1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
|
-- *******************************************************************
-- Juniper enterprise specific Access Authentication objects MIB.
--
-- Copyright (c) 2001-2007, Juniper Networks, Inc.
-- All rights reserved.
--
-- The contents of this document are subject to change without notice.
-- *******************************************************************
JUNIPER-JS-AUTH-MIB DEFINITIONS ::= BEGIN
IMPORTS
Counter64, IpAddress, Integer32,
NOTIFICATION-TYPE, MODULE-IDENTITY,
OBJECT-TYPE
FROM SNMPv2-SMI
TEXTUAL-CONVENTION, DisplayString
FROM SNMPv2-TC
jnxJsAuth
FROM JUNIPER-JS-SMI;
jnxJsAuthMIB MODULE-IDENTITY
LAST-UPDATED "200705142022Z"
ORGANIZATION "Juniper Networks, Inc."
CONTACT-INFO
"Juniper Technical Assistance Center
Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089
E-mail: support@juniper.net
HTTP://www.juniper.net"
DESCRIPTION
"Firewall and security features restrict the accessing of protected
resources (ideally on different zones) behind a firewall based
on their source ip and other credentials.
This module defines the objects pertain to access authentication."
REVISION "200705140000Z"
DESCRIPTION "Creation Date"
::= { jnxJsAuth 1 }
jnxJsAuthNotifications OBJECT IDENTIFIER ::= { jnxJsAuthMIB 0 }
jnxJsAuthObjects OBJECT IDENTIFIER ::= { jnxJsAuthMIB 1 }
-- ***************************************************************
-- Next Branch node.
-- ***************************************************************
jnxJsFwAuthStats OBJECT IDENTIFIER ::= { jnxJsAuthObjects 1 }
jnxJsAuthTrapVars OBJECT IDENTIFIER ::= { jnxJsAuthObjects 2 }
-- ***************************************************************
-- Firewall Authentication Statistics
-- ***************************************************************
jnxJsFwAuthNumPendingUsers OBJECT-TYPE
SYNTAX Counter64
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Number of users currently waiting to be authenticated by
the firewall user authentication mechanism."
::= { jnxJsFwAuthStats 1 }
jnxJsFwAuthNumSuccUsers OBJECT-TYPE
SYNTAX Counter64
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Number of users currently allowed access by the firewall
user authentication mechanism."
::= { jnxJsFwAuthStats 2 }
jnxJsFwAuthNumFailedUsers OBJECT-TYPE
SYNTAX Counter64
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Number of users currently failed to be authenticated by
the firewall user authentication mechanism."
::= { jnxJsFwAuthStats 3 }
jnxJsFwAuthTotalUsers OBJECT-TYPE
SYNTAX Counter64
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Total number of users that are accessing or attempting
to access resources managed by the firewall user
authentication mechanism."
::= { jnxJsFwAuthStats 4 }
-- ********************************************************************
-- Objects used for the FW authentication traps
-- ********************************************************************
jnxJsFwAuthUserName OBJECT-TYPE
SYNTAX DisplayString
MAX-ACCESS accessible-for-notify
STATUS current
DESCRIPTION
"The name of the user who is attempting or has been authenticated."
::= { jnxJsAuthTrapVars 1 }
jnxJsFwAuthServiceDesc OBJECT-TYPE
SYNTAX DisplayString
MAX-ACCESS accessible-for-notify
STATUS current
DESCRIPTION
"The service or application name that the enthentication
is performed for: telnet, ftp, http."
::= { jnxJsAuthTrapVars 2 }
jnxJsFwAuthReason OBJECT-TYPE
SYNTAX DisplayString
MAX-ACCESS accessible-for-notify
STATUS current
DESCRIPTION
"The reason for the trap being generated: authentication
failure due to: timeout, invalid password, invalid username, etc."
::= { jnxJsAuthTrapVars 3 }
jnxJsFwAuthClientIpAddr OBJECT-TYPE
SYNTAX IpAddress
MAX-ACCESS accessible-for-notify
STATUS current
DESCRIPTION
"The authentication client's IP Address."
::= { jnxJsAuthTrapVars 4 }
-- ***************************************************************
-- definition of Firewall user authentication related traps.
-- ***************************************************************
--
-- Firewall User Authentication failed.
--
jnxJsFwAuthFailure NOTIFICATION-TYPE
OBJECTS { jnxJsFwAuthUserName,
jnxJsFwAuthClientIpAddr,
jnxJsFwAuthServiceDesc,
jnxJsFwAuthReason }
STATUS current
DESCRIPTION
"A firewall user authentication status trap signifies whether a user
using the pass-through firewall authentication mechanism
has been rejected due to reason specified in the trap.
jnxJsFwAuthUserName is the user.
jnxClientIPAddress is the ip address the user came from.
jnxJsFwAuthServiceDesc specifies the application by
which the authentication was performed.
jnxJsFwAuthReason indicates the reason for failure."
::= { jnxJsAuthNotifications 1 }
--
-- Firewall user authentication Service is up
--
jnxJsFwAuthServiceUp NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"Firewall user authentication service has started."
::= { jnxJsAuthNotifications 2 }
--
-- Firewall user authentication Service is up
--
jnxJsFwAuthServiceDown NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"Firewall user authentication service has stopped."
::= { jnxJsAuthNotifications 3 }
--
-- Firewall user authentication maximum capacity exceeded.
--
jnxJsFwAuthCapacityExceeded NOTIFICATION-TYPE
STATUS current
DESCRIPTION
"Firewall user authentication maximum capacity has been exceeded.
jnxJsFwAuthTotalUsers indicates the total number of users
being authenticated. And it has exceeds the maximum allowable
users. "
::= { jnxJsAuthNotifications 4 }
END
|
