CISCO-TRUSTSEC-MIB Download

ctsCacheEnabled

This object specifies if the TrustSec cache is enabled in the system.

ctsCacheNvStorage

The object specifies the location on the device where TrustSec cache files will be created. The location may be specified in :[directory] format, where can be (but not limited to): bootdisk:, disk0:, disk1:. A zero length string for this ...

ctsCacheClear

This object allows user to clear the cache files for Cisco Trusted Security feature on this device. When read, this object always returns the value 'none'. 'none' - No operation. 'all' - Clear all the cached information 'authzPo ...

ctsSecurityGroupTagId

This object allows user to specify the SGT for the packets originating from this device. A value of zero for this object indicates that no SGT has been configured.

ctsSgtAssignmentMethod

This object specifies the method used for assignment of TrustSec SGT for the line cards without TrustSec tagging capability. 'none' - assignment of TrustSec SGT is not enabled. 'ingress' - 'ingress' method is used for the assignment of TrustSec SGT. 'e ...

ctsDeviceId

This object allows user to specify the identifier for the device. This identifier and the device password (specified by ctsDevicePassword) are used together by the Cisco Trusted Security feature for authenticating the device. The value of this object must ...

ctsDevicePasswordType

This object specifies the type of encryption employed to encrypt password in ctsDevicePassword object. Value for this object must be specified as 'clearText', 'typeSix' or 'typeSeven' in order to configure the password in ctsDevicePassword. The value of t ...

ctsDevicePassword

This object allows user to specify the password for the device. This password and the device identifier (specified by ctsDeviceId) are used together by the Cisco Trusted Security feature for authenticating the device. The value of this object must be set ...

ctsKeystoreType

This object indicates the type of keystore employed by the device. 'hardwareKeystore' - Keystore functionality is implemented in hardware. 'softwareEmulation' - Keystore functionality is emulated in software.

ctsKeystoreFwVersion

This object indicates the firmware version of the hardware keystore. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystoreFwAlerts

This object indicates the number of hardware keystore alerts that occurred. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystoreFwResets

This object indicates the number of times the keystore firmware was reset. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystoreRxTimeouts

This object indicates the number of times the system timed out awaiting response from keystore firmware. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystoreRxBadChecksums

This object indicates the number of message fragments the system received from keystore firmware that had bad checksum value. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystoreRxBadFragmentLengths

This object indicates the number of message fragments the system received from keystore firmware that had illegal lengths. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystoreCorruptions

This object indicates the number of times keystore firmware reported detection of one or more corrupted records in the hardware keystore. This object is only instantiated when the value of ctsKeystoreType is 'hardwareKeystore'.

ctsKeystorePasswordRecordTable

A list of Cisco Trusted Security password records stored in the hardware or software keystore of this device.

ctsKeystorePasswordRecordEntry

An entry describing individual password record in the keystore of this device. An entry will be created or deleted from this table when a password record is added or removed from the keystore of this device.

ctsKeystorePasswordRecordName

This object identifies a password record.

ctsKeystorePasswordRecordType

This object indicates the type of credential in this record.

ctsKeystorePacRecordTable

A list of Cisco Trusted Security PAC records stored in the hardware or software keystore of this device.

ctsKeystorePacRecordEntry

An entry describing individual PAC record in the keystore of this device. An entry will be created or deleted by the system when a PAC record is added or removed from the keystore of this device.

ctsKeystorePacRecordName

The name of this PAC record.

ctsKeystorePacRecordType

This object indicates the type of credential in this record.

ctsPacInfoTable

A list of PACs on this device.

ctsPacInfoEntry

An entry providing management information of a particular PAC record. An entry can only be created dynamically by the system when a new PAC is installed in the keystore. An entry will be deleted from this table when the PAC is removed from the keystore by ...

ctsPacAcsAuthId

This object indicates the unique authority identity of the ACS server from where the PAC was downloaded.

ctsPacAcsDescription

This object indicates the description of the ACS server from where the PAC was downloaded.

ctsPacType

This object indicates the type of PAC this entry represents. 'unknown' - Any other type of PAC that is not covered below 'tunnel' - Distributed shared secret between the peer and ACS that is used to establish a secure tunnel and convey the policy of what ...

ctsPacExpirationTime

This object indicates the time when this PAC will be expired.

ctsPacTimeToRefresh

This object indicates the time left for this PAC to be refreshed from the ACS.

ctsPacStatus

This object is used to manage the deletion of rows in this table. This object only supports the values 'active' and 'destroy'. Setting this object to 'destroy' deletes this PAC. When read, this object will always return 'active'.

ctsCredentialsClearAll

This object allows user to clear all the PACs and Cisco Trusted Security credentials on the device. Setting the object to 'true' will clear all the PACs and credentials. When read, this object will always return 'false'.

ctsEnvDataLastDownloadStatus

This object indicates the status of the last attempt to download the Environment Data. 'other' - Any other state not covered by below enumerations. 'succeeded' - Environment Data download completed successfully. 'failed' - Environment Data download ...

ctsEnvSecurityGroupTagId

This object indicates the SGT for packets originating on this device downloaded from the ACS. A value of zero for this object indicates that no SGT has been downloaded from the ACS.

ctsEnvSecurityGroupTagGenId

This object indicates the generation identifier associated with the downloaded SGT on this device.

ctsEnvDataLastUpdate

This object indicates the last time Cisco Trusted Security Environment Data was successfully updated from ACS. This object will contain 0-1-1,00:00:00:0 if Environment Data has never been successfully updated from ACS.

ctsEnvDataRefreshInterval

This object indicates the time interval for which Trusted Security Environment Data is valid. The Trusted Security Environment Data will be refreshed i.e. downloaded from the ACS after this time period has elapsed.

ctsEnvDataTimeLeft

This object indicates the time left for the currently installed Trusted Security Environment Data to expire.

ctsEnvDataTimeToRefresh

This object indicates the time interval after which Trusted Security Environment Data will be refreshed i.e. downloaded from the ACS due to Environment Data expiration or refresh failure.

ctsEnvDataSource

This object indicates the source of current Environment Data installed on the system. 'none' - No Environment Data is currently installed. 'cached' - Environment Data is installed from non-volatile storage on the system. 'downloaded' - Environme ...

ctsEnvDataAction

This object allows user to specify the action to be taken for all the Cisco Trusted Security Environment Data on this device. When read, this object always returns the value 'none'. 'none' - No operation. 'refresh' - Refresh all the Trusted Security En ...

ctsEnvSecurityGroupNameTable

A list of Security Group Names in Cisco Trusted Security environment.

ctsEnvSecurityGroupNameEntry

An entry listing the name assigned to each SGT in Cisco Trusted Security environment. Entries will be populated in this table when system downloads Security Group Name information as part of Trusted Security Environment Data.

ctsEnvSecurityGroupNameSgt

This object identifies a SGT in Trusted Security environment.

ctsEnvSecurityGroupNameSgtGenId

This object indicates the Generation Identifier associated with this SGT.

ctsEnvSecurityGroupNameSgtFlag

This object indicates the flag associated with this SGT. 'recognizedSgt' - indicates a recognized SGT when set to 1, else indicates a reserved SGT. 'unicastSgt' - indicates a unicast SGT when set to 1, else indicates a multicast SGT.

ctsEnvSecurityGroupName

This object indicates the Security Group Name assigned to this SGT.

ciscoTrustSecCacheGroup

A collection of objects that provides the cache configuration for TrustSec in the system.

ciscoTrustSecSgtGroup

A collection of objects to manage SGT for TrustSec.

ciscoTrustSecCredentialsGroup

A collection of objects to manage credentials parameters for TrustSec.

ciscoTrustSecHwKeystoreInfoGroup

A collection of objects to manage hardware keystore for TrustSec.

ciscoTrustSecEnvDataGroup

A collection of objects to manage Environment Data for TrustSec.

ciscoTrustSecSgtAssignmentGroup

A collection of objects to manage assignment of TrustSec SGT.

ciscoTrustSecEnvSecGroupNameGroup

A collection of object(s) to manage Security Group Name information for TrustSec.