CISCOSB-SSH-MIB

File: CISCOSB-SSH-MIB.mib (43934 bytes)

Imported modules

SNMPv2-SMI SNMPv2-TC CISCOSB-MIB
INET-ADDRESS-MIB

Imported symbols

OBJECT-TYPE MODULE-IDENTITY Unsigned32
IpAddress TEXTUAL-CONVENTION DisplayString
RowStatus switch001 InetAddressType
InetAddress

Defined Types

RlSshPublicKeyAlgorithm  
This textual convention describes the various possible public key algorithms. The key algorithm is used to select the PK to be generated and is also used when viewing the public keys.
TEXTUAL-CONVENTION    
  INTEGER rsa1(0), rsa(1), dsa(2), none(999)  

RlSshPublicKeyDigestFormat  
This textual convention describes the format used to display the public key fingerprint. The hex format is the format used by PGP and OpenSSH. The bubble-babble format is used by SSH.com software.
TEXTUAL-CONVENTION    
  INTEGER hex(0), bubbleBabble(1)  

RlSshServerHostPublicKeyTableEntry  
SEQUENCE    
  rlSshServerHostPublicKeyAlgorithm RlSshPublicKeyAlgorithm
  rlSshServerHostPublicKeyFragmentId Unsigned32
  rlSshServerHostPublicKeyFragmentText DisplayString

RlSshServerHostPublicKeyFingerprintTableEntry  
SEQUENCE    
  rlSshServerHostPublicKeyFingerprintAlgorithm RlSshPublicKeyAlgorithm
  rlSshServerHostPublicKeyFingerprintDigestFormat RlSshPublicKeyDigestFormat
  rlSshServerHostPublicKeyFingerprint DisplayString

RlSshServerAuthorizedUsersPublicKeyTableEntry  
SEQUENCE    
  rlSshServerAuthorizedUserName DisplayString
  rlSshServerAuthorizedUserPublicKeyFragmentId Unsigned32
  rlSshServerAuthorizedUserPublicKeyFragmentText DisplayString
  rlSshServerAuthorizedUserPublicKeyFragmentStatus RowStatus

RlSshServerAuthorizedUsersPublicKeyFingerprintTableEntry  
SEQUENCE    
  rlSshServerAuthorizedUserFingerprintName DisplayString
  rlSshServerAuthorizedUserPublicKeyFingerprintDigestFormat RlSshPublicKeyDigestFormat
  rlSshServerAuthorizedUserPublicKeyFingerprintAlgorithm RlSshPublicKeyAlgorithm
  rlSshServerAuthorizedUserPublicKeyFingerprint DisplayString

RlSshServerSessionTableEntry  
SEQUENCE    
  rlSshServerSessionIdentifier Unsigned32
  rlSshServerSessionPeerAddress IpAddress
  rlSshServerSessionPeerPort Unsigned32
  rlSshServerSessionUsername DisplayString
  rlSshServerSessionPeerVersion DisplayString
  rlSshServerSessionCipher DisplayString
  rlSshServerSessionHMAC DisplayString

RlSshServerSessionInetTableEntry  
SEQUENCE    
  rlSshServerSessionInetIdentifier Unsigned32
  rlSshServerSessionInetPeerAddressType InetAddressType
  rlSshServerSessionInetPeerAddress InetAddress
  rlSshServerSessionInetPeerPort Unsigned32
  rlSshServerSessionInetUsername DisplayString
  rlSshServerSessionInetPeerVersion DisplayString
  rlSshServerSessionInetCipher DisplayString
  rlSshServerSessionInetHMAC DisplayString

RlSshServerImportExportSelfKeyEntry  
SEQUENCE    
  rlSshServerImportExportSelfKeyAlgorithm RlSshPublicKeyAlgorithm
  rlSshServerImportExportSelfKeyFormat INTEGER
  rlSshServerImportExportSelfKeyFragmentId INTEGER
  rlSshServerImportExportSelfKeyFragmentText OCTET STRING

RlSshClientSelfPublicKeyTableEntry  
SEQUENCE    
  rlSshClientSelfPublicKeyFragmentId Unsigned32
  rlSshClientSelfPublicKeyAlgorithm RlSshPublicKeyAlgorithm
  rlSshClientSelfPublicKeyFragmentText DisplayString

RlSshClientSelfPublicKeyFingerprintTableEntry  
SEQUENCE    
  rlSshClientSelfPublicKeyFingerprintAlgorithm RlSshPublicKeyAlgorithm
  rlSshClientSelfPublicKeyFingerprintDigestFormat RlSshPublicKeyDigestFormat
  rlSshClientSelfPublicKeyFingerprint DisplayString

RlSshClientPasswordChangeEntry  
SEQUENCE    
  rlSshClientPasswordChangeInetAddrType InetAddressType
  rlSshClientPasswordChangeInetAddr InetAddress
  rlSshClientPasswordChangeUsername DisplayString
  rlSshClientPasswordChangeOldPassword DisplayString
  rlSshClientPasswordChangeNewPassword DisplayString
  rlSshClientPasswordChangeStatus INTEGER
  rlSshClientPasswordChangeFailureReason DisplayString

RlSshClientImportExportSelfKeyEntry  
SEQUENCE    
  rlSshClientImportExportSelfKeyAlgorithm RlSshPublicKeyAlgorithm
  rlSshClientImportExportSelfKeyFormat INTEGER
  rlSshClientImportExportSelfKeyFragmentId INTEGER
  rlSshClientImportExportSelfKeyFragmentText OCTET STRING

RlSshClientRemoteServerPublicKeyFingerprintEntry  
SEQUENCE    
  rlSshClientRemoteServerFingerprintInetAddrType InetAddressType
  rlSshClientRemoteServerFingerprintInetAddr InetAddress
  rlSshClientRemoteServerFingerprint OCTET STRING
  rlSshClientRemoteServerFingerprintStatus RowStatus

Defined Values

rlSsh 1.3.6.1.4.1.9.6.1.101.78
The MIB module describes the private MIB for SSH supported by CISCOSB's software and products.
MODULE-IDENTITY    

rlSshMibVersion 1.3.6.1.4.1.9.6.1.101.78.1
The MIB version. The current version is 2
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER  

rlSshServer 1.3.6.1.4.1.9.6.1.101.78.2
OBJECT IDENTIFIER    

rlSshServerHostPublicKeyTable 1.3.6.1.4.1.9.6.1.101.78.2.1
This table contains the router's public key. Each row in this table contains a fragment of the key, in printable binhex format. There may be up to 160 characters in every fragment, and they are all combined to form one key. The key is generated by writing to rlSshServerRegenerateHostKey. To cause clients to connect to this router without printing warning messages (and also prevent active man-in-the-middle), the router's public key must printed out and inserted into the client's authorized_keys file
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerHostPublicKeyTableEntry

rlSshServerHostPublicKeyTableEntry 1.3.6.1.4.1.9.6.1.101.78.2.1.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerHostPublicKeyTableEntry  

rlSshServerHostPublicKeyAlgorithm 1.3.6.1.4.1.9.6.1.101.78.2.1.1.1
Identifies the type of public key to be displayed.
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshServerHostPublicKeyFragmentId 1.3.6.1.4.1.9.6.1.101.78.2.1.1.2
Identifies the index of this fragment in the final key. All segments must be combined to form one big key.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

rlSshServerHostPublicKeyFragmentText 1.3.6.1.4.1.9.6.1.101.78.2.1.1.3
A part of the readable text entry for the server's public authorzation key.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerHostPublicKeyFingerprintTable 1.3.6.1.4.1.9.6.1.101.78.2.2
This table contains the fingerprint for the router's public key.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerHostPublicKeyFingerprintTableEntry

rlSshServerHostPublicKeyFingerprintTableEntry 1.3.6.1.4.1.9.6.1.101.78.2.2.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerHostPublicKeyFingerprintTableEntry  

rlSshServerHostPublicKeyFingerprintAlgorithm 1.3.6.1.4.1.9.6.1.101.78.2.2.1.1
Identifies the type of public key to be displayed.
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshServerHostPublicKeyFingerprintDigestFormat 1.3.6.1.4.1.9.6.1.101.78.2.2.1.2
Format of the digest to be displayed (OpenSSH or SSH.com).
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyDigestFormat  

rlSshServerHostPublicKeyFingerprint 1.3.6.1.4.1.9.6.1.101.78.2.2.1.3
SECSH format fingerprint of the server's public key. To prevent man in the middle attacks, users should make sure the ssh Server's fingerprint, as printed in the connection process, is similar to the one printed here.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerAuthorizedUsersPublicKeyTable 1.3.6.1.4.1.9.6.1.101.78.2.3
This table contains public keys for all users who are authorized to access the router. For a user to be able to log in using SSH, the user name must appear in this table, and the user's public key must match the one found here.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerAuthorizedUsersPublicKeyTableEntry

rlSshServerAuthorizedUsersPublicKeyTableEntry 1.3.6.1.4.1.9.6.1.101.78.2.3.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerAuthorizedUsersPublicKeyTableEntry  

rlSshServerAuthorizedUserName 1.3.6.1.4.1.9.6.1.101.78.2.3.1.1
Name of the user who owns this public key. Both the user name and the key bytes must match before a user is authenticated using this key.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(1..48)  

rlSshServerAuthorizedUserPublicKeyFragmentId 1.3.6.1.4.1.9.6.1.101.78.2.3.1.2
Identifies the index of this fragment in the final key. All segments must be combined to form one big key.
Status: current Access: read-write
OBJECT-TYPE    
  Unsigned32  

rlSshServerAuthorizedUserPublicKeyFragmentText 1.3.6.1.4.1.9.6.1.101.78.2.3.1.3
A part of the readable text entry for the user's public authorzation key.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString  

rlSshServerAuthorizedUserPublicKeyFragmentStatus 1.3.6.1.4.1.9.6.1.101.78.2.3.1.4
Create or delete a fragment of the user's public key. A user is deleted if it has no remaining fragments.
Status: current Access: read-write
OBJECT-TYPE    
  RowStatus  

rlSshServerAuthorizedUsersPublicKeyFingerprintTable 1.3.6.1.4.1.9.6.1.101.78.2.5
This table contains the fingerprints of the public keys for all users who are authorized to access the router. To prevent man in the middle attacks, users should make sure the user's fingerprint, as printed in the connection process, is similar to the one printed here.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerAuthorizedUsersPublicKeyFingerprintTableEntry

rlSshServerAuthorizedUsersPublicKeyFingerprintTableEntry 1.3.6.1.4.1.9.6.1.101.78.2.5.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerAuthorizedUsersPublicKeyFingerprintTableEntry  

rlSshServerAuthorizedUserFingerprintName 1.3.6.1.4.1.9.6.1.101.78.2.5.1.1
Name of the user who owns this public key. Both the user name and the key bytes must match before a user is authenticated using this key.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(1..48)  

rlSshServerAuthorizedUserPublicKeyFingerprintAlgorithm 1.3.6.1.4.1.9.6.1.101.78.2.5.1.2
Identifies the type of public key to be displayed.
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshServerAuthorizedUserPublicKeyFingerprintDigestFormat 1.3.6.1.4.1.9.6.1.101.78.2.5.1.3
Format of the digest to be displayed (OpenSSH or SSH.com).
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyDigestFormat  

rlSshServerAuthorizedUserPublicKeyFingerprint 1.3.6.1.4.1.9.6.1.101.78.2.5.1.4
SECSH format fingerprint of the user's public key. To prevent man in the middle attacks, users should make sure their ssh fingerprint, as printed in the connection process, is similar to the one printed here.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionTable 1.3.6.1.4.1.9.6.1.101.78.2.6
Each row in this table corresponds to an active SSH session with the server
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerSessionTableEntry

rlSshServerSessionTableEntry 1.3.6.1.4.1.9.6.1.101.78.2.6.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerSessionTableEntry  

rlSshServerSessionIdentifier 1.3.6.1.4.1.9.6.1.101.78.2.6.1.1
Identifies the connection to which this row corresponds.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

rlSshServerSessionPeerAddress 1.3.6.1.4.1.9.6.1.101.78.2.6.1.2
The network address of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  IpAddress  

rlSshServerSessionPeerPort 1.3.6.1.4.1.9.6.1.101.78.2.6.1.3
The source network port of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

rlSshServerSessionPeerVersion 1.3.6.1.4.1.9.6.1.101.78.2.6.1.4
The client version of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionUsername 1.3.6.1.4.1.9.6.1.101.78.2.6.1.5
SSH authenticated name of user connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionCipher 1.3.6.1.4.1.9.6.1.101.78.2.6.1.6
Data encryption cipher used in this connection.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionHMAC 1.3.6.1.4.1.9.6.1.101.78.2.6.1.7
Message authentication code used in this connection.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionInetTable 1.3.6.1.4.1.9.6.1.101.78.2.7
Each row in this table corresponds to an active SSH session with the server
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerSessionInetTableEntry

rlSshServerSessionInetTableEntry 1.3.6.1.4.1.9.6.1.101.78.2.7.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerSessionInetTableEntry  

rlSshServerSessionInetIdentifier 1.3.6.1.4.1.9.6.1.101.78.2.7.1.1
Identifies the connection to which this row corresponds.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

rlSshServerSessionInetPeerAddressType 1.3.6.1.4.1.9.6.1.101.78.2.7.1.2
The network address of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  InetAddressType  

rlSshServerSessionInetPeerAddress 1.3.6.1.4.1.9.6.1.101.78.2.7.1.3
The network address of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  InetAddress  

rlSshServerSessionInetPeerPort 1.3.6.1.4.1.9.6.1.101.78.2.7.1.4
The source network port of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

rlSshServerSessionInetPeerVersion 1.3.6.1.4.1.9.6.1.101.78.2.7.1.5
The client version of the remote host connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionInetUsername 1.3.6.1.4.1.9.6.1.101.78.2.7.1.6
SSH authenticated name of user connected to the server.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionInetCipher 1.3.6.1.4.1.9.6.1.101.78.2.7.1.7
Data encryption cipher used in this connection.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerSessionInetHMAC 1.3.6.1.4.1.9.6.1.101.78.2.7.1.8
Message authentication code used in this connection.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshServerImportExportSelfKeyTable 1.3.6.1.4.1.9.6.1.101.78.2.8
This table can be used for 2 purposes: 1) Importing public/private key pair to serve as the device key when acting as SSH server. This is done by setting entries to this table, according to the specified format. When the last entry (footer) is set, the whole key pair is checked and if valid, stored in CDB. 2) Exporting the device SSH server public/private key. This can be done by performing GetNext operations on this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshServerImportExportSelfKeyEntry

rlSshServerImportExportSelfKeyEntry 1.3.6.1.4.1.9.6.1.101.78.2.8.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshServerImportExportSelfKeyEntry  

rlSshServerImportExportSelfKeyAlgorithm 1.3.6.1.4.1.9.6.1.101.78.2.8.1.1
Identifies the type of key pair.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshServerImportExportSelfKeyFormat 1.3.6.1.4.1.9.6.1.101.78.2.8.1.2
Specifies the format of public/key pair. The following formats are supported for import/export: 1) uuencoded_format - in this format both private and public key are in uu-encoded format, and are seperated from one another by header and footer. An example of the concateneation of all fragments in this format is: -----BEGIN RSA PRIVATE KEY----- tDaNkZZoCxXfkLLsLDlZ6T9H8U4Gz637eRV7BYBpapkidAxY1UG0/qgfKLPkbId4wzht6ArV9bE4fMtX wSMOxL3q31pOmUdVhjbWYcgZQBDy1DjFSbuIEdP85c96B9bBE2nPv90mSvb/6j8R2NItT/KJeiYMtLtI N3m6/zESKJGIrX0jP1RFDjVZSS5chSAFgB0egsLZEyOQn7jAqpX/x/easD2J6F/OjPXlJ9Hff2tMb3NU QYyBoWH2J9IxhWB6Vo66R9Y04JGR18uL/rV2sMCtpg5ppkVTEpNTp9qE1yXocR2NmzUfNFap+GJ4IHj8 CzkVfmJM/kEWaJsYgHbAgLyRg4QVyelfobv1B71aQ+u1z9KGu/QajkWdR04OQfsGOL1CvU2LGYDcRjfH jv+jl/UkDRRjoD9kt2WvouT+OL6esvKl0OJBqWbGNXg9TWv/VLtJIwgUno+MLaJuOM4Fh44+wpnqUXwQ TFtBFc8pzt5BoOwbv9gXpicTkq4/+GhwXWXxSVFebKhnHAvKSLT+Ba7K7ZeR8EIIxbXdDNFOiS45R2KI jxxXLXK44u6KGl5MygCKXUOFlJ+Zhgrq6ZH17z/RVJQ2CWqb5Ekn9GY3kH9QZ3mb4MDPfriWi2lHGXHY JmJd4SLQhpBdnOS5tu84QmyU3dNbAdzghDsR+dEY/6g7Cn0kcVkeHNZ0H+mCZik5f6XBD8eplkk43bdR FrkwTeAjwurGcKwdiKkR4DlfSq3DKssVBucTqUpqsKqPXLwTIL44rWKhEPXgGPB2XDG0VLvIRKkAgEGI LNTwOm091Ro= -----END RSA PRIVATE KEY----- -----BEGIN RSA PUBLIC KEY----- MIGHAoGBAOeIC9gRg3YaEGGMp3C00qNwLINAEDZV/J4BWM5WnWwCWZyHXDs2XiEmFu0ZONAD4gcT2f2f NNfCBPye39VVuOkKQuSV0MLLX5800LZ4y1BNcPzPZHpnGaCzl7iAjhfj9MolzAh5VRjeiYt0t1um4dm+ q9A4BtfpJqDYxCW9uxd/AgEj -----END RSA PUBLIC KEY-----
Status: current Access: not-accessible
OBJECT-TYPE    
  INTEGER uuencoded-format(1)  

rlSshServerImportExportSelfKeyFragmentId 1.3.6.1.4.1.9.6.1.101.78.2.8.1.3
Identifies the index of this fragment in the key pair input/output.
Status: current Access: not-accessible
OBJECT-TYPE    
  INTEGER  

rlSshServerImportExportSelfKeyFragmentText 1.3.6.1.4.1.9.6.1.101.78.2.8.1.4
A part of the readable text entry for the key pair input/output.
Status: current Access: read-write
OBJECT-TYPE    
  OCTET STRING  

rlSshServerPort 1.3.6.1.4.1.9.6.1.101.78.2.101
Specifies the TCP port used by the SSH 2 Server to listen for incoming connections.
Status: current Access: read-write
OBJECT-TYPE    
  Unsigned32 1..65535  

rlSshServerEnable 1.3.6.1.4.1.9.6.1.101.78.2.102
Enables listening for incoming SSH2 connections on the port defined in rlSshServerPort.
Status: current Access: read-write
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

rlSshServerEnablePublicKeyAuthentication 1.3.6.1.4.1.9.6.1.101.78.2.103
If PK authentication is enabled, incoming SSH connections are authenticated using public key authentication (using rlSshServerAuthorizedUsersPublicKeyTable), before authenticating using the router's standard AAA.
Status: current Access: read-write
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

rlSshServerRegenerateHostKey 1.3.6.1.4.1.9.6.1.101.78.2.104
Setting to a value other than none results in the Server (Host) Key being regenerated. The key size is host-specific.
Status: current Access: read-write
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshServerDefaultKeyFlag 1.3.6.1.4.1.9.6.1.101.78.2.105
This scalar indicates which of the SSH server keys are default keys (automatically generated).
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER rsa(1), dsa(2), all(3), none(4)  

rlSshServerDeleteSelfKey 1.3.6.1.4.1.9.6.1.101.78.2.106
Setting to a value other than 'none' results in deleting the server self key of the chosen type. As a result a default key may be created (according to the MTSC..)
Status: current Access: read-write
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshServerEnablePublicKeyAuthAutoLogin 1.3.6.1.4.1.9.6.1.101.78.2.107
If PK authentication is succesfull and AAA local DB method is enabled for SSH line, the username is checked with AAA local DB. If present, the user is authenticated automatically without prompting for username or password.
Status: current Access: read-write
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

rlSshServerEnablePasswordAuthentication 1.3.6.1.4.1.9.6.1.101.78.2.108
If password authentication is enabled, incoming SSH connections are authenticated with username/password authentication using the router's standard AAA.
Status: current Access: read-write
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

rlSshClient 1.3.6.1.4.1.9.6.1.101.78.3
OBJECT IDENTIFIER    

rlSshClientUserName 1.3.6.1.4.1.9.6.1.101.78.3.1
Specifies the default user name the ssh client will use when authenticating to a remote server. In SCP sessions this global user name will be used unless a specific user name has been specified for the operation. The value of this MIB must not contain charachters ':' or '@' (those are used to indicate parameters seperation in SCP copy).
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(1..70)  

rlSshClientRegenerateSelfKey 1.3.6.1.4.1.9.6.1.101.78.3.2
Setting to a value other than none results in the client self key being regenerated. The key size is host-specific.
Status: current Access: read-write
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshClientSelfPublicKeyTable 1.3.6.1.4.1.9.6.1.101.78.3.3
This table contains the router's client self public key. Each row in this table contains a fragment of the key, in printable binhex format. There may be up to 160 characters in every fragment, and they are all combined to form one key. The key is generated by writing to rlSshClientRegenerateSelfKey. To cause clients to connect to this router without printing warning messages (and also prevent active man-in-the-middle), the router's public key must printed out and inserted into the client's authorized_keys file
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshClientSelfPublicKeyTableEntry

rlSshClientSelfPublicKeyTableEntry 1.3.6.1.4.1.9.6.1.101.78.3.3.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshClientSelfPublicKeyTableEntry  

rlSshClientSelfPublicKeyFragmentId 1.3.6.1.4.1.9.6.1.101.78.3.3.1.1
Identifies the index of this fragment in the final key. All segments must be combined to form one big key.
Status: current Access: read-only
OBJECT-TYPE    
  Unsigned32  

rlSshClientSelfPublicKeyAlgorithm 1.3.6.1.4.1.9.6.1.101.78.3.3.1.2
Identifies the type of public key to be displayed.
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshClientSelfPublicKeyFragmentText 1.3.6.1.4.1.9.6.1.101.78.3.3.1.3
A part of the readable text entry for the router's client public authorization key.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString  

rlSshClientSelfPublicKeyFingerprintTable 1.3.6.1.4.1.9.6.1.101.78.3.4
This table contains the fingerprint for the client's self key.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshClientSelfPublicKeyFingerprintTableEntry

rlSshClientSelfPublicKeyFingerprintTableEntry 1.3.6.1.4.1.9.6.1.101.78.3.4.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshClientSelfPublicKeyFingerprintTableEntry  

rlSshClientSelfPublicKeyFingerprintAlgorithm 1.3.6.1.4.1.9.6.1.101.78.3.4.1.1
Identifies the type of public key to be displayed.
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshClientSelfPublicKeyFingerprintDigestFormat 1.3.6.1.4.1.9.6.1.101.78.3.4.1.2
Format of the digest to be displayed (OpenSSH or SSH.com).
Status: current Access: read-only
OBJECT-TYPE    
  RlSshPublicKeyDigestFormat  

rlSshClientSelfPublicKeyFingerprint 1.3.6.1.4.1.9.6.1.101.78.3.4.1.3
SECSH format fingerprint of the client's self key. To prevent man in the middle attacks, users should make sure the ssh Server's fingerprint, as printed in the connection process, is similar to the one printed here.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshClientAuthenticationMethod 1.3.6.1.4.1.9.6.1.101.78.3.5
Specifies the global authentication method for SSH client. SSH client will apply this authentication method upon connecting to a remote server, if no specific authentication method has been defined for this operation.
Status: current Access: read-write
OBJECT-TYPE    
  INTEGER public-key-rsa(1), public-key-dsa(2), password(3)  

rlSshClientPassword 1.3.6.1.4.1.9.6.1.101.78.3.6
Specifies the global password for SSH client, to be used for 'password' authentication. SSH client will use this password during authentication phase (when connecting remote server), in case no specific password has been specified for this operation. The value of this MIB must not contain charachters ':' or '@' (those are used to indicate parameters seperation in SCP copy). Upon setting the password, its length must be in range 1-70.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(0..70)  

rlSshClientPasswordChangeTable 1.3.6.1.4.1.9.6.1.101.78.3.7
This table allows the user to change the password in a remote SSH server. It should be used when working with 'password' authentication with remote server in SCP sessions. Set operation on this table will initiate SCP session with the SSH server whose inet address is specified in the key rlSshClientPasswordChangeInetAddress. During this session the password for username rlSshClientPasswordChangeUsername will be changed in the server from rlSshClientPasswordChangeOldPassword to rlSshClientPasswordChangeNewPassword. The Set operation might fail, in case an SCP session is already being held. In case 'noError' is returned, the user can poll the fields rlSshClientPasswordChangeStatus and rlSshClientPasswordChangeFailureReason in order to get information on operation status and possible failure reason. Note: up to 3 status records can be saved.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshClientPasswordChangeEntry

rlSshClientPasswordChangeEntry 1.3.6.1.4.1.9.6.1.101.78.3.7.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshClientPasswordChangeEntry  

rlSshClientPasswordChangeInetAddrType 1.3.6.1.4.1.9.6.1.101.78.3.7.1.1
Specifies the inet address type of remote SCP server
Status: current Access: not-accessible
OBJECT-TYPE    
  InetAddressType  

rlSshClientPasswordChangeInetAddr 1.3.6.1.4.1.9.6.1.101.78.3.7.1.2
Specifies the inet address of remote SCP server
Status: current Access: not-accessible
OBJECT-TYPE    
  InetAddress  

rlSshClientPasswordChangeUsername 1.3.6.1.4.1.9.6.1.101.78.3.7.1.3
Specifies the username for which the password change is required.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(1..70)  

rlSshClientPasswordChangeOldPassword 1.3.6.1.4.1.9.6.1.101.78.3.7.1.4
Specifies the old password that was in use for rlSshClientPasswordChangeUsername until now. Upon setting a value in this entry, length of this field value must be 6-70. Password of length 0 will always be returned on GET operations.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(0..70)  

rlSshClientPasswordChangeNewPassword 1.3.6.1.4.1.9.6.1.101.78.3.7.1.5
Specifies the new password that should be in use for rlSshClientPasswordChangeUsername from now on. Upon setting a value in this entry, length of this field value must be 6-70. Password of length 0 will always be returned on GET operations.
Status: current Access: read-write
OBJECT-TYPE    
  DisplayString Size(0..70)  

rlSshClientPasswordChangeStatus 1.3.6.1.4.1.9.6.1.101.78.3.7.1.6
Specifies the status of last password change operation on remote server identified by rlSshClientPasswordChangeInetAddress. In case this data was erased (3 or more password change operations have been performed since the operation on this server), the status will be 'noData'.
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER inProgress(1), succeeded(2), failed(3), noData(4)  

rlSshClientPasswordChangeFailureReason 1.3.6.1.4.1.9.6.1.101.78.3.7.1.7
In case the value of rlSshClientPasswordChangeStatus is 'failed', this field will contain the failure reason.
Status: current Access: read-only
OBJECT-TYPE    
  DisplayString  

rlSshClientDeleteSelfKey 1.3.6.1.4.1.9.6.1.101.78.3.8
Setting to a value other than 'none' results in deleting the client self key of the chosen type.
Status: current Access: read-write
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshClientImportExportSelfKeyTable 1.3.6.1.4.1.9.6.1.101.78.3.9
This table can be used for 2 purposes: 1) Importing public/private key pair to serve as the device key when acting as SSH client. This is done by setting entries to this table, according to the specified format. When the last entry (footer) is set, the whole key pair is checked and if valid, stored in CDB. 2) Exporting the device SSH client public/private key. This can be done by performing GetNext operations on this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshClientImportExportSelfKeyEntry

rlSshClientImportExportSelfKeyEntry 1.3.6.1.4.1.9.6.1.101.78.3.9.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshClientImportExportSelfKeyEntry  

rlSshClientImportExportSelfKeyAlgorithm 1.3.6.1.4.1.9.6.1.101.78.3.9.1.1
Identifies the type of key pair.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshPublicKeyAlgorithm  

rlSshClientImportExportSelfKeyFormat 1.3.6.1.4.1.9.6.1.101.78.3.9.1.2
Specifies the format of public/key pair. The following formats are supported for import/export: 1) uuencoded_format - in this format both private and public key are in uu-encoded format, and are seperated from one another by header and footer. An example of the concateneation of all fragments in this format is: -----BEGIN ENCRYPTED RSA PRIVATE KEY----- tDaNkZZoCxXfkLLsLDlZ6T9H8U4Gz637eRV7BYBpapkidAxY1UG0/qgfKLPkbId4wzht6ArV9bE4fMtX wSMOxL3q31pOmUdVhjbWYcgZQBDy1DjFSbuIEdP85c96B9bBE2nPv90mSvb/6j8R2NItT/KJeiYMtLtI N3m6/zESKJGIrX0jP1RFDjVZSS5chSAFgB0egsLZEyOQn7jAqpX/x/easD2J6F/OjPXlJ9Hff2tMb3NU QYyBoWH2J9IxhWB6Vo66R9Y04JGR18uL/rV2sMCtpg5ppkVTEpNTp9qE1yXocR2NmzUfNFap+GJ4IHj8 CzkVfmJM/kEWaJsYgHbAgLyRg4QVyelfobv1B71aQ+u1z9KGu/QajkWdR04OQfsGOL1CvU2LGYDcRjfH jv+jl/UkDRRjoD9kt2WvouT+OL6esvKl0OJBqWbGNXg9TWv/VLtJIwgUno+MLaJuOM4Fh44+wpnqUXwQ TFtBFc8pzt5BoOwbv9gXpicTkq4/+GhwXWXxSVFebKhnHAvKSLT+Ba7K7ZeR8EIIxbXdDNFOiS45R2KI jxxXLXK44u6KGl5MygCKXUOFlJ+Zhgrq6ZH17z/RVJQ2CWqb5Ekn9GY3kH9QZ3mb4MDPfriWi2lHGXHY JmJd4SLQhpBdnOS5tu84QmyU3dNbAdzghDsR+dEY/6g7Cn0kcVkeHNZ0H+mCZik5f6XBD8eplkk43bdR FrkwTeAjwurGcKwdiKkR4DlfSq3DKssVBucTqUpqsKqPXLwTIL44rWKhEPXgGPB2XDG0VLvIRKkAgEGI LNTwOm091Ro= -----END RSA PRIVATE KEY----- -----BEGIN RSA PUBLIC KEY----- MIGHAoGBAOeIC9gRg3YaEGGMp3C00qNwLINAEDZV/J4BWM5WnWwCWZyHXDs2XiEmFu0ZONAD4gcT2f2f NNfCBPye39VVuOkKQuSV0MLLX5800LZ4y1BNcPzPZHpnGaCzl7iAjhfj9MolzAh5VRjeiYt0t1um4dm+ q9A4BtfpJqDYxCW9uxd/AgEj -----END RSA PUBLIC KEY-----
Status: current Access: not-accessible
OBJECT-TYPE    
  INTEGER uuencoded-format(1)  

rlSshClientImportExportSelfKeyFragmentId 1.3.6.1.4.1.9.6.1.101.78.3.9.1.3
Identifies the index of this fragment in the key pair input/output.
Status: current Access: not-accessible
OBJECT-TYPE    
  INTEGER  

rlSshClientImportExportSelfKeyFragmentText 1.3.6.1.4.1.9.6.1.101.78.3.9.1.4
A part of the readable text entry for the key pair input/output.
Status: current Access: read-write
OBJECT-TYPE    
  OCTET STRING  

rlSshClientRemoteServerPublicKeyFingerprintTable 1.3.6.1.4.1.9.6.1.101.78.3.10
Table for storing fingerprints of remote servers public keys. It is used for the purpose of server authentication. An entry can be inserted to this table either explicitly by user configuration, or during copy operation, after user's approval.
Status: current Access: not-accessible
OBJECT-TYPE    
  SEQUENCE OF  
    RlSshClientRemoteServerPublicKeyFingerprintEntry

rlSshClientRemoteServerPublicKeyFingerprintEntry 1.3.6.1.4.1.9.6.1.101.78.3.10.1
The row definition for this table.
Status: current Access: not-accessible
OBJECT-TYPE    
  RlSshClientRemoteServerPublicKeyFingerprintEntry  

rlSshClientRemoteServerFingerprintInetAddrType 1.3.6.1.4.1.9.6.1.101.78.3.10.1.1
Remote server inet address type.
Status: current Access: not-accessible
OBJECT-TYPE    
  InetAddressType  

rlSshClientRemoteServerFingerprintInetAddr 1.3.6.1.4.1.9.6.1.101.78.3.10.1.2
Remote server inet address.
Status: current Access: not-accessible
OBJECT-TYPE    
  InetAddress  

rlSshClientRemoteServerFingerprint 1.3.6.1.4.1.9.6.1.101.78.3.10.1.3
Remote server fingerprint.
Status: current Access: read-create
OBJECT-TYPE    
  OCTET STRING Size(16)  

rlSshClientRemoteServerFingerprintStatus 1.3.6.1.4.1.9.6.1.101.78.3.10.1.4
Row status for this row.
Status: current Access: read-create
OBJECT-TYPE    
  RowStatus  

rlSshClientRemoteServersAuthenticationEnable 1.3.6.1.4.1.9.6.1.101.78.3.11
Setting this field to 'enable' enables remote servers authentication. As a result, while opening a session with a remote server, the fingerprint of the remote server will be computed and looked for in the table rlSshClientRemoteServerPublicKeyFingerprintTable. If an entry with the key (server-inet-address, server-fingerprint) is found, the server is considered authenticated. Otherwise, the server is not authenticated (unless the user specifically approved this server can be trusted).
Status: current Access: read-write
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

rlSshClientDefaultKeyFlag 1.3.6.1.4.1.9.6.1.101.78.3.12
This scalar indicates which of the SSH client keys are default keys (automatically generated).
Status: current Access: read-only
OBJECT-TYPE    
  INTEGER rsa(1), dsa(2), all(3), none(4)