DLINKSW-SSL-MIB
File:
DLINKSW-SSL-MIB.mib (23250 bytes)
Imported modules
Imported symbols
Defined Types
DSslCryptoPkiImportCertEntry |
|
SEQUENCE |
|
|
|
|
dSslCryPkiImportCertIndex |
Integer32 |
|
|
dSslCryPkiImportCertTrustPoint |
DisplayString |
|
|
dSslCryPkiImportCertSrcType |
INTEGER |
|
|
dSslCryPkiImportFilename |
DisplayString |
|
|
dSslCryPkiImportCertAddrType |
InetAddressType |
|
|
dSslCryPkiImportCertAddr |
InetAddress |
|
|
dSslCryPkiImportFileType |
BITS |
|
|
dSslCryPkiImportPwdPhrase |
DisplayString |
|
|
dSslCryPkiImportErrorStatus |
DisplayString |
|
|
dSslCryPkiImportRowStatus |
RowStatus |
|
DSslCryptoPkiTrustpointEntry |
|
SEQUENCE |
|
|
|
|
dSslCryptoPkiTrustpointName |
DisplayString |
|
|
dSslCryptoPkiTrustpointPrimary |
TruthValue |
|
|
dSslCryptoPkiTrustpointRowStatus |
RowStatus |
|
DSslCryptoPkiCertEntry |
|
SEQUENCE |
|
|
|
|
dSslCryptoPkiCertName |
DisplayString |
|
|
dSslCryptoPkiCertCAType |
INTEGER |
|
|
dSslCryptoPkiCertRemoveCtrl |
INTEGER |
|
DSslServicePolicyEntry |
|
SEQUENCE |
|
|
|
|
dSslServicePolicyName |
DisplayString |
|
|
dSslServicePolicyVersions |
BITS |
|
|
dSslServicePolicyCipherSuites |
BITS |
|
|
dSslServicePolicyTrustpoint |
DisplayString |
|
|
dSslServicePolicyCacheTimeout |
Unsigned32 |
|
|
dSslServicePolicyRowStatus |
RowStatus |
|
Defined Values
dlinkSwSslMIB |
1.3.6.1.4.1.171.14.7 |
This MIB module defines objects for Secure Socket Layer (SSL). |
MODULE-IDENTITY |
|
|
|
dSslCryptoPkiImportCertTable |
1.3.6.1.4.1.171.14.7.1.1 |
A table of importing certificates and key pairs. There will at any
time be either 0 or 1 rows in this table, and the only valid index
for this table is 1. It is only a table so that we may take
advantage of the RowStatus textual convention for configuring the
importing parameters.
The row in this table is volatile; that is, it is lost if the SNMP
agent is rebooted. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
DSslCryptoPkiImportCertEntry |
|
dSslCryptoPkiImportCertEntry |
1.3.6.1.4.1.171.14.7.1.1.1 |
The row in the dSslCryptoPkiImportCertTable containing the importing
parameters.
Once an entry has been activated, the importing parameters cannot be
modified. In order to use a new value, you need delete the old entry
and create a new one. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DSslCryptoPkiImportCertEntry |
|
|
dSslCryPkiImportCertSrcType |
1.3.6.1.4.1.171.14.7.1.1.1.3 |
An indication of the source from where the certificates/key pairs
will be imported.
filesystem(1) - The certificates/key pairs will be imported from the
switch's file system.
tftp(2) - The certificates/key pairs will be imported via tftp. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
INTEGER |
filesystem(1), tftp(2) |
|
dSslCryPkiImportFilename |
1.3.6.1.4.1.171.14.7.1.1.1.4 |
If dSslCryPkiImportCertSrcType is 'filesystem', this object
indicates the file name and path of the importing certificate
and key pairs in switch's file system. The supported file systems
are project dependent.
If dSslCryPkiImportCertSrcType is 'tftp', this object indicates
the file name and path where the switch should import via TFTP
server. By default, the switch will appends this name with .ca,
.prv and .crt for CA certificate, private key and certificate
respectively. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
DisplayString |
Size(0..64) |
|
dSslCryPkiImportPwdPhrase |
1.3.6.1.4.1.171.14.7.1.1.1.7 |
Specifies the encrypted password phrase that is used to undo
encryption when the private keys are imported. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
DisplayString |
Size(0..64) |
|
dSslCryPkiImportFileType |
1.3.6.1.4.1.171.14.7.1.1.1.8 |
An object indicates what kind of certificate will be imported.
Setting a type's bit to 1 means the type of certificate will
be imported.
ca (0) - Import CA certificate.
local (1) - Import local certificate and key pairs. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
BITS |
ca(0), local(1) |
|
dSslCryPkiImportErrorStatus |
1.3.6.1.4.1.171.14.7.1.1.1.9 |
A textual description of the current status of the importing.
The status information includes: idle, in progress, success, aborted,
idle, corruptFile, no server.... |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
Size(0..255) |
|
dSslCryPkiImportRowStatus |
1.3.6.1.4.1.171.14.7.1.1.1.10 |
The status of this import entry. This object may not be set to
'active' if the following columnar objects exist in this row:
dSslCryPkiImportCertTrustPoint, dSslCryPkiImportFilename, and
dSslCryPkiImportFileType.
Besides, if dSslCryPkiImportCertSrcType is 'tftp' the columnar
objects dSslCryPkiImportCertAddrType and dSslCryPkiImportCertAddr
must be configured. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
RowStatus |
|
|
dSslCryptoPkiTrustpointEntry |
1.3.6.1.4.1.171.14.7.1.2.1.1 |
The row in the dSslCryptoPkiTrustpointTable containing the
trustpoint parameters.
An entry is created/removed when a name for a specific
trustpoint is generated or deleted via CLI or by issuing appropriate
sets to this table using snmp. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DSslCryptoPkiTrustpointEntry |
|
|
dSslCryptoPkiTrustpointPrimary |
1.3.6.1.4.1.171.14.7.1.2.1.1.2 |
This object specifies a given trustpoint as primary.
This trustpoint can be used as default trustpoint when
the application doesn't explicitly specify which certificate
authority (CA) trustpoint should be used.
Only one trustpoint can be specified as primary. That is the
last trustpoint you specify as primary will overwrite the
previous one. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
TruthValue |
|
|
dSslCryptoPkiCertEntry |
1.3.6.1.4.1.171.14.7.1.2.2.1 |
The row in the dSslCryptoPkiCertTable containing the
parameters of a certificate.
An entry in this table appears automatically whenever
the certificate or keypairs is imported successfully.
An entry is removed when a certificate name is deleted
via CLI or by issuing appropriate sets to this table using snmp. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DSslCryptoPkiCertEntry |
|
|
dSslCryptoPkiCertName |
1.3.6.1.4.1.171.14.7.1.2.2.1.1 |
Indicates the name of the certificate for which this entry
pertains to. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DisplayString |
Size(0..32) |
|
dSslCryptoPkiCertCAType |
1.3.6.1.4.1.171.14.7.1.2.2.1.2 |
This object specifies the type of the certificate.
ca(1) - CA certificate.
localCertificate(2) - local certificate.
localPrivateKey(3) - local private key. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
INTEGER |
ca(1), localCertificate(2), localPrivateKey(3) |
|
dSslCryptoPkiCertRemoveCtrl |
1.3.6.1.4.1.171.14.7.1.2.2.1.3 |
This object is used to delete this entry.
No action is taken if this object is set to 'noOp'.
When read, the value 'noOp' is returned. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
delete(1), noOp(2) |
|
dSslServicePolicyEntry |
1.3.6.1.4.1.171.14.7.1.2.3.1 |
The row in the dSslServicePolicyTable containing the
parameters of a SSL service policy.
An entry is created/removed when a name for a specific
policy is generated or deleted via CLI or by issuing appropriate
sets to this table using snmp. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DSslServicePolicyEntry |
|
|
dSslServicePolicyName |
1.3.6.1.4.1.171.14.7.1.2.3.1.1 |
Indicates the name of the policy for which this entry pertains to. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DisplayString |
Size(1..32) |
|
dSslServicePolicyCipherSuites |
1.3.6.1.4.1.171.14.7.1.2.3.1.2 |
This object indicates a ciphersuite should be used by the secure
service when negotiating a connection with a remote peer. Setting
a ciphersuite's bit to 1 enables the ciphersuite. Setting this bit
to 0 disables it.
dheDss3DesEdeCbcSha(0): Uses ephemeral Diffie-Hellman key exchange with 3DES-EDE-CBC
encryption and SHA for message digest.
rsa3desEdeCbcSha(1): Uses RSA key exchange with 3DES-EDE-CBC for
message encryption and SHA for message digest.
rsaRc4128Sha(2): Uses RSA key exchange with RC4 128-bit
encryption for message encryption and SHA for message digest.
rsaRc4128Md5(3): Uses RSA key exchange with RC4 128-bit
encryption for message encryption and MD5 for message digest.
rsaExportRc440Md5(4): Uses RSA EXPORT key exchange with RC4 40
bits for message encryption and MD5 for message digest.
rsaAes128CbcSha(5): Uses RSA key exchange with AES 128
bits for message encryption and SHA for message digest.
rsaAes256CbcSha(6): Uses RSA exchange with AES 256
bits for message encryption and SHA for message digest.
rsaAes128CbcSha256(7): Uses RSA key exchange with AES 128
bits for message encryption and SHA256 for message digest.
rsaAes256CbcSha256(8): Uses RSA key exchange with AES 256
bits for message encryption and SHA256 for message digest.
dheDssAes256CbcSha(9): Uses ephemeral Diffie-Hellman key exchange with AES 256
bits for message encryption and SHA for message digest.
dheRsaAes256CbcSha(10): Uses ephemeral Diffie-Hellman key exchange with AES 256
bits for message encryption and SHA for message digest. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
BITS |
dheDss3DesEdeCbcSha(0), rsa3desEdeCbcSha(1), rsaRc4128Sha(2), rsaRc4128Md5(3), rsaExportRc440Md5(4), rsaAes128CbcSha(5), rsaAes256CbcSha(6), rsaAes128CbcSha256(7), rsaAes256CbcSha256(8), dheDssAes256CbcSha(9), dheRsaAes256CbcSha(10) |
|
dSslServicePolicyTrustpoint |
1.3.6.1.4.1.171.14.7.1.2.3.1.3 |
Specifies the name of the trustpoint that should be used in SSL
handshake.
When secure-trustpoint is not specified, the primary trustpoint
(the value of dSslCryptoPkiTrustpointPrimary is 'true') will be
used.
If no trustpoint is specified (empty string), the built-in
certificate/key pairs will be used. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
DisplayString |
Size(0..32) |
|
dSslServicePolicyCacheTimeout |
1.3.6.1.4.1.171.14.7.1.2.3.1.4 |
This object indicates the Cache Timeout value in the policy for
SSL module to refresh the session resume data kept in database. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
60..86400 |
|
dSslServicePolicyVersions |
1.3.6.1.4.1.171.14.7.1.2.3.1.6 |
This object indicates the SSL or TLS versions are enabled or not in the system.
If the bit is 1 , indicate that version is enabled , else is disabled . |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
BITS |
ssl3-0(0), tls1-0(1), tls1-1(2), tls1-2(3) |
|
dlinkSslCompliance |
1.3.6.1.4.1.171.14.7.2.1.1 |
The compliance statement for entities which implement the
DLINKSW-SSL-MIB. |
Status: current |
Access: read-create |
MODULE-COMPLIANCE |
|
|
|
dSslImportCertGroup |
1.3.6.1.4.1.171.14.7.2.2.1 |
A collection of objects for manage importing certificates and key pairs. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|
dSslTrustPointConfigGroup |
1.3.6.1.4.1.171.14.7.2.2.2 |
A collection of objects for manage trustpoints and certificates and key pairs. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|
dSslServicePolicyGroup |
1.3.6.1.4.1.171.14.7.2.2.3 |
A collection of objects for manage trustpoints and certificates and key pairs. |
Status: current |
Access: read-create |
OBJECT-GROUP |
|
|
|