LUM-SYSTEM-MIB: View SNMP OID List / Download MIB

Protection against simultaneous access from multiple managers. See SNMPv2-TC.

The MIB specification version.

The MIB implementation version.

The time the state of MIB last changed.

Object that can be used to verify write access (via SNMP). This attribute can be written via SNMP.

The time the configuration of the MIB last changed.

Enable/disable login records. The log can be viewed with the last command. off - Login records log disabled. on - Login records log enable.

Number of rows available in the user table.

Object that can be used to verify write access (via SNMP). This attribute can be written via SNMP.

An administratively-assigned name for this managed node. By convention, this is the nodes fully-qualified domain name. The node name may be composed of the following characters: A to Z ; uppercase characters a to z ; lower case characters 0 to 9 ; numeric characters - ; dash . ; dot, is used as a separator _ ; underscore, supported (but might not be supported by all DNS servers) A host name (label) can start or end with a letter or a number A host name (label) MUST NOT start or end with a - (dash) A host name (label) MUST NOT consist of all numeric values A host name (label) can be up to 63 characters

The textual identification of the contact person for this managed node, together with information on how to contact this person. Set to the empty string if not known. Example: Joe, e-mail: joe@localhost.localdomain

The physical location of this node. Set to the empty string if not known. Example: Rack 5, in the system lab, third floor

The vendors authoritative identification of the network management subsystem contained in the entity. This value is allocated within the SMI enterprises subtree (1.3.6.1.4.1) and provides an easy and unambiguous means for determining what kind of box is being managed.

The name or IP address of the name server. Set to the empty string if not known. Example: dns.localdomain

Note: This attribute is deprecated! Indicates the runlevel of the software. halt - Shutdown the entire node. single - Stop all applications and enter single user mode. normal - Normal operations. reboot - Restart the entire node. tbd: no network? tbd: restart with default configuration

The name or IP address of the name server. Set to the empty string if not known. Example: dns.lumentis.se, 192.168.1.200

The uptime in string format.

User configurable identifier of the type of node. Included in performance measurements reports.

User configurable network element name. Included in performance measurements reports.

User configurable network element distinguished name. Included in performance measurements reports.

Application start time.

Determines what rules should be used when formatting and display items that are affected by language and locality. The following is currently affected: Date and time Decimal character Unit used for temperatures If locale is set to US English temperatures are converted to degrees Fahrenheit. Note: Only the default locale, C, is supported at the moment.

The build version.

Common Language Location Identifier of NE. Specifies the location and function of telecommunications equipment or of a relevant location such as international border or the location of a supporting equipment, such as a pole or a manhole.

Frame Identifier Code or Facility Interface Code for NE. FIC identifies the type of interface that the terminal equipment requires for compatible interconnection with wireline carrier facilities.

Target ID of NE. A unique identifier which is a combination of the CLLI and FIC (Location+Frame).

Latitude of the NE. A geographic coordinate ranging from -90 to +90 degree specifying the north-south position of a node on the Earth surface. Decimal Degree Representation is used as the latitude format.

Longitude of the NE. A geographic coordinate ranging from -180 to +180 degree specifying the east-west position of the node on the Earth surface. Decimal Degree Representation is used as the longitude format.

The well known host names list.

An entry in well known host names list.

An arbitrary index assigned to each host entry.

The IP address of a well known host. Example: 192.168.1.200

The name(s) of a well known host. Set to the empty string if not known. Example: dns.lumentis.se dns

Manages creation and deletion of conceptual rows. See also SNMPv2-TC.

The local date and time.

The name of the time zone in which node is located. A few examples: CET EET Europe/Stockholm Europe/London Europe/Copenhagen Europe/Berlin America/Chicago America/Kentucky/Louisville Asia/Tokyo Note: The notation used for naming the timezones where the offset to Coordinated Universal Time (UTC) is explicitly included, i.e. GMT-2, may be confusing. The offset indicates the time value to be added to the local time to get UTC. This means that the the offset is positive for timezones west of UTC and and negative east of UTC. This is the opposite of how timezones are often described. For example standard time in Sweden is GMT-1. On timezone maps zones east of UTC are often given a positive offset so that the very same zone is called GMT+1. This attribute can be written via SNMP.

The IP address of the primary SNTP/NTP server. Set to the 0.0.0.0 or empty string if not used. Example: 192.36.143.150 (time1.stupi.se)

The IP address of the secondary SNTP/NTP server. Set to the 0.0.0.0 or empty string if not used. Example: 192.36.143.151 (time2.stupi.se)

Change the local date and time. Year - If no century is input the current century is set by default. Month - 1 to 12 Day - 1 to 31 Hour - 0 to 23 Minute - 0 to 59 Second - 0 to 59 Note: Setting of the local time is disabled if either the primary or secondary time server is set.

The IP address of the primary SNTP/NTP server. Set to 0.0.0.0 if not used. Example: 192.36.143.150 (time1.stupi.se) This attribute can be written via SNMP.

The IP address of the primary SNTP/NTP server. Set to 0.0.0.0 if not used. Example: 192.36.143.150 (time1.stupi.se) This attribute can be written via SNMP.

The syslog configuration directives list.

An entry in the syslog configuration directives list.

An arbitrary index assigned to each syslog configuration directive.

tbd description tbd examples

tbd description tbd examples

Manages creation and deletion of conceptual rows. See also SNMPv2-TC.

The local user list.

An entry in the local user list. Prompts for the following when creating a new user: Password for the current user (the user in question or an administrator). New password for the user. New password again. Profile for the new user (default operator).

An arbitrary index assigned to each entry.

The username must start with a lowercase alphabetical character. The rest of the username should be lowercase letters (a-z), numbers(0-9) or any of the following characters: -._ It is also possible to add $ as the last character.

tbd description tbd examples

User description string.

tbd description tbd examples

tbd description tbd examples

Manages creation and deletion of conceptual rows. See also SNMPv2-TC.

The user authority profile. administrator - No restrictions. operator - Restrictions on user operations and some systems management operations. Otherwise read/write access. readonly - Read only access.

User id.

Change user password. Permitted for the the user in question and administrators. Asks for the following: User database to update, Local or TACACS. The system supports update of either the local password or the TACACS password on a remote server. This choice is seen only when applicable. Password for the current user (the user in question or an administrator). New password for the user. New password again. Default password when a user is created is set to 1234567890.

Clear the user password. Only permitted for administrators. Asks for the following: Password for the current user. Note: Only changes the local password. If a RADIUS- or TACACS+-server is in use they may override the local configuration.

Disable the user. Clear or set the password to make the user available again. Only permitted for administrators. Asks for the following: Password for the current user. Note: Only disables the user locally. If a RADIUS- or TACACS+-server is in use they may override the local configuration.

Enable the user. Only permitted for administrators. Asks for the following: Password for the current user. Note: Only enables the user locally. If a RADIUS- or TACACS+-server is in use they may override the local configuration.

Administrative status for the user. Note: Only shows the local user configuration. If a RADIUS- or TACACS+-server is in use they may override the local configuration.

The IP address for the primary RADIUS-server. The port number used is 1812 (accounting, port 1813, is not enabled). Time-out is 3 seconds. Set to the 0.0.0.0 or empty string if not used. If either the server or the secret are not set the primary server is disabled.

The shared secret for the primary RADIUS-server. Set to empty string if not used. If either the server or the secret are not set the primary server is disabled.

The IP address for the secondary RADIUS-server. The port number used is 1812 (accounting, port 1813, is not enabled). Time-out is 3 seconds. Set to the 0.0.0.0 or empty string if not used. If either the server or the secret are not set the secondary server is disabled.

The shared secret for the secondary RADIUS-server. Set to empty string if not used. If either the server or the secret are not set the secondary server is disabled.

The IP address for the primary RADIUS-server. The port number used is 1812 (accounting, port 1813, is not enabled). Time-out is 3 seconds. Set to 0.0.0.0 if not used. If either the server or the secret are not set the primary server is disabled.

The IP address for the secondary RADIUS-server. The port number used is 1812 (accounting, port 1813, is not enabled). Time-out is 3 seconds. Set to 0.0.0.0 if not used. If either the server or the secret are not set the primary server is disabled.

The port number for the primary RADIUS server.

The port number used for the Secondary RADIUS server.

The user authority profile. administrator - No restrictions. operator - Restrictions on user operations and some systems management operations. Otherwise read/write access. readonly - Read only access. no radius template - The user radius is used as template. It should be created if RADIUS server is used. Otherwise both primary and secondary servers are disabled.

Shows the date when the license will expire.

Shows the name of the customer that holds the license.

Warns that the license will expire in 7 days, or less.

Indicates that the license has expired, or the license file is missing.

Describes why the license expired alarm is raised. none - file is ok, no alarm. missing - the license file is missing. invalid - it is not a valid XML file, or some tags are missing. corrupt - the encryption key does not match the content of the file. expired - the license has expired.

disabled - the feature ENM can not be used. enabled - the feature ENM can be used. demo - the feature is only for demo use. corrupt - the encryption key does not match. expired - the feature has expired.

disabled - the feature OSPF can not be used. enabled - the feature OSPF can be used. demo - the feature is only for demo use. corrupt - the encryption key does not match. expired - the feature has expired.

disabled - the feature SNMP can not be used. enabled - the feature SNMP can be used. demo - the feature is only for demo use. corrupt - the encryption key does not match. expired - the feature has expired.

disabled - the feature GMPLS can not be used. enabled - the feature GMPLS can be used. demo - the feature is only for demo use. corrupt - the encryption key does not match. expired - the feature has expired.

disabled - the feature RUDB can not be used. enabled - the feature RUDB can be used. demo - the feature is only for demo use. corrupt - the encryption key does not match. expired - the feature has expired. RUDB means remote used database and include TACACS and RADIUS.

Install a new license file. The license file can either be fetched from a remote server or installed from local directory. There are 3 cases: 1. Remote server. Give server addr and full path installLicenseFile <ip-addr>/<full path> installLicenseFile 192.168.10.27/tftp/license.xml 2. From a local directory installLicenseFile <full path> installLicenseFile /root/license.xml 3. From the local download directory /tftpboot/downloaded installLicenseFile <file name> installLicenseFile license.xml Regardless of the name of the file it will be installed as /etc/lumentis/license.xml

The IP address for the primary TACACS+-server. The port number used is 49. Time-out is 3 seconds. Set to the 0.0.0.0 or empty string if not used.

The IP address for the secondary TACACS+-server. The port number used is 49. Time-out is 3 seconds. Set to the 0.0.0.0 or empty string if not used.

The shared secret for the primary TACACS+-server. Set to empty string if not used.

The shared secret for the secondary TACACS+-server. Set to empty string if not used.

The IP address for the primary TACACS+-server. The port number used is 49. Time-out is 3 seconds. Set to 0.0.0.0 if not used.

The IP address for the secondary TACACS+-server. The port number used is 49. Time-out is 3 seconds. Set to 0.0.0.0 if not used.

When this parameter is disabled there is no way to access the board via RS-232. Note, the setting applies to all boards in all chassis. enabled - Access is allowed disabled - No access is allowed. The boot monitor and LINUX login are blocked. bootdisabled - The boot monitor is blocked while LINUX login is allowed. Only administrator can change the local console access settings.

Procedure to change Local Console Access

This parameter shows if a system function is enabled in the node. unavailable - package not installed unsecure - package installed but not in use secure - package installed and in use

The local craft ETH access is used for connecting a PC which runs DHCP (Dynamic Host Control Protocol) for accessing the web (GUI) interface. Use lc in the address bar of the browser. The IP address of the DCN also works. When this parameter is disabled there is no way to access the board via Craft ETH port. enabled - Access is allowed disabled - No access is allowed. Only administrator can change the local craft ETH access settings. The Local Craft ETH runs in 1000Base-T mode (1G Eth) or lower speed depending on the auto negotiation.

Procedure to change Local Craft ETH Access

This parameter shows the authentication order which is used by the system. localFirst - First authenticate with respect to local user database. If it fails, try remote server(s). If no remote servers are configured, the authentication will be Local-Only. remoteFirst - First authenticate with respect to the remote servers. If all remote servers are unreachable, try the local user database. If the remote authentication is denied, try the local user database. strictRemoteFirst - First authenticate with respect to the remote servers. If all remote servers are unreachable, try the local user database. If the remote authentication is denied, stop, access is denied. Only administrator can change the authenticate order settings.

Access rights to the file system of the node element. When restricted, restrictions to the file system are activated, these restrictions depends on the user authority profile. disabled - Default access rights: 1. Administrators (including root) and operators can execute CLI commands bash and telnet. 2. All users have full file system access using SFTP or FTP (if enabled). enabled - Restricted access rights to the file system. The following restrictions are applied: 1. Only administrator users (including root) can execute CLI commands bash and telnet. 2. When using SFTP: Readonly and operator users can only access /tftpboot/ and its subdirectories. Administrator users (including root) have full file system access. 3. When using FTP (if enabled): Readonly, operator and all administrator users except root can only access /tftpboot/ and its subdirectories. The root user have full file system access. When changed, the updated restrictions will be used at following FTP/SFTP sessions. On CU-SFP/III, active FTP sessions will be aborted at the point when file system access is changed. Only administrator can change the file system access restriction settings.

The CU front ICN port access is used for internal connection between subracks. When this parameter is disabled there is no way to access next node via ICN1 or ICN2. enabled - Access is allowed disabled - No access is allowed. Only administrator can change the CU front ICN port access settings.

Procedure to change CU front ICN port access

The Subrack ICN port access is used for internal connection between subracks. When this parameter is disabled there is no way to access next subrack via ICN3 or ICN4. enabled - Access is allowed disabled - No access is allowed. Only administrator can change the Subrack ICN port access settings.

Procedure to change Subrack ICN port access

This parameter shows if the NE has lost the signal or not. The SNMP agent is regularly polling the NE and if the NE is not polled within a certain time period (set in parameter MgmtAccessProofOfConnectivity) we have proof of connectivity loss, and this parameter is set to disconnected. undefined - NE connectivity status not determined disconnected - NE lost connection connected - NE is connected

Number of minutes that has to pass with no SNMP agent polls before the NE assumes that connectivity is lost. Only administrator can change the proof of connectivity settings.

A setting to turn off/on auto enabling of blocked management ports. Management ports in this context means DCN and Local craft ETH (Local craft ETH does not exist on all platforms). If the network element has not been polled by the SNMP agent (DNA-M) within the time that is set by the attribute Proof of Connectivity, the blocked management ports are automatically enabled (deblocked/unblocked). If SNMP polling is detected again by the network element (after a discontinuity) the ports will revert to their blocked state. on - The function to auto enable blocked ports is turned on. off - The function to auto enable blocked ports is turned off. Only administrator can change the auto enable blocked management ports settings.

Blocked management ports (i.e. local craft and DCN ports) are unblocked.

The name of Centralized Security Manager (DNA-M). This attribute shall NOT be set locally. The DNA-M managing the security features of the NE will set this. Requires administrator privileges to change.

The address of Centralized Security Manager (DNA-M). This attribute shall NOT be set locally. The DNA-M managing the security features of the NE will set this. Requires administrator privileges to change.

The name of the Security Policy, defined in DNA-M, that is assigned to this NE. This attribute shall NOT be set locally. The DNA-M managing the security features of the NE will set this. Requires administrator privileges to change.

NE platform information. Used by Centralized Security Manager (DNA-M).