Avaya AP-6 User Manual

Management and Monitoring Capabilities

1-12 Avaya Wireless AP-4/5/6 User’s Guide

• Message stream modification: SNMP is designed to operate over a

connectionless transport protocol. There is a threat that SNMP
messages could be reordered, delayed, or replayed (duplicated) to
effect unauthorized management operations. For example, a
message to reboot a device could be copied and replayed later.

• Disclosure: An entity could observe exchanges between a manager

and an agent and thereby learns the values of managed objects and
learn of notifiable events. For example, the observation of a set
command that changes passwords would enable an attacker to
learn the new passwords.

To address the security threats listed above, SNMPv3 provides the
following when secure management is enabled:

• Authentication: Provides data integrity and data origin

authentication.

• Privacy (a.k.a Encryption): Protects against disclosure of message

payload.

• Access Control: Controls and authorizes access to managed objects

NOTE:
The remainder of this guide describes how to configure an AP using
the HTTP Web interface or the CLI interface. For information on how
to manage devices using SNMP, refer to the documentation that
came with your SNMP program. Also, refer to the MIB files for
information on the parameters available via SNMP.