From 98a672123c7872f6b9b75a9a2b6bb3aea504de6a Mon Sep 17 00:00:00 2001 From: David Leutgeb Date: Tue, 5 Dec 2023 12:25:34 +0100 Subject: Initial commit --- MIBS/ciena/CIENA-WS-PLATFORM-ENCRYPTION-MIB | 240 ++++++++++++++++++++++++++++ 1 file changed, 240 insertions(+) create mode 100644 MIBS/ciena/CIENA-WS-PLATFORM-ENCRYPTION-MIB (limited to 'MIBS/ciena/CIENA-WS-PLATFORM-ENCRYPTION-MIB') diff --git a/MIBS/ciena/CIENA-WS-PLATFORM-ENCRYPTION-MIB b/MIBS/ciena/CIENA-WS-PLATFORM-ENCRYPTION-MIB new file mode 100644 index 0000000..8a69eea --- /dev/null +++ b/MIBS/ciena/CIENA-WS-PLATFORM-ENCRYPTION-MIB @@ -0,0 +1,240 @@ +CIENA-WS-PLATFORM-ENCRYPTION-MIB DEFINITIONS ::= BEGIN + +IMPORTS + cienaWsPlatformConfig + FROM CIENA-WS-MIB + ifIndex + FROM IF-MIB + MODULE-COMPLIANCE, OBJECT-GROUP + FROM SNMPv2-CONF + Integer32, MODULE-IDENTITY, OBJECT-TYPE + FROM SNMPv2-SMI + TruthValue, DisplayString + FROM SNMPv2-TC; + +cienaWsPlatformEncryptionMIB MODULE-IDENTITY + LAST-UPDATED "201808220000Z" + ORGANIZATION "Ciena Corporation" + CONTACT-INFO "Web URL: http://www.ciena.com/ +Postal: 7035 Ridge Road + Hanover, Maryland 21076 + U.S.A. +Phone: +1 800-921-1144 +Fax: +1 410-694-5750" + DESCRIPTION + "Encryption MIB name change to include PLATFORM in the name." + REVISION "201808220000Z" + DESCRIPTION + "Datapath encryption support on Waveserver Ai." + REVISION "201807160000Z" + DESCRIPTION "Added MIB Definition" + ::= { cienaWsPlatformConfig 23 } + +AuthenticationMaterialType ::= TEXTUAL-CONVENTION + STATUS current + DESCRIPTION "None" + SYNTAX INTEGER { + unknown (0), + preSharedKey (1), + certificateECC(2) +} + +WarmRestartType ::= TEXTUAL-CONVENTION + STATUS current + DESCRIPTION "None" + SYNTAX INTEGER { + unknown (0), + fips (1), + nonFIPS (2) +} + +channelEncryptionTable OBJECT-TYPE + SYNTAX SEQUENCE OF ChannelEncryptionEntry + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "Data Path Encryption properties for a channel of a line port." + ::= { cienaWsPlatformEncryptionMIB 3 } + +channelEncryptionEntry OBJECT-TYPE + SYNTAX ChannelEncryptionEntry + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "Entry for channelEncryptionTable." + INDEX { ifIndex } + ::= { channelEncryptionTable 1 } + +ChannelEncryptionEntry ::= SEQUENCE { + channelDescr DisplayString, + peerAuthenticationStatus INTEGER, + peerAuthenticationStatusUpdateTime DisplayString +} + +channelDescr OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "ifIndex descriptor" + ::= { channelEncryptionEntry 1 } + +peerAuthenticationStatus OBJECT-TYPE + SYNTAX INTEGER { unknown(0), pass(1), fail(2) } + MAX-ACCESS read-only + STATUS current + DESCRIPTION "Whether the channel of a line port is authenticated with its peer." + ::= { channelEncryptionEntry 2 } + +peerAuthenticationStatusUpdateTime OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "Last time when the channel's peer authentication status is updated." + ::= { channelEncryptionEntry 3 } + +encryptionPreSharedKeyTable OBJECT-TYPE + SYNTAX SEQUENCE OF EncryptionPreSharedKeyEntry + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "Channel of a line port data path encryption pre-shared-key properties." + ::= { cienaWsPlatformEncryptionMIB 4 } + +encryptionPreSharedKeyEntry OBJECT-TYPE + SYNTAX EncryptionPreSharedKeyEntry + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "Entry for encryptionPreSharedKeyTable." + INDEX { ifIndex } + ::= { encryptionPreSharedKeyTable 1 } + +EncryptionPreSharedKeyEntry ::= SEQUENCE { + encryptionPreSharedChannelDescr DisplayString, + encryptionPreSharedKeyFingerprint DisplayString, + encryptionPreSharedKeyStatus TruthValue, + encryptionPreSharedKeyDescription DisplayString +} + +encryptionPreSharedChannelDescr OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "ifIndex descriptor" + ::= { encryptionPreSharedKeyEntry 1 } + +encryptionPreSharedKeyFingerprint OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "A system generated hash value based on the provisioned pre-shared-key. If no key is provisioned, the fingerprint is empty." + ::= { encryptionPreSharedKeyEntry 2 } + +encryptionPreSharedKeyStatus OBJECT-TYPE + SYNTAX TruthValue + MAX-ACCESS read-only + STATUS current + DESCRIPTION "Boolean value to indicate whether the pre-shared-key has been setup by user or not." + ::= { encryptionPreSharedKeyEntry 3 } + +encryptionPreSharedKeyDescription OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "A human-readable description for the applied pre-shared-key. Eg. 'PSK for site 1 and site 2'" + ::= { encryptionPreSharedKeyEntry 4 } + +systemEncryptionTable OBJECT-TYPE + SYNTAX SEQUENCE OF SystemEncryptionEntry + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "System level data path encryption properties." + ::= { cienaWsPlatformEncryptionMIB 5 } + +systemEncryptionEntry OBJECT-TYPE + SYNTAX SystemEncryptionEntry + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "Entry for systemEncryptionTable." + INDEX { systemEncryptionTableSnmpKey } + ::= { systemEncryptionTable 1 } + +SystemEncryptionEntry ::= SEQUENCE { + systemEncryptionTableSnmpKey Integer32, + authenticationMaterialType AuthenticationMaterialType, + warmRestartType WarmRestartType, + signingCACertificate DisplayString, + entityCertificate DisplayString +} + +systemEncryptionTableSnmpKey OBJECT-TYPE + SYNTAX Integer32(0..2147483647) + MAX-ACCESS not-accessible + STATUS current + DESCRIPTION "Unique key for cwsSystemEncryptionState" + ::= { systemEncryptionEntry 1 } + +authenticationMaterialType OBJECT-TYPE + SYNTAX AuthenticationMaterialType + MAX-ACCESS read-only + STATUS current + DESCRIPTION "Authentication material for this Waveserver. Default Type is pre-shared-key." + ::= { systemEncryptionEntry 2 } + +warmRestartType OBJECT-TYPE + SYNTAX WarmRestartType + MAX-ACCESS read-only + STATUS current + DESCRIPTION "Defines the warm-restart type for all encryption cards in the chassis. The default type is FIPS" + ::= { systemEncryptionEntry 3 } + +signingCACertificate OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "The Signing CA (Certificate Authority) Certificate" + ::= { systemEncryptionEntry 4 } + +entityCertificate OBJECT-TYPE + SYNTAX DisplayString + MAX-ACCESS read-only + STATUS current + DESCRIPTION "The Entity Certificate name issued by Certificate Authority (CA)" + ::= { systemEncryptionEntry 5 } + + +-- Conformance statements +cienaWsEncryptionObjects OBJECT IDENTIFIER + ::= { cienaWsPlatformEncryptionMIB 1 } + +cienaWsEncryptionConformance OBJECT IDENTIFIER + ::= { cienaWsPlatformEncryptionMIB 2 } + +cienaWsEncryptionGroups OBJECT IDENTIFIER + ::= { cienaWsEncryptionConformance 1 } + +cienaWsEncryptionGroup OBJECT-GROUP + OBJECTS { + channelDescr, + peerAuthenticationStatus, + peerAuthenticationStatusUpdateTime, + encryptionPreSharedChannelDescr, + encryptionPreSharedKeyFingerprint, + encryptionPreSharedKeyStatus, + encryptionPreSharedKeyDescription, + authenticationMaterialType, + warmRestartType , + signingCACertificate, + entityCertificate + } + + STATUS current + DESCRIPTION "Conformance Group" + ::= { cienaWsEncryptionGroups 1 } + +cienaWsEncryptionCompliances OBJECT IDENTIFIER + ::= { cienaWsEncryptionConformance 2 } + +cienaWsEncryptionCompliance MODULE-COMPLIANCE + STATUS current + DESCRIPTION "Compliance" + MODULE MANDATORY-GROUPS { cienaWsEncryptionGroup } + ::= { cienaWsEncryptionCompliances 1 } + +END -- End module -- cgit v1.2.3