https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418329#M37409 Hi<BR />Using Hp Insight Manager v5.0, I have around 300 computers managed and sending traps to IM. Around 20 computers/servers give numerous authentication failure traps and I am trying to correct this problem. After searching the web, I have found that this problem is often related to incorrect community strings and I have checked that first. Community strings are OK.<BR />For instance, a server HP Proliant G5 with Windows W2k3 server is sending 6 auth traps at the same time everyday. Another computer running Windows XP is sending 50 traps everyday.<BR /><BR />My questions are:<BR />How do I diagnose what is happening?<BR />What do I need to check? <BR />What exactly is generating these traps?<BR />TIA<BR />Steve<BR /><BR />Exact message is:<BR />Description<BR />An authenticationFailure trap signifies that the SNMPv2 entity, acting in an agent role, has received a protocol message that is not properly authenticated. While all implementations of the SNMPv2 must be capable of generating this trap, the snmpEnableAuthenTraps object indicates whether this trap will be generated.<BR /><BR />Trap details<BR />Mib Information<BR />The associated MIB File Name for this trap issnmpv2-mib.mib and the MIB identifier SNMPv2-MIB Tue, 12 May 2009 13:38:30 GMT paquins 2009-05-12T13:38:30Z https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418329#M37409 Hi<BR />Using Hp Insight Manager v5.0, I have around 300 computers managed and sending traps to IM. Around 20 computers/servers give numerous authentication failure traps and I am trying to correct this problem. After searching the web, I have found that this problem is often related to incorrect community strings and I have checked that first. Community strings are OK.<BR />For instance, a server HP Proliant G5 with Windows W2k3 server is sending 6 auth traps at the same time everyday. Another computer running Windows XP is sending 50 traps everyday.<BR /><BR />My questions are:<BR />How do I diagnose what is happening?<BR />What do I need to check? <BR />What exactly is generating these traps?<BR />TIA<BR />Steve<BR /><BR />Exact message is:<BR />Description<BR />An authenticationFailure trap signifies that the SNMPv2 entity, acting in an agent role, has received a protocol message that is not properly authenticated. While all implementations of the SNMPv2 must be capable of generating this trap, the snmpEnableAuthenTraps object indicates whether this trap will be generated.<BR /><BR />Trap details<BR />Mib Information<BR />The associated MIB File Name for this trap issnmpv2-mib.mib and the MIB identifier SNMPv2-MIB Tue, 12 May 2009 13:38:30 GMT https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418329#M37409 paquins 2009-05-12T13:38:30Z https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418330#M37410 Do you have any other application using SNMP in your network? Everything can be fine between you HP SIM server and your targets, but if someone else is doing SNMP scanning with the wrong community string, the authentication trap will be generated. Best practice is to disable that trap, BTW, because it can easily overwhelm your SNMP trap receiver. Tue, 12 May 2009 14:51:39 GMT https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418330#M37410 David Claypool 2009-05-12T14:51:39Z https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418331#M37411 Yes. OpManager is also using SNMP to collect data at 5 minutes intervals. But the frequency of the authentication traps(5-10 traps once a day) does not correspond to the polling frequency of OpManager(every 5 minutes).<BR />How do I find who is doing SNMP requests on my server?<BR />You suggest that it is best practice to disable authentication traps? Do you have reading info on suggested best practices on SNMP config?<BR /><BR />Steve Tue, 12 May 2009 16:02:14 GMT https://community.hpe.com/t5/server-management-systems/snmp-authentication-failure-trap/m-p/4418331#M37411 paquins 2009-05-12T16:02:14Z