DOCSIS-ConfigFile
view release on metacpan or search on metacpan
lib/DOCSIS/ConfigFile/mibs/PKTC-MTA-MIB view on Meta::CPAN
Phone: +1 303-661-9100
Fax: +1 303-661-9199
E-mail: mibs@cablelabs.com"
DESCRIPTION
"This MIB module supplies the basic management objects
for the MTA Device
Acknowledgements:
Angela Lyda - Arris Interactive
Chris Melle - AT&T Broadband Labs
Sasha Medvinsky - Motorola
Roy Spitzer - Telogy Networks, Inc.
Rick Vetter - Motorola
Eugene Nechamkin - BroadCom Corp.
Satish Kumar - Texas Instruments
Copyright 1999-2004 Cable Television Laboratories, Inc.
All rights reserved."
REVISION "200404020000Z"
DESCRIPTION
"This revision, published as part of the PacketCable MIB MTA
Specification I09."
::= { clabProjPacketCable 1 }
-- Textual conventions
X509Certificate ::= TEXTUAL-CONVENTION
STATUS current
DESCRIPTION
"An X509 digital certificate encoded as an ASN.1 DER object."
SYNTAX OCTET STRING (SIZE (0..4096))
--
-- PacketCable 1.0 only supports Embedded MTAs
--
--=====================================================================
--
-- The MTA MIB only supports a single provisioning server.
--
--=====================================================================
pktcMtaMibObjects OBJECT IDENTIFIER ::= { pktcMtaMib 1 }
pktcMtaDevBase OBJECT IDENTIFIER ::= { pktcMtaMibObjects 1 }
pktcMtaDevServer OBJECT IDENTIFIER ::= { pktcMtaMibObjects 2 }
pktcMtaDevSecurity OBJECT IDENTIFIER ::= { pktcMtaMibObjects 3 }
--
-- The following group describes the base objects in the MTA
--
pktcMtaDevResetNow OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"Setting this object to true(1) causes the device to reset.
Reading this object always returns false(2). When
pktcMtaDevResetNow is set to true, the following actions
occur:
1. All connections (if present) are flushed locally
2. All current actions such as ringing immediately
terminate
3. Requests for notifications such as notification based
on digit map recognition are flushed
4. All endpoints are disabled.
5. The provisioning flow is started at step MTA - 1."
::= { pktcMtaDevBase 1 }
pktcMtaDevSerialNumber OBJECT-TYPE
SYNTAX SnmpAdminString(SIZE (0..128))
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object specifies the manufacturer's serial number
for this MTA. The value of this object MUST be identical
to the value specified in DHCP option 43 sub-option 4. "
REFERENCE
"PacketCable MTA Device Provisioning Specification;
RFC 2132, DHCP Options and BOOTP Vendor Extensions"
::= { pktcMtaDevBase 2 }
pktcMtaDevHardwareVersion OBJECT-TYPE
SYNTAX SnmpAdminString(SIZE (0..48))
MAX-ACCESS read-only
STATUS obsolete
DESCRIPTION
"The manufacturer's hardware version for this MTA."
::= { pktcMtaDevBase 3 }
pktcMtaDevMacAddress OBJECT-TYPE
SYNTAX MacAddress
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object specifies the telephony MAC address for
this device. The value of this object MUST be identical
to the value specified in DHCP option 43 sub-option 11. "
REFERENCE
" PacketCable MTA Device Provisioning Specification;
RFC 2132, DHCP Options and BOOTP Vendor Extensions"
::= { pktcMtaDevBase 4 }
pktcMtaDevFQDN OBJECT-TYPE
SYNTAX SnmpAdminString
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The Fully Qualified Domain Name for this MTA."
::= { pktcMtaDevBase 5 }
pktcMtaDevEndPntCount OBJECT-TYPE
SYNTAX Integer32 (1..255)
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The physical end points for this MTA."
::= { pktcMtaDevBase 6 }
pktcMtaDevEnabled OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object contains the MTA Admin Status of this device.
If this object is set to 'true', the MTA is
administratively enabled and the MTA MUST be able to
interact with PacketCable entities such as CMS,
Provisioning Server, KDC, other MTAs and MGs on all
PacketCable interfaces.
If this object is set to 'false', the MTA is
administratively disabled and the MTA MUST perform the
following actions for all endpoints:
- Shutdown all media sessions if present,
- Shutdown NCS signaling by following the Restart in
Progress procedures in the PacketCable NCS
specification.
Additionally, the MTA MUST maintain the SNMP Interface for
management. Also, the MTA MUST NOT continue Kerberized Key
Management with CMSes until this object is set to 'true'.
Note: MTAs MUST renew the CMS kerberos tickets according
to the PacketCable Security Specification"
REFERENCE
"PacketCable Security Specification;
PacketCable MTA Device Provisioning Specification"
::= { pktcMtaDevBase 7 }
pktcMtaDevTypeIdentifier OBJECT-TYPE
SYNTAX SnmpAdminString
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This is a copy of the device type identifier used in the
DHCP option 60 exchanged between the MTA and the DHCP
server."
::= { pktcMtaDevBase 8 }
pktcMtaDevProvisioningState OBJECT-TYPE
SYNTAX INTEGER {
pass (1),
inProgress (2),
failConfigFileError (3),
passWithWarnings (4),
passWithIncompleteParsing (5),
failureInternalError (6),
failOtherReason (7)
}
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"This object indicates the completion state of the
MTA device provisioning process.
pass:
If the configuration file could be parsed successfully
and the MTA is able to reflect the same in its
MIB, the MTA MUST return the value 'pass'.
inProgress:
If the MTA is in the process of being provisioned,
the MTA MUST return the value 'inProgress'.
failConfigFileError:
If the configuration file was in error due to incorrect
values in the mandatory parameters, the MTA MUST reject
the configuration file and the MTA MUST return the value
'failConfigFileError'.
passWithWarnings:
If the configuration file had proper values for all the
mandatory parameters but has errors in any of the optional
parameters (this includes any vendor specific OIDs which
are incorrect or not known to the MTA), the MTA MUST
lib/DOCSIS/ConfigFile/mibs/PKTC-MTA-MIB view on Meta::CPAN
pktcMtaDevManufacturerCertificate OBJECT-TYPE
SYNTAX X509Certificate
MAX-ACCESS read-only
STATUS current
DESCRIPTION
" This object contains the MTA Manufacturer Certificate.
The object value must be the ASN.1 DER encoding of the MTA
manufacturer's X.509 public key certificate. The MTA
Manufacturer Certificate is issued to each MTA
manufacturer and is installed into each MTA at the time of
manufacture or with a secure code download. The specific
requirements related to this certificate are defined in
the PacketCable Security specification."
REFERENCE
" PacketCable Security Specification."
::= {pktcMtaDevSecurity 1}
pktcMtaDevCertificate OBJECT-TYPE
SYNTAX X509Certificate
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"ASN.1 DER encoding of the MTA's X.509 public-key
certificate issued by the manufacturer and installed
into the embedded-MTA in the factory. This certificate,
called MTA Device Certificate, contains the MTA's MAC
address. It cannot be updated by the provisioning server."
::= { pktcMtaDevSecurity 2 }
--*********************************************************************
--************************** THIS OBJECT IS OBSOLETE ******************
--*********************************************************************
pktcMtaDevSignature OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0..256))
MAX-ACCESS read-only
STATUS obsolete
DESCRIPTION
"A unique signature created by the MTA for each SNMP
Inform or SNMP Trap or SNMP GetResponse message exchanged
prior to enabling SNMPv3 security ASN.1 encoded Digital
signature in the Cryptographic message syntax (includes
nonce). "
::= { pktcMtaDevSecurity 3 }
pktcMtaDevCorrelationId OBJECT-TYPE
SYNTAX Integer32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"Random value generated by the MTA for use in registration
authorization. It is for use only in the MTA initialization
messages and for MTA configuration file download "
::= { pktcMtaDevSecurity 4 }
--=====================================================================
--
-- pktcMtaDevSecurityTable
--
-- The pktcMtaDevSecurityTable shows security association information
-- relating to a particular MTA endpoint. The MTA endpoint is indexed
-- with ifIndex.
--
--=====================================================================
--*********************************************************************
--************************** THIS TABLE IS OBSOLETE *******************
--*********************************************************************
pktcMtaDevSecurityTable OBJECT-TYPE
SYNTAX SEQUENCE OF PktcMtaDevSecurityEntry
MAX-ACCESS not-accessible
STATUS obsolete
DESCRIPTION
"Contains per endpoint security information."
::= { pktcMtaDevSecurity 5 }
pktcMtaDevSecurityEntry OBJECT-TYPE
SYNTAX PktcMtaDevSecurityEntry
MAX-ACCESS not-accessible
STATUS obsolete
DESCRIPTION
"List of security attributes for a single PacketCable
endpoint interface."
INDEX { ifIndex }
::= { pktcMtaDevSecurityTable 1 }
PktcMtaDevSecurityEntry ::= SEQUENCE {
pktcMtaDevServProviderCertificate X509Certificate,
pktcMtaDevTelephonyCertificate X509Certificate,
pktcMtaDevKerberosRealm OCTET STRING,
pktcMtaDevKerbPrincipalName DisplayString,
pktcMtaDevServGracePeriod Integer32,
pktcMtaDevLocalSystemCertificate X509Certificate,
pktcMtaDevKeyMgmtTimeout1 Integer32,
pktcMtaDevKeyMgmtTimeout2 Integer32
}
pktcMtaDevServProviderCertificate OBJECT-TYPE
SYNTAX X509Certificate
MAX-ACCESS read-write
STATUS obsolete
DESCRIPTION
"ASN.1 DER encoding of the Telephony Service
Provider's X.509 public-key certificate, called
Telephony Service Provider Certificate. It serves
as the root of the intra-domain trust hierarchy.
Each MTA is configured with this certificate so
that it can authenticate TGSs owned by the same
service provider. The provisioning server needs
the ability to update this certificate in the MTAs
via both SNMP and configuration files"
::= { pktcMtaDevSecurityEntry 1 }
pktcMtaDevTelephonyCertificate OBJECT-TYPE
SYNTAX X509Certificate
MAX-ACCESS read-write
STATUS obsolete
DESCRIPTION
"ASN.1 DER encoding of the MTA's X.509 public-key
certificate issued by the Service Provider with either
the Service Provider CA or a Local System CA. This
certificate, called MTA Telephony Certificate, contains
the same public key as the MTA Device Certificate issued
by the manufacturer. It is used to authenticate the
identity of the MTA to the TGS (during PKINIT exchanges).
The provisioning server needs the ability to update this
certificate in the MTAs via both SNMP and configuration
files"
::= { pktcMtaDevSecurityEntry 2 }
pktcMtaDevKerberosRealm OBJECT-TYPE
SYNTAX OCTET STRING (SIZE (0..1280))
MAX-ACCESS read-write
STATUS obsolete -- moved to realm table
DESCRIPTION
"Specifies a Kerberos realm (i.e. administrative domain),
required for Packet Cable key management."
::= { pktcMtaDevSecurityEntry 3 }
pktcMtaDevKerbPrincipalName OBJECT-TYPE
SYNTAX DisplayString (SIZE(0..40))
MAX-ACCESS read-write
STATUS obsolete
DESCRIPTION
"Kerberos principal name for the Call Agent. This
information is required in order for the MTA to obtain
lib/DOCSIS/ConfigFile/mibs/PKTC-MTA-MIB view on Meta::CPAN
mins."
DEFVAL { 30 }
::= { pktcMtaDevSecurityEntry 5 }
pktcMtaDevLocalSystemCertificate OBJECT-TYPE
SYNTAX X509Certificate
MAX-ACCESS read-write
STATUS obsolete
DESCRIPTION
"The Telephony Service Provider CA may delegate the
issuance of certificates to a regional Certification
Authority called Local System CA (with the corresponding
Local System Certificate). This parameter is the ASN.1
DER encoding of the Local System Certificate. It MUST have
a non-empty value when the MTA Telephony certificate is
signed by a Local System CA. Otherwise, the value MUST
be of length 0."
::= { pktcMtaDevSecurityEntry 6 }
pktcMtaDevKeyMgmtTimeout1 OBJECT-TYPE
SYNTAX Integer32 (15..600)
UNITS "seconds"
MAX-ACCESS read-write
STATUS obsolete -- moved to cms table
DESCRIPTION
"This timeout applies only when the MTA initiated key
management. It is the period during which the MTA will
save a nonce (inside the sequence number field) from the
sent out AP Request and wait for the matching AP Reply
from the CMS."
REFERENCE
"PacketCable Security Specification"
::= { pktcMtaDevSecurityEntry 7 }
pktcMtaDevKeyMgmtTimeout2 OBJECT-TYPE
SYNTAX Integer32 (15..600)
UNITS "seconds"
MAX-ACCESS read-write
STATUS obsolete -- changed to adaptive backoff and moved to
-- cms table
DESCRIPTION
"This timeout applies only when the CMS initiated key
management (with a Wake Up or Rekey message).
It is the period during which the MTA will
save a nonce (inside the sequence number field) from
the sent out AP Request and wait for the matching AP
Reply from the CMS."
REFERENCE
"PacketCable Security Specification"
::= { pktcMtaDevSecurityEntry 8 }
--
-- Ticket Granting Server information
--
--*********************************************************************
--************************** THIS TABLE IS OBSOLETE *******************
--*********************************************************************
pktcMtaDevTgsTable OBJECT-TYPE
SYNTAX SEQUENCE OF PktcMtaDevTgsEntry
MAX-ACCESS not-accessible
STATUS obsolete -- Secure Provisioning ECR
DESCRIPTION
"Contains per endpoint Ticket Granting Server information."
::= { pktcMtaDevSecurity 8 }
pktcMtaDevTgsEntry OBJECT-TYPE
SYNTAX PktcMtaDevTgsEntry
MAX-ACCESS not-accessible
STATUS obsolete -- Secure Provisioning ECR
DESCRIPTION
"List of Tgs attributes for a single packet cable
endpoint interface."
INDEX { ifIndex, pktcMtaDevTgsIndex }
::= { pktcMtaDevTgsTable 1 }
PktcMtaDevTgsEntry ::= SEQUENCE {
pktcMtaDevTgsIndex Integer32,
pktcMtaDevTgsLocation DisplayString,
pktcMtaDevTgsStatus RowStatus
}
pktcMtaDevTgsIndex OBJECT-TYPE
SYNTAX Integer32 (1..2147483647)
MAX-ACCESS not-accessible
STATUS obsolete -- Secure Provisioning ECR
DESCRIPTION
"Index into the TGS table for TGS locations.
IfType specifies the endpoint, TgsIndex specifies a TGS."
::= { pktcMtaDevTgsEntry 1 }
pktcMtaDevTgsLocation OBJECT-TYPE
SYNTAX DisplayString (SIZE (0..255))
MAX-ACCESS read-create
STATUS obsolete -- Secure Provisioning ECR
DESCRIPTION
"Name of the TGS Ticket Granting Server, which is the
Kerberos Server. This parameter is a FQDN or Ipv4 address.
There may be multiple entries of this type. The order
in which these entries are listed is the priority order
in which the MTA will attempt to contact them for this
endpoint."
::= { pktcMtaDevTgsEntry 2 }
pktcMtaDevTgsStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS obsolete -- Secure Provisioning ECR
DESCRIPTION
"This object contains the Row Status associated with
the pktcMtaDevTgsTable."
::= { pktcMtaDevTgsEntry 3 }
pktcMtaDevTelephonyRootCertificate OBJECT-TYPE
SYNTAX X509Certificate
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"ASN.1 DER encoding of the IP Telephony Root X.509
public-key certificate stored in the MTA non-volatile
memory and updateable with a code download. This
certificate is used to validate the initial AS Reply
from the KDC received during the MTA initialization."
::= { pktcMtaDevSecurity 9 }
--=====================================================================
--
-- Procedures for setting up security associations:
--
-- A security association may be setup either via configuration or via
-- NCS signaling.
--
-- I. Security association setup via configuration.
--
-- The realm must be configured first. Associated with the
-- realm is a KDC. The realm table (pktcMtaDevRealmTable)
-- indicates information about realm (e.g., name,
-- organization name) and parameters associated with KDC
-- communications (e.g., grace periods, AS request/AS
-- reply adaptive backoff parameters).
-- Once the realm is established, one or more servers may be
-- defined in the realm. For PacketCable 1.0, these are
-- Call Management Servers (CMSs). Associated with each CMS
-- entry in the pktcMtaDevCmsTable is an explicit reference
-- to a Realm via the realm index
-- (pktcMtaDevCmsKerbRealmName), the FQDN of the CMS,
-- and parameters associated with IPSec management with the
-- CMS (e.g., clock skew, AP request/
-- AP reply adaptive backoff parameters).
--
--
--
-- II. Security association setup via NCS signaling
--
-- Note: The following process is done automatically by the
-- MTA. The NCS is not involved in creating signaled entries.
-- The current CMS signaling association being used by an
-- endpoint is marked as active in CMS MAP table. If NCS
-- signaling requests a change of signaling association to
-- a different FQDN, the MTA checks the current CMS MAP
-- table entries for the affected endpoint. If the entry
-- exists in the CMS MAP table, the current CMS MAP table
-- entry is marked inactive and the newly chosen CMS MAP
-- table entry is marked active.
--
-- If the entry does not exist in the CMS MAP table, the
-- CMS table is checked to determine whether or not it
-- contains the CMS specified by CMS signaling (possibly
-- a redirection). If the desired CMS entry is defined,
-- then a corresponding entry is created and an entry in
-- the CMS MAP table is created. If the MTA does not
-- have current associations with that CMS, it will now
-- perform key management to establish required security
-- associations. Once the desired CMS entry is established,
-- the current CMS MAP table entry is marked inactive and
-- the newly created CMS MAP table entry is marked active.
-- Otherwise the current CMS MAP table entry remains
-- active and the newly created CMS MAP table entry is marked
-- in active.
--
-- If the entry does not exist in the CMS MAP table and the
-- CMS entry does not exist in the CMS table, a new CMS
-- table entry should be created. This CMS entry should use
-- the same realm as used by this endpoint. The default
-- values for the clock skew and AP request/AP reply adaptive
-- backoff parameters should be used. The MTA will now
-- perform key management to establish required security
-- associations. Once the desired CMS entry is established,
-- the current CMS MAP table entry is marked inactive and
-- the newly created CMS MAP table entry is marked active.
-- Otherwise the current CMS MAP table entry remains
-- active and the newly created CMS MAP table entry is
-- marked inactive.
--
-- III. When the MTA receives wake-up or rekey messages from a CMS,
-- it performs key management based on the corresponding entry
-- in the CMS table. If the matching CMS entry does not exist,
-- it must ignore the wake-up or rekey messages.
--
--=====================================================================
--=====================================================================
--
-- pktcMtaDevRealmTable
--
-- The pktcMtaDevRealmTable shows the KDC realms. The table is
-- indexed withpktcMtaDevRealmName. The Realm Table is used in with
-- conjunction any server which needs a security association with an
-- server MTA. The table (today the CMS) has a security association.
-- Each server-MTA security association is associated with a
-- single Realm. This allows for multiple realms, each
-- with its own security association.
--
--=====================================================================
pktcMtaDevRealmTable OBJECT-TYPE
SYNTAX SEQUENCE OF PktcMtaDevRealmEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"Contains per Kerberos realm security parameters."
::= { pktcMtaDevSecurity 16 }
pktcMtaDevRealmEntry OBJECT-TYPE
SYNTAX PktcMtaDevRealmEntry
MAX-ACCESS not-accessible
STATUS current
DESCRIPTION
"List of security parameters for a single Kerberos realm."
INDEX { IMPLIED pktcMtaDevRealmName }
::= { pktcMtaDevRealmTable 1 }
PktcMtaDevRealmEntry ::= SEQUENCE {
pktcMtaDevRealmName SnmpAdminString,
pktcMtaDevRealmPkinitGracePeriod Integer32,
pktcMtaDevRealmTgsGracePeriod Integer32,
pktcMtaDevRealmOrgName OCTET STRING,
pktcMtaDevRealmUnsolicitedKeyMaxTimeout Integer32,
pktcMtaDevRealmUnsolicitedKeyNomTimeout Integer32,
pktcMtaDevRealmUnsolicitedKeyMeanDev Integer32,
pktcMtaDevRealmUnsolicitedKeyMaxRetries Integer32,
pktcMtaDevRealmStatus RowStatus
lib/DOCSIS/ConfigFile/mibs/PKTC-MTA-MIB view on Meta::CPAN
DEFVAL { 500 }
::= { pktcMtaDevCmsEntry 6 }
pktcMtaDevCmsUnsolicitedKeyMeanDev OBJECT-TYPE
SYNTAX Integer32 (1..600)
UNITS "seconds"
MAX-ACCESS read-only
STATUS obsolete
DESCRIPTION
"This is the measurement of the mean deviation for the
round trip delay timings."
REFERENCE
"PacketCable Security Specification"
::= { pktcMtaDevCmsEntry 7 }
pktcMtaDevCmsUnsolicitedKeyMaxRetries OBJECT-TYPE
SYNTAX Integer32 (0..1024)
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"This is the maximum number of retries before the MTA
gives up attempting to establish a security association."
REFERENCE
"PacketCable Security Specification"
DEFVAL { 5 }
::= { pktcMtaDevCmsEntry 8 }
pktcMtaDevCmsStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS current
DESCRIPTION
"This object contains the Row Status associated with the
pktcMtaDevCmsTable."
::= { pktcMtaDevCmsEntry 9 }
pktcMtaDevCmsIpsecCtrl OBJECT-TYPE
SYNTAX TruthValue
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The value of 'true(1)' indicates that IPSEC and IPSEC
KeyManagement MUST be used to communicate with the CMS.
The value of 'false(2)' indicates that IPSEC Signaling
Security is disabled for both the IPSEC Key Management and
IPSECprotocol (for the specific CMS)."
DEFVAL { true }
::= { pktcMtaDevCmsEntry 10 }
--========================================================================
--
-- pktcMtaCmsMapTable
--*** this table is obsolete ***
--
--
-- The pktcMtaCmsMapTable contains the signaling associations
-- between MTA endpoints and CMSs. It maps the endpoint to
-- zero or more entries in pktcMtaDevCmsTable.
--
-- The table contains the following indexes and rows:
--
-- ifIndex -the index of the physical port
--
-- pktcMtaCmsMapCmsIndex - the index of the CMS entry in the
-- pktcMtaDevCmsTable. Valid indices are equal to current
-- pktcMtaDevCmsIndex values.
--
-- pktcMtaCmsMapOperStatus - this value indicates which signaling
-- association the endpoint is actively using
--
-- pktcMtaCmsMapAdminStatus - this flag indicates whether or not
-- an endpoint should use a particular CMS and its security
-- association. By setting this flag to inhibit, this associated
-- CMS cannot provide signaling to the referenced endpoint.
--
-- pktcMtaCmsMapRowStatus - allows for the creation and deletion of
-- endpoint mappings via the NMS
--
--
--=====================================================================
pktcMtaCmsMapTable OBJECT-TYPE
SYNTAX SEQUENCE OF PktcMtaCmsMapEntry
MAX-ACCESS not-accessible
STATUS obsolete
DESCRIPTION
"Contains per endpoint CMS signaling associations."
::= { pktcMtaDevSecurity 18 }
pktcMtaCmsMapEntry OBJECT-TYPE
SYNTAX PktcMtaCmsMapEntry
MAX-ACCESS not-accessible
STATUS obsolete
DESCRIPTION
"List of signaling associations."
INDEX { ifIndex, pktcMtaCmsMapCmsFqdn }
::= { pktcMtaCmsMapTable 1 }
PktcMtaCmsMapEntry ::= SEQUENCE {
pktcMtaCmsMapCmsFqdn DisplayString,
pktcMtaCmsMapOperStatus INTEGER,
pktcMtaCmsMapAdminStatus INTEGER,
pktcMtaCmsMapRowStatus RowStatus
}
pktcMtaCmsMapCmsFqdn OBJECT-TYPE
SYNTAX DisplayString (SIZE(1..255))
MAX-ACCESS not-accessible
STATUS obsolete
DESCRIPTION
"The index for the associated CMS. Valid indices
are equal to current pktcMtaDevCmsFqdn values."
::= { pktcMtaCmsMapEntry 1 }
pktcMtaCmsMapOperStatus OBJECT-TYPE
SYNTAX INTEGER {
inactive (1),
active (2)
}
MAX-ACCESS read-only
STATUS obsolete
DESCRIPTION
"The operational status of signaling association. The
meaning of the status is as follows:
inactive - signaling is not currently active
active - signaling is active."
::= { pktcMtaCmsMapEntry 2 }
pktcMtaCmsMapAdminStatus OBJECT-TYPE
SYNTAX INTEGER {
inhibit (1),
allow (2)
}
MAX-ACCESS read-create
STATUS obsolete
DESCRIPTION
"The administrative status for signaling over the indicated
security association. The meaning of the status is as
follows:
inhibit -signaling is not currently allowed
allow - signaling is allowed."
::= { pktcMtaCmsMapEntry 3 }
pktcMtaCmsMapRowStatus OBJECT-TYPE
SYNTAX RowStatus
MAX-ACCESS read-create
STATUS obsolete
DESCRIPTION
"This object is used for creating and deleting an entry
in this table via an element manager."
::= { pktcMtaCmsMapEntry 4 }
pktcMtaDevResetKrbTickets OBJECT-TYPE
SYNTAX BITS {
invalidateProvOnReboot (0),
invalidateAllCmsOnReboot (1)
}
MAX-ACCESS read-write
STATUS current
DESCRIPTION
"This object defines a Kerberos Ticket Control Mask that
instructs the MTA to invalidate the specific Application
Server Kerberos Ticket(s) that are stored locally in the
MTA NVRAM (non-volatile or persistent memory).
If the MTA does not store Kerberos tickets in NVRAM, it
MUST ignore setting of this object, and MUST report a BITS
value of zero when the object is read.
If the MTA supports Kerberos tickets storage in NVRAM, the
object value is encoded as follows:
- Setting the invalidateProvOnReboot bit (bit 0) to 1
means that the MTA MUST invalidate the Kerberos
Application Ticket(s) for the Provisioning Application
at the next MTA reboot (if secure SNMP provisioning mode
is used). In non secure provisioning modes, the MTA MUST
return an 'inconsistentValue' in response to SNMP SET
operations with a bit 0 set to 1.
- Setting the invalidateAllCmsOnReboot bit (bit 1) to 1
means that the MTA MUST invalidate the Kerberos
Application Ticket(s) for all CMSes currently assigned
to the MTA endpoints."
REFERENCE
"PacketCable Security Specification"
DEFVAL {{ }}
::= { pktcMtaDevSecurity 19 }
--
-- notification group is for future extension.
--
pktcMtaNotificationPrefix OBJECT IDENTIFIER ::= { pktcMtaMib 2 }
pktcMtaNotification OBJECT IDENTIFIER ::= {
pktcMtaNotificationPrefix 0 }
pktcMtaConformance OBJECT IDENTIFIER ::= { pktcMtaMib 3 }
pktcMtaCompliances OBJECT IDENTIFIER ::= { pktcMtaConformance 1 }
pktcMtaGroups OBJECT IDENTIFIER ::= { pktcMtaConformance 2 }
--
-- Notification Group
--
pktcMtaDevProvisioningEnrollment NOTIFICATION-TYPE
OBJECTS {
sysDescr,
pktcMtaDevSwCurrentVers,
pktcMtaDevTypeIdentifier,
pktcMtaDevMacAddress,
pktcMtaDevCorrelationId
}
STATUS current
DESCRIPTION
"This INFORM notification is issued by the MTA to initiate
the PacketCable provisioning process when the MTA SNMP
enrollment mechanism is used.
It contains the system description, the current software
version, the MTA device type identifier, the MTA MAC
address (obtained in the MTA ifTable in the ifPhysAddress
object that corresponds to the ifIndex 1) and a
correlation ID."
::= { pktcMtaNotification 1 }
pktcMtaDevProvisioningStatus NOTIFICATION-TYPE
OBJECTS {
pktcMtaDevMacAddress,
pktcMtaDevCorrelationId,
pktcMtaDevProvisioningState
}
STATUS current
DESCRIPTION
"This INFORM notification may be issued by the MTA to
confirm the completion of the PacketCable provisioning
process, and to report its provisioning completion
status.
It contains the MTA MAC address (obtained in the MTA
ifTable in the ifPhysAddress object that corresponds
to the ifIndex 1), a correlation ID and the MTA
provisioning state as defined in
pktcMtaDevProvisioningState."
::= { pktcMtaNotification 2 }
-- compliance statements
pktcMtaBasicCompliance MODULE-COMPLIANCE
STATUS current
DESCRIPTION
"The compliance statement for devices that implement
( run in 0.827 second using v1.01-cache-2.11-cpan-39bf76dae61 )