Cerulean
[H]F Junkie
- Joined
- Jul 27, 2006
- Messages
- 9,476
Howdy!
I am on an adventure to disable SNMPv1 (unless required by vendor) and configure SNMPv2c/3 (only highest and most secure possible) on 100-300 clients or 20k-100k devices that are SNMP capable. This includes ensuring devices do not use default SNMP strings and credentials.
Does anyone have any recommendations on a way to reconfigure SNMP on devices that are already SNMP-enabled with default strings? Reconfiguring SNMP on 20k-100k devices from firewalls, printers, CCTV systems and cameras, IoT, and beyond by hand is practically a secured full-time job for several years alone -- massive technical debt! Surely there are other organizations out there who have figured this out.
This is in preparation for a SNMP-based network monitoring system like Auvik
I am on an adventure to disable SNMPv1 (unless required by vendor) and configure SNMPv2c/3 (only highest and most secure possible) on 100-300 clients or 20k-100k devices that are SNMP capable. This includes ensuring devices do not use default SNMP strings and credentials.
Does anyone have any recommendations on a way to reconfigure SNMP on devices that are already SNMP-enabled with default strings? Reconfiguring SNMP on 20k-100k devices from firewalls, printers, CCTV systems and cameras, IoT, and beyond by hand is practically a secured full-time job for several years alone -- massive technical debt! Surely there are other organizations out there who have figured this out.
This is in preparation for a SNMP-based network monitoring system like Auvik