The following procedures describe how to configure a default or device-specific Symantec Advanced Threat Protection (ATP) connection to an SNMP v3 manager or trap receiver.
If you use the same server for both management and traps, configure the connection for the Manager role, and then repeat the procedure for the Trap role. Enter the same IP address for both.
To configure a connection to the default SNMP v3 manager
In ATP Manager, click Settings > Appliances, and then click Edit Default Appliance.
In the SNMP panel, click +Add SNMP v3.
Specify the following information:
From the menu, choose Manager if you want the SNMP management server to poll ATP. Choose Trap if you want the SNMP trap receiver to accept SNMP notifications from ATP.
Trap IP Address
Type the IP address of the SNMP trap receiver.
Type the user name that you assigned to this ATP device on the SNMP manager/ trap receiver.
Type the password that you assigned to the SNMP manager and trap receivers respectively.
From the menu, select the authentication hash type that matches the authentication hash type on the SNMP manager/ trap receiver: MD5 or SHA.
From the menu, select the encryption type that matches the encryption type on the SNMP manager/ trap receiver: DES or AES. ATP supports AES128.
Type the secret key that matches the secret key on the SNMP manager/ trap receiver.
The engine ID is a unique identifier (usually in hexadecimal form) for the SNMP v3 trap server. This ID is created when the SNMP service is created. The administrator of the SNMP server should be able to provide the engine ID value to type in this field.
Repeat steps 2 through 4 for each additional SNMP v3 server connection that you need to configure.
Check Enable SNMP.
This setting lets you enable and disable SNMP communications without deleting the connection settings.