241 lines
7.2 KiB
Plaintext
241 lines
7.2 KiB
Plaintext
CIENA-WS-PLATFORM-ENCRYPTION-MIB DEFINITIONS ::= BEGIN
|
|
|
|
IMPORTS
|
|
cienaWsPlatformConfig
|
|
FROM CIENA-WS-MIB
|
|
ifIndex
|
|
FROM IF-MIB
|
|
MODULE-COMPLIANCE, OBJECT-GROUP
|
|
FROM SNMPv2-CONF
|
|
Integer32, MODULE-IDENTITY, OBJECT-TYPE
|
|
FROM SNMPv2-SMI
|
|
TruthValue, DisplayString
|
|
FROM SNMPv2-TC;
|
|
|
|
cienaWsPlatformEncryptionMIB MODULE-IDENTITY
|
|
LAST-UPDATED "201808220000Z"
|
|
ORGANIZATION "Ciena Corporation"
|
|
CONTACT-INFO "Web URL: http://www.ciena.com/
|
|
Postal: 7035 Ridge Road
|
|
Hanover, Maryland 21076
|
|
U.S.A.
|
|
Phone: +1 800-921-1144
|
|
Fax: +1 410-694-5750"
|
|
DESCRIPTION
|
|
"Encryption MIB name change to include PLATFORM in the name."
|
|
REVISION "201808220000Z"
|
|
DESCRIPTION
|
|
"Datapath encryption support on Waveserver Ai."
|
|
REVISION "201807160000Z"
|
|
DESCRIPTION "Added MIB Definition"
|
|
::= { cienaWsPlatformConfig 23 }
|
|
|
|
AuthenticationMaterialType ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION "None"
|
|
SYNTAX INTEGER {
|
|
unknown (0),
|
|
preSharedKey (1),
|
|
certificateECC(2)
|
|
}
|
|
|
|
WarmRestartType ::= TEXTUAL-CONVENTION
|
|
STATUS current
|
|
DESCRIPTION "None"
|
|
SYNTAX INTEGER {
|
|
unknown (0),
|
|
fips (1),
|
|
nonFIPS (2)
|
|
}
|
|
|
|
channelEncryptionTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF ChannelEncryptionEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "Data Path Encryption properties for a channel of a line port."
|
|
::= { cienaWsPlatformEncryptionMIB 3 }
|
|
|
|
channelEncryptionEntry OBJECT-TYPE
|
|
SYNTAX ChannelEncryptionEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "Entry for channelEncryptionTable."
|
|
INDEX { ifIndex }
|
|
::= { channelEncryptionTable 1 }
|
|
|
|
ChannelEncryptionEntry ::= SEQUENCE {
|
|
channelDescr DisplayString,
|
|
peerAuthenticationStatus INTEGER,
|
|
peerAuthenticationStatusUpdateTime DisplayString
|
|
}
|
|
|
|
channelDescr OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "ifIndex descriptor"
|
|
::= { channelEncryptionEntry 1 }
|
|
|
|
peerAuthenticationStatus OBJECT-TYPE
|
|
SYNTAX INTEGER { unknown(0), pass(1), fail(2) }
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "Whether the channel of a line port is authenticated with its peer."
|
|
::= { channelEncryptionEntry 2 }
|
|
|
|
peerAuthenticationStatusUpdateTime OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "Last time when the channel's peer authentication status is updated."
|
|
::= { channelEncryptionEntry 3 }
|
|
|
|
encryptionPreSharedKeyTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF EncryptionPreSharedKeyEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "Channel of a line port data path encryption pre-shared-key properties."
|
|
::= { cienaWsPlatformEncryptionMIB 4 }
|
|
|
|
encryptionPreSharedKeyEntry OBJECT-TYPE
|
|
SYNTAX EncryptionPreSharedKeyEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "Entry for encryptionPreSharedKeyTable."
|
|
INDEX { ifIndex }
|
|
::= { encryptionPreSharedKeyTable 1 }
|
|
|
|
EncryptionPreSharedKeyEntry ::= SEQUENCE {
|
|
encryptionPreSharedChannelDescr DisplayString,
|
|
encryptionPreSharedKeyFingerprint DisplayString,
|
|
encryptionPreSharedKeyStatus TruthValue,
|
|
encryptionPreSharedKeyDescription DisplayString
|
|
}
|
|
|
|
encryptionPreSharedChannelDescr OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "ifIndex descriptor"
|
|
::= { encryptionPreSharedKeyEntry 1 }
|
|
|
|
encryptionPreSharedKeyFingerprint OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "A system generated hash value based on the provisioned pre-shared-key. If no key is provisioned, the fingerprint is empty."
|
|
::= { encryptionPreSharedKeyEntry 2 }
|
|
|
|
encryptionPreSharedKeyStatus OBJECT-TYPE
|
|
SYNTAX TruthValue
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "Boolean value to indicate whether the pre-shared-key has been setup by user or not."
|
|
::= { encryptionPreSharedKeyEntry 3 }
|
|
|
|
encryptionPreSharedKeyDescription OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "A human-readable description for the applied pre-shared-key. Eg. 'PSK for site 1 and site 2'"
|
|
::= { encryptionPreSharedKeyEntry 4 }
|
|
|
|
systemEncryptionTable OBJECT-TYPE
|
|
SYNTAX SEQUENCE OF SystemEncryptionEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "System level data path encryption properties."
|
|
::= { cienaWsPlatformEncryptionMIB 5 }
|
|
|
|
systemEncryptionEntry OBJECT-TYPE
|
|
SYNTAX SystemEncryptionEntry
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "Entry for systemEncryptionTable."
|
|
INDEX { systemEncryptionTableSnmpKey }
|
|
::= { systemEncryptionTable 1 }
|
|
|
|
SystemEncryptionEntry ::= SEQUENCE {
|
|
systemEncryptionTableSnmpKey Integer32,
|
|
authenticationMaterialType AuthenticationMaterialType,
|
|
warmRestartType WarmRestartType,
|
|
signingCACertificate DisplayString,
|
|
entityCertificate DisplayString
|
|
}
|
|
|
|
systemEncryptionTableSnmpKey OBJECT-TYPE
|
|
SYNTAX Integer32(0..2147483647)
|
|
MAX-ACCESS not-accessible
|
|
STATUS current
|
|
DESCRIPTION "Unique key for cwsSystemEncryptionState"
|
|
::= { systemEncryptionEntry 1 }
|
|
|
|
authenticationMaterialType OBJECT-TYPE
|
|
SYNTAX AuthenticationMaterialType
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "Authentication material for this Waveserver. Default Type is pre-shared-key."
|
|
::= { systemEncryptionEntry 2 }
|
|
|
|
warmRestartType OBJECT-TYPE
|
|
SYNTAX WarmRestartType
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "Defines the warm-restart type for all encryption cards in the chassis. The default type is FIPS"
|
|
::= { systemEncryptionEntry 3 }
|
|
|
|
signingCACertificate OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "The Signing CA (Certificate Authority) Certificate"
|
|
::= { systemEncryptionEntry 4 }
|
|
|
|
entityCertificate OBJECT-TYPE
|
|
SYNTAX DisplayString
|
|
MAX-ACCESS read-only
|
|
STATUS current
|
|
DESCRIPTION "The Entity Certificate name issued by Certificate Authority (CA)"
|
|
::= { systemEncryptionEntry 5 }
|
|
|
|
|
|
-- Conformance statements
|
|
cienaWsEncryptionObjects OBJECT IDENTIFIER
|
|
::= { cienaWsPlatformEncryptionMIB 1 }
|
|
|
|
cienaWsEncryptionConformance OBJECT IDENTIFIER
|
|
::= { cienaWsPlatformEncryptionMIB 2 }
|
|
|
|
cienaWsEncryptionGroups OBJECT IDENTIFIER
|
|
::= { cienaWsEncryptionConformance 1 }
|
|
|
|
cienaWsEncryptionGroup OBJECT-GROUP
|
|
OBJECTS {
|
|
channelDescr,
|
|
peerAuthenticationStatus,
|
|
peerAuthenticationStatusUpdateTime,
|
|
encryptionPreSharedChannelDescr,
|
|
encryptionPreSharedKeyFingerprint,
|
|
encryptionPreSharedKeyStatus,
|
|
encryptionPreSharedKeyDescription,
|
|
authenticationMaterialType,
|
|
warmRestartType ,
|
|
signingCACertificate,
|
|
entityCertificate
|
|
}
|
|
|
|
STATUS current
|
|
DESCRIPTION "Conformance Group"
|
|
::= { cienaWsEncryptionGroups 1 }
|
|
|
|
cienaWsEncryptionCompliances OBJECT IDENTIFIER
|
|
::= { cienaWsEncryptionConformance 2 }
|
|
|
|
cienaWsEncryptionCompliance MODULE-COMPLIANCE
|
|
STATUS current
|
|
DESCRIPTION "Compliance"
|
|
MODULE MANDATORY-GROUPS { cienaWsEncryptionGroup }
|
|
::= { cienaWsEncryptionCompliances 1 }
|
|
|
|
END -- End module
|