CISCO-PKI-MIB: View SNMP OID List / Download MIB
VENDOR: CISCO
| Home | MIB: CISCO-PKI-MIB | |||
|---|---|---|---|---|
| Download as: |
Download standard MIB format if you are planning to load a MIB file into some system (OS, Zabbix, PRTG ...) or view it with a MIB browser. CSV is more suitable for analyzing and viewing OID' and other MIB objects in excel. JSON and YAML formats are usually used in programing even though some systems can use MIB in YAML format (like Logstash).
|
|||
| Object Name | OID | Type | Access | Info |
| ciscoPkiMIB | 1.3.6.1.4.1.9.9.854 |
description |
||
| ciscoPkiMIBNotifs | 1.3.6.1.4.1.9.9.854.1 | |||
| ciscoPkiCertInstallAlert | 1.3.6.1.4.1.9.9.854.1.1 |
When a certificate is installed on the device, notification will be sent with following information. a) Certificates Serial number b) Certificate Issuer-name c) Certificate Subject name d) Trustpoint name e) Type of certificate. (i.e. CA/ID) certificate f) Certificate Start Date g) Certificate End Date Alert will not be sent for RA certificates, trustpool certificates and self-signed non-persistent certificates. |
||
| ciscoPkiCertExpiryAlert | 1.3.6.1.4.1.9.9.854.1.2 |
Certificate Expiry alert consists of following a) Certificate Serial number b) Certificate Issuer-name c) Trustpoint name d) Type of certificate (i.e. CA/ID/SUBCA/RA) e) Certificate remaining lifetime in seconds. f) Certificate subject-name When a certificate is reaching its expiry on the router, a trap will be sent to SNMP server at regular intervals starting from 60days to till 1week. From 1week onwards daily one trap will be sent with following information a) Certificate Serial number b) Certificate Issuer-name c) Trustpoint name d) Type of certificate (i.e. CA/ID) e) Certificate remaining lifetime. Alert will not be sent if trustpoint is configured with auto-enroll and corresponding shadow certificate/rollover certificate is present provided, shadow/rollover certificates start time is same/behind certificate end time. If shadow/rollover certificate start time is ahead of certificate end time, alerts will be continued to send because shadow certificate wont be valid from certificates expiry time. Expiry alerts will not be sent for trustpool certificates. |
||
| ciscoPkiMIBObjects | 1.3.6.1.4.1.9.9.854.2 | |||
| ciscoPkiConfiguration | 1.3.6.1.4.1.9.9.854.2.1 | |||
| ciscoPkiEnrollmentProfile | 1.3.6.1.4.1.9.9.854.2.1.1 | |||
| ciscoPkiEnrollmentTable | 1.3.6.1.4.1.9.9.854.2.1.1.1 | no-access |
Please enter the Table Description here. |
|
| 1.3.6.1.4.1.9.9.854.2.1.1.1.1 | no-access |
An entry (conceptual row) in the xxxTable. |
||
| enrollProfLabel | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.3 | displaystring | no-access |
Unique value to display Enrollment Label. If enrollment profiles are not present, string size of 0 will show nothing. |
| enrolCredentials | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.4 | displaystring | read-only |
Please enter the object description here |
| authLocation | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.5 | displaystring | read-only |
Please enter the object description here |
| authMethod | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.6 | displaystring | read-only |
Please enter the object description here |
| authVrf | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.7 | displaystring | read-only |
Please enter the object description here |
| authSourceInter | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.8 | displaystring | read-only |
Please enter the object description here |
| enrolMethod | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.9 | displaystring | read-only |
Enrollment method will be displayed which will be used to authenticate and enroll. If enrollment method is configured as terminal, this parameter gives enrollment terminal If enrollment method is configured with url, this parameter returns enrollment url ip_addresss If vrf is configured as part of enrollment url, it will be shown as part of enrollment url ip_address vrf interface |
| enrolLocation | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.10 | displaystring | read-only |
Please enter the object description here |
| enrolVrf | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.11 | displaystring | read-only |
Please enter the object description here |
| enrolSourceInter | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.12 | displaystring | read-only |
Please enter the object description here |
| reenrolMethod | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.13 | displaystring | read-only |
Please enter the object description here |
| reenrolLocation | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.14 | displaystring | read-only |
Please enter the object description here |
| reenrolVrf | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.15 | displaystring | read-only |
Please enter the object description here |
| reenrolSourceInter | 1.3.6.1.4.1.9.9.854.2.1.1.1.1.16 | displaystring | read-only |
Please enter the object description here |
| ciscoPkiTrustpoints | 1.3.6.1.4.1.9.9.854.2.1.2 | |||
| pkiTPTable | 1.3.6.1.4.1.9.9.854.2.1.2.1 | no-access |
Please enter the Table Description here. |
|
| 1.3.6.1.4.1.9.9.854.2.1.2.1.1 | no-access |
An entry (conceptual row) in the xxxTable. |
||
| tpLabel | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.1 | displaystring | no-access |
Unique name of Trustpoint Label. When there is no trustpoint configured, size 0 shows no trustpoint configured. |
| subjectName | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.2 | displaystring | read-only |
Subject name configured under the trustpoint will be returned |
| subjectAltName | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.3 | displaystring | read-only |
subject alternate name configured under the trustpoint which can be used while generating the csr. |
| aaaListInfo | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.4 | displaystring | read-only |
Returns AAA authorization list to be used configured under trustpoint. AAA authorization list will be used during peer certificate validations etc. In order to access information on AAA list, please check AAA MIB corresponding to this AAA label. |
| enrollmentConfig | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.5 | displaystring | read-only |
Enrollment configuration which is configured under the trustpoint will be returned. |
| vrfConfig | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.6 | displaystring | read-only |
VRF interface configured under trustpoint which can be used for enrollment and obtaining CRL's |
| sourceInter | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.7 | displaystring | read-only |
source Interface configured under trustpoint. |
| autoEnroll | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.8 | displaystring | read-only |
If autoEnroll is configured under the trustpoint, autoEnroll returns with the percentage configured. If the percentage is not configured, but auto-enroll is configured under trustpoint, this parameter return auto-enroll. If percentage is configured, parameter returns auto-enroll |
| keyPairLabel | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.10 | displaystring | read-only |
Displays keypairLabel associated to this trustpoint if it is enrolled. During authentication, we wont generate the keypair Label. |
| revocationMethod | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.11 | displaystring | read-only |
This object displays revocation check configured on the device. If nothing is configured under the trustpoint, by default revocation-check crl will be updated. |
| hashAlgo | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.12 | displaystring | read-only |
Hash algorithm configured under the trustpoint. This will be used while selecting the HASH algorithm when CA server responded with GetCACapabilities list. Default value is sha1 |
| trustpointState | 1.3.6.1.4.1.9.9.854.2.1.2.1.1.13 | displaystring | read-only |
Trustpoint state displays following 1) Authenticated - Trustpoint is in Authenticated state. 2) Enrolled - Trustpoint is authenticated and enrolled. Certificate state is granted. 3) Pending - Trustpoint is authenticated but enrollment is in pending state. This means CA server returned PENDING for the router certificate. 4) None - Trustpoint is neither authenticated nor enrolled. |
| ciscoPkiCertificates | 1.3.6.1.4.1.9.9.854.2.2 | |||
| certChainTable | 1.3.6.1.4.1.9.9.854.2.2.1 | no-access |
Please enter the Table Description here. |
|
| 1.3.6.1.4.1.9.9.854.2.2.1.1 | no-access |
An entry (conceptual row) in the xxxTable. |
||
| certChainLabel | 1.3.6.1.4.1.9.9.854.2.2.1.1.1 | displaystring | no-access |
Please enter the object description here |
| certSerialNum | 1.3.6.1.4.1.9.9.854.2.2.1.1.2 | displaystring | read-only |
Please enter the object description here |
| certIssuerName | 1.3.6.1.4.1.9.9.854.2.2.1.1.3 | displaystring | read-only |
Please enter the object description here |
| certStartDate | 1.3.6.1.4.1.9.9.854.2.2.1.1.4 | displaystring | read-only |
Please enter the object description here |
| certEndDate | 1.3.6.1.4.1.9.9.854.2.2.1.1.5 | displaystring | read-only |
Please enter the object description here |
| certType | 1.3.6.1.4.1.9.9.854.2.2.1.1.6 | displaystring | read-only |
Please enter the object description here |
| certRemainingLife | 1.3.6.1.4.1.9.9.854.2.2.1.1.7 | displaystring | no-access |
Please enter the object description here |
| certTpLabel | 1.3.6.1.4.1.9.9.854.2.2.1.1.8 | displaystring | read-only |
Please enter the object description here |
| certSubName | 1.3.6.1.4.1.9.9.854.2.2.1.1.9 | displaystring | read-only |
Please enter the object description here |
| ciscoPkiRevocationInfo | 1.3.6.1.4.1.9.9.854.2.3 | |||
| ciscoPkiCRLInfo | 1.3.6.1.4.1.9.9.854.2.3.1 | |||
| pkiCRLTable | 1.3.6.1.4.1.9.9.854.2.3.1.1 | no-access |
Please enter the Table Description here. |
|
| 1.3.6.1.4.1.9.9.854.2.3.1.1.1 | no-access |
An entry (conceptual row) in the xxxTable. |
||
| crlTpLabel | 1.3.6.1.4.1.9.9.854.2.3.1.1.1.1 | displaystring | no-access |
Unique trustpoint Label |
| issuerName | 1.3.6.1.4.1.9.9.854.2.3.1.1.1.2 | displaystring | read-only |
CRL Issuer name |
| sequenceNumb | 1.3.6.1.4.1.9.9.854.2.3.1.1.1.3 | displaystring | read-only |
Please enter the object description here |
| nextUpdate | 1.3.6.1.4.1.9.9.854.2.3.1.1.1.4 | displaystring | read-only |
Please enter the object description here |
| crlSize | 1.3.6.1.4.1.9.9.854.2.3.1.1.1.5 | unsigned32 | read-only |
Please enter the object description here |
| deltaCRLFlag | 1.3.6.1.4.1.9.9.854.2.3.1.1.1.6 | unsigned32 | read-only |
This object specifies the storage type for this conceptual row. The following columnar objects are allowed to be writable when the storageType of this conceptual row is permanent(4): (replace with list of columns) |
| ciscoPkiOSCPInfo | 1.3.6.1.4.1.9.9.854.2.3.2 | |||
| pkiOCSPTable | 1.3.6.1.4.1.9.9.854.2.3.2.1 | no-access |
Please enter the Table Description here. |
|
| 1.3.6.1.4.1.9.9.854.2.3.2.1.1 | no-access |
An entry (conceptual row) in the xxxTable. |
||
| ocspTpLabel | 1.3.6.1.4.1.9.9.854.2.3.2.1.1.1 | displaystring | no-access |
Please enter the object description here |
| responderID | 1.3.6.1.4.1.9.9.854.2.3.2.1.1.2 | displaystring | read-only |
An identifier of the responder (DN name or a hash of its key) |
| thisUpdate | 1.3.6.1.4.1.9.9.854.2.3.2.1.1.3 | displaystring | read-only |
The issuing time of the revocation information. |
| nexUpdate | 1.3.6.1.4.1.9.9.854.2.3.2.1.1.4 | displaystring | read-only |
The issuing time of the revocation information that will update that one. |
| ciscoPkiMIBConform | 1.3.6.1.4.1.9.9.854.3 | |||
| ciscoPkiMIBCompliances | 1.3.6.1.4.1.9.9.854.3.1 | |||
| ciscoPkiMIBCompliance | 1.3.6.1.4.1.9.9.854.3.1.1 |
This is a default module-compliance containing default object groups. |
||
| ciscoPkiMIBGroups | 1.3.6.1.4.1.9.9.854.3.2 | |||
| ciscoPkiMIBMainObjectGroup | 1.3.6.1.4.1.9.9.854.3.2.1 |
The is a test group. |
||
| ciscoPkiMIBNotificationGroup | 1.3.6.1.4.1.9.9.854.3.2.2 |
Notification alert group consists of both installation and expiry notifications. |
||