This update is for all GroundWork customers running GroundWork Monitor 7.2.1 who want to use AES encryption with Net-SNMP commands.
This Technical Bulletin provides a complete set of replacement files for the Net-SNMP 5.7.3 distribution that was included in the original GWME-7.2.1 release. The new distribution is updated to the Net-SNMP 5.8 release, and it has been compiled with support for AES encryption.
The complete Net-SNMP distribution is included in this patch. That includes commend-line programs such as these:
along with all of their associated supporting files (other utilities, libraries, MIBS, documentation, etc.). Also included are the following Perl modules:
- You need to be running GroundWork Monitor Enterprise 7.2.1 (possibly patched to version 7.2.2). Rollup patches do not include this fix.
- This technical bulletin does not depend upon prior technical bulletins.
- There is no need to schedule a downtime to apply this technical bulletin, because installing or uninstalling it does not involve restarting parts of GroundWork Monitor. That said, plugins and other scripting that happen to be referencing the updated files at the time of install or uninstall may be disrupted.
- As the root user, copy the attached tarball to an empty directory on the GW server already in place.
- Unpack the tarball using the command:
- Change into the directory created by untarring:
- Run the installer script:
The install script will test that you are on a GroundWork system running version 7.2.1, that you have not already installed this patch, and that you want to go ahead.
- Respond to the install-confirmation prompt when it appears.
- The old files being replaced will be backed up, and a complete set of new files will be copied into place. Monitoring in general can continue while this patch is installed, subject to the understanding that the current run of code which is referencing the replaced files may fail.
Once this is installed, you may use AES encryption with the usual Net-SNMP commands, wherever that applies.
Here is an example Net-SNMP command that invokes AES encryption:
and here is an example of AES encryption being invoked indirectly, through a Nagios plugin:
Reversal of this patch will remove the revised Net-SNMP files on the GW server and put back the old Net-SNMP distribution that was backed up when the patch was installed.
- As the root user, navigate to the patch-unpack directory you created when installing the patch. (If that directory no longer exists, first unpack the patch again.)
- Run the uninstall command: