Print

AEServicesSNMPtrapsAlarmCodesAndMessages_Part5

SNMP Object Name:  csSecurityInitFailed

SNMP OID:  .1.3.6.1.4.1.6889.2.18.1.1.3.0.7

SNMP Object Description:  Failed initialization of Tripwire database.

Remediation Suggestions:  Review the Tripwire logs and take the appropriate actions.

Alarm Code Alarm Message INADS Trap NMS Trap Alarm Severity AES Release
ACORE00047 Security: tripwire failed to initialize the tripwire database No Yes Major 3.x

SNMP Object Name:  csWatchdogProcessUp

SNMP OID:  .1.3.6.1.4.1.6889.2.18.1.1.4.0.10

SNMP Object Description:  Process is up.

Remediation Suggestions:  N/A

Alarm Code Alarm Message INADS Trap NMS Trap Alarm Severity AES Release
AAES319 Started [watched] <service name> Yes Yes Minor 3.x

SNMP Object Name:  csWatchdogProcessDown

SNMP OID:  .1.3.6.1.4.1.6889.2.18.1.1.4.0.11

SNMP Object Description:  Process is down.

Remediation Suggestions:  If stopping the process was planned, do nothing. Otherwise, review the watchdog logs, review the logs of the affected service and take the appropriate actions to start the service.

Alarm Code Alarm Message INADS Trap NMS Trap Alarm Severity AES Release
AAES320 Unit: <service name> entered failed state Yes Yes Major 3.x

SNMP Object Name:  csWatchdogProcessDead

SNMP OID:  .1.3.6.1.4.1.6889.2.18.1.1.4.0.12

SNMP Object Description:  Process is dead.

Remediation Suggestions:  Review the watchdog logs, the logs of the affected service and take the appropriate actions to start the service.

Alarm Code Alarm Message INADS Trap NMS Trap Alarm Severity AES Release
AAES321 Start request repeated too quickly for <service name> Yes Yes Minor 3.x

SNMP Object Name:  avAesUserAccountModified

SNMP OID:  .1.3.6.1.4.1.6889.2.27.2.2.2.3.0.5

SNMP Object Description:  Indicator of user account modification.

Remediation Suggestions:  If the failure is excessive, either use the information contained in the SNMP trap or notification, or review the Linux server security log to determine the offending user and IP address to take appropriate action.

Alarm Code Event ID Alarm Message
AAES113 O_AACCOUNT-00001 New user account created.
AAES114 O_AACCOUNT-00002 User account locked or unlocked.
AAES115 O_AACCOUNT-00003 User account modified.
AAES116 O_AACCOUNT-00004 User account removed.