...
Instead of using canned SSH-based probes for UNIX, we are researching the possibility of using SNMP against unix boxes (and possibly windows). In theory we can . We do this by simply replacing the SSH probes with equivalent SNMP probes which SNMP GET information from extended MIB objects which we apply to all machines we plan to instrument.
...
...we may want to use SNMPv3, but the general idea is clear... we can expose arbitrary configuration data through SNMP. Since there are only a few dozen probes (and maybe only a subset of actual interest to Yale) we should be able to leverage SNMP for UNIX discovery instrumentation.
Rewire Discovery
...
Rewiring of Discovery
- make sure SSH discovery doesn't happen
- no credentials
- configure the behavior of the MID server to skip SSH
- Expand the stock Linux classifier for SNMP so that it runs additional Explore-phase probes
...
- narrow down the sensors to those that apply to our asset types
- look at which ci_ tables are being edited by those and combine sensors with the same function
- generate a list of probes from those sensors
- generate a list of data needed by SNMP
- find out what standard MIBs provide the data
- generate a list of needed extensions for data not covered above
Name
Description
SNMP
Probe
Sensor
CMDB Target Table.Field
UNIX - Active Connections
UNIX - Active Processes
UNIX - CPU
UNIX - Installed Software
UNIX - Memory
UNIX - Memory Modules
UNIX - Network
UNIX - Disks
UNIX - Patches
UNIX - Hardware Info.
UNIX - OS Release
UNIX - Serial
UNIX - VMWare Information
UNIX - Get VMWare Information
UNIX - OS Filesystems
UNIX - OS Filesystems
UNIX - OS Uptime
UNIX - OS Uptime
Solaris - Zones
Determine the Solaris Zone Information
Mac OS X - Last User
Gather log information from Macintosh machines.
Apache - Get Configuration
Apache - Get Configuration
Apache - Version
Apache - Version
JBoss - web.xml list
Trigger probes to get JBoss web.xml
JBoss - jboss-service.xml
Map contents of into JBoss web service
JBoss - Get web.xml
Map jboss webapps detail
MySQL - Catalogs
Creates and relates database catalogs
MySQL - Configuration
MySQL - Configuration
MySQL - Version
MySQL - Version
Oracle - Discover Pfiles
Trigger Oracle pfile probe
Oracle - Fetch Pfile
Parse the Oracle pfiles we've fetched
Oracle - Version
Oracle - Version
Tomcat - Find web.xml list
Trigger probes to get Tomcat web.xml
Tomcat - Get server.xml
Map contents into application server attributes
Tomcat - Map Connectors
Map contents into Connector attributes
Tomcat - Map Contexts
Map contents into web application attributes
Tomcat - Get Version
Get version
Tomcat - Get web.xml
Map tomcat webapps detail
VMWare - Resource Pools
Process resource pool information from ESX
VMWare - vCenter