 1
>> _______________________________________________
>> Netdisco mailing list
>> netdisco-users@lists.sourceforge.net
>> https://sourceforge.net/p/netdisco/mailman/netdisco-users/
>>
>
>
> --
> mvg,
> Koen
> _______________________________________________
> Netdisco mailing list
> netdisco-users@lists.sourceforge.net
> https://sourceforge.net/p/netdisco/mailman/netdisco-users/
--- End Message ---
_______________________________________________
Netdisco mailing list - Digest Mode
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
