Hi everybody, It seems like I have the same issue. After installing version 8.1 with sp002, I started to get this unauthorized failure trap from some routers. You mentioned that this issue should be solved with SP001(swbug020358, SP001) Anyone else have this problem.?? Anyone solved it.??
Nedzad, do you still have this problem, have you upgrade to sp001 or sp002.?? Thanks Jan-Erik -----Ursprungligt meddelande----- Från: Nolz Andreas [mailto:[email protected]] Skickat: den 4 juli 2008 09:07 Till: spectrum Ämne: FW: [spectrum] Unauthorized Failure Trap Nezad, can be a Spectrum problem The following bug is solved in SP1: Corrected an issue where SPECTRUM VLAN discoveries on Cisco routers would cause an authentication failure trap to be generated. (swbug020358, SP001) Regards Andreas -----Original Message----- From: Nedzad Joldic [mailto:[email protected]] Sent: Thursday, July 03, 2008 6:51 PM To: spectrum Subject: RE: [spectrum] Unauthorized Failure Trap Thank you all for feedback! Yes, wrong community string would be the first logical explanation for this trap or possibly ACL denying snmp query from unauthorized NMS even with correct community string, HOWEVER... ...I can query all these devices all day long and with the same community string and I never get "Unauthorized failure trap" as long as I don't query Forwarding table->Per VLAN. So devices seem to be happy with same community string when Spectrum asks for any other Gets. I am sure there are no other devices sending SNMP Gets, since there we never get this alarm unless we do gets on Forwarding table. Thanks, Nedzad -----Original Message----- From: DAVID.A SMITH [mailto:[email protected]] Sent: Thursday, July 03, 2008 11:40 AM To: spectrum Subject: RE: [spectrum] Unauthorized Failure Trap Hi 7.1 PS3 Solaris Graph and Server on one server (not really using graph much anymore) One click on another server. We get lots of "Unauthorized Failure Trap" alarms, but believe them all to be legitimate. These are caused when ever any device anwhere on our network, tries to do an SNMP get to a device using the wrong community string - and the device is configured to report this, to spectrum, with a trap. So, you can elimiate these alarms (if unwanted) by: Finding out which device is sending the SNMP get (this is listed in the alarm/event). If the device is not supposed to be issuing SNMP gets, cause it to stop. If the device is supposed to be able to do Gets, but has the wrong string, then configure it with the right string. Or, trun off the trap generation on the device, so it does not report the failed get. Or, if this alarm would never be wanted under any conditions, reconfigure the event within spectrum to stop calling an alarm. You could simply log the event in the event history, or not ever do that. (If memory serves, you need the level one toolkit to do this). We have other monitoring systems beside specrtrum, so sometime they are set up wrong, and bang against devices with the wrong string. Also, some times applicainot server or other items "out there" do Gets for who knows what reasons.... I hope this helps Namaste David >>> "Robert Curcio" <[email protected]> 2008-07-03 10:58:23 AM >>> We used to get those alarms when using the wrong set community string. ________________________________ From: Nedzad Joldic [mailto:[email protected]] Sent: Thursday, July 03, 2008 10:42 AM To: spectrum Subject: RE: [spectrum] Unauthorized Failure Trap We have same problem running Spectrum 8.1 H08. I have to say that we are still working with CA consultants to finalize our implementation of Spectrum as configuration may not be fully optimized for our environment. I can replicate this alarm anytime on some Cisco switches which are configured with multiple VLANs. I can force this trap to be generated when I query switch (Cisco 4503 for example) for mac-address-table via Information->Transparent Bridge Table->Forwarding Table-> Per VLAN. "Authorization Failure Trap Received" alarm gets created, however no VLANs show up in popup window "Select VLAN" even though switch definitely has multiple VLANs. Yet, there are few switches that present VLAN list just fine. I couldn't find any differences in global configuration settings between network devices that do alarm and those that work fine. Could this alarm be related to VLAN discovery not working properly? Regards, Nedzad Joldic systems engineer scivantage 212.747.6855 direct 646.886.8098 cell > Automate > Connect > Transact ________________________________ From: Webster, Keith W USA Mr USA 160th Sig Bde (ATT) [mailto:[email protected]] Sent: Thursday, July 03, 2008 7:05 AM To: spectrum Subject: [spectrum] Unauthorized Failure Trap Does anyone have a way of determining what might be causing this alarm. Thanks, Keith Webster Lead Network Management Engineer AT&T Government Solutions INC. TNOSC - 160th Signal BDE TAC-SWACAA DSN: 430-3538 * --To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected] * --To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected] This E-Mail has been scanned for viruses. --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected]
