Security

Is there any reason to be sending SNMP traps to ClearPass from lets say a Cisco access layer switch? We continually receive log messages about bad traps:

Ignore v2c trap. Bad security name in trap"

For the devices we get these errors on, we have confirmed that the SNMP strings configured under Administration/External accounts match what is configured both on the device and under Configuration/Network/Devices yet we constantly received these messages in the Event Viewer, making it easy to miss important log messages.

Should we configure our devices to send traps to ClearPass or is this maybe not worth the headache?

SNMP External accounts are used for ClearPass active profiling(Pulling data from switches and for endpoint scan). you can read more about from the tech note :
https://support.hpe.com/hpsc/doc/public/display?docId=a00100323en_us
You can remove the snmp trap sent to clearpass from the switch.
Original Message:
Sent: Jun 27, 2022 10:46 AM
From: Morgan Josepher
Subject: Sending SNMP Traps to ClearPass

Is there any reason to be sending SNMP traps to ClearPass from lets say a Cisco access layer switch? We continually receive log messages about bad traps:

Ignore v2c trap. Bad security name in trap"

For the devices we get these errors on, we have confirmed that the SNMP strings configured under Administration/External accounts match what is configured both on the device and under Configuration/Network/Devices yet we constantly received these messages in the Event Viewer, making it easy to miss important log messages.

Should we configure our devices to send traps to ClearPass or is this maybe not worth the headache?

You can remove the trap configuration.  SNMP in general is not worth the headache IMHO.  Use other profiling methods such as DHCP relay.
Original Message:
Sent: Jun 27, 2022 10:46 AM
From: Morgan Josepher
Subject: Sending SNMP Traps to ClearPass

Is there any reason to be sending SNMP traps to ClearPass from lets say a Cisco access layer switch? We continually receive log messages about bad traps:

Ignore v2c trap. Bad security name in trap"

For the devices we get these errors on, we have confirmed that the SNMP strings configured under Administration/External accounts match what is configured both on the device and under Configuration/Network/Devices yet we constantly received these messages in the Event Viewer, making it easy to miss important log messages.

Should we configure our devices to send traps to ClearPass or is this maybe not worth the headache?

Original Message:
Sent: 6/27/2022 10:46:00 AM
From: mj986g@att.com
Subject: Sending SNMP Traps to ClearPass

Is there any reason to be sending SNMP traps to ClearPass from lets say a Cisco access layer switch? We continually receive log messages about bad traps:

Ignore v2c trap. Bad security name in trap"

For the devices we get these errors on, we have confirmed that the SNMP strings configured under Administration/External accounts match what is configured both on the device and under Configuration/Network/Devices yet we constantly received these messages in the Event Viewer, making it easy to miss important log messages.

Should we configure our devices to send traps to ClearPass or is this maybe not worth the headache?

Just figured it would add extra profiling information, if I have the correct SNMP information I am not understanding why it does not work. 

Either way, sounds like I do no need to be using traps.
Original Message:
Sent: Jun 28, 2022 07:49 AM
From: BERNHARD HUSTOMO
Subject: Sending SNMP Traps to ClearPass

what is ur purpose on sending snmp traps to clearpass ?

Original Message:
Sent: 6/27/2022 10:46:00 AM
From: mj986g@att.com
Subject: Sending SNMP Traps to ClearPass

Is there any reason to be sending SNMP traps to ClearPass from lets say a Cisco access layer switch? We continually receive log messages about bad traps:

Ignore v2c trap. Bad security name in trap"

For the devices we get these errors on, we have confirmed that the SNMP strings configured under Administration/External accounts match what is configured both on the device and under Configuration/Network/Devices yet we constantly received these messages in the Event Viewer, making it easy to miss important log messages.

Should we configure our devices to send traps to ClearPass or is this maybe not worth the headache?

Original Message:
Sent: 7/5/2022 4:22:00 PM
From: mj986g@att.com
Subject: RE: Sending SNMP Traps to ClearPass

Just figured it would add extra profiling information, if I have the correct SNMP information I am not understanding why it does not work. 

Either way, sounds like I do no need to be using traps.
Original Message:
Sent: Jun 28, 2022 07:49 AM
From: BERNHARD HUSTOMO
Subject: Sending SNMP Traps to ClearPass

what is ur purpose on sending snmp traps to clearpass ?

Original Message:
Sent: 6/27/2022 10:46:00 AM
From: mj986g@att.com
Subject: Sending SNMP Traps to ClearPass

Is there any reason to be sending SNMP traps to ClearPass from lets say a Cisco access layer switch? We continually receive log messages about bad traps:

Ignore v2c trap. Bad security name in trap"

For the devices we get these errors on, we have confirmed that the SNMP strings configured under Administration/External accounts match what is configured both on the device and under Configuration/Network/Devices yet we constantly received these messages in the Event Viewer, making it easy to miss important log messages.

Should we configure our devices to send traps to ClearPass or is this maybe not worth the headache?