]> Network Zen

1463 East Republican Street, #358 Seattle Washington 98112 USA gwz@net-zen.net

Cisco Systems

Global Development Centre, Prestige Waterford No. 9 Brunton Road BGL3/MZ/ Bangalore Karnataka 560025 India +91 80 4103 6427 subashtc@cisco.com

AAA Diameter SNMP MIB Credit Control Along with providing support for certain basic authentication, authorization and accounting functions, the Diameter base protocol is intended to provide a framework for AAA applications. This document defines the Management Information Base (MIB) module which describes the minimum set of objects needed to manage an implementation of the Diameter Credit Control application.

For a detailed overview of the documents that describe the current Internet-Standard Management Framework, please refer to section 7 of RFC 3410 . Managed objects are accessed via a virtual information store, termed the Management Information Base or MIB. MIB objects are generally accessed through the Simple Network Management Protocol (SNMP). Objects in the MIB are defined using the mechanisms defined in the Structure of Management Information (SMI). This memo specifies a MIB module that is compliant to the SMIv2, which is described in STD 58 (, , ). In particular, it describes managed objects used for managing the Diameter Credit Control Application . Discussion of this draft may be directed to the dime Working Group of the IETF (dime@ietf.org)..

The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.

The base Diameter protocol is never used alone; it is always extended for a particular application. This MIB defines objects supporting the management of the Diameter Credit Control Application protocol as described in . The MIB specification for the Diameter base protocol SHOULD be implemented prior to the implementation of this MIB.

The MIB module in this document uses the following IANA-assigned OBJECT IDENTIFIER values recorded in the SMI Numbers registry:

Descriptor OBJECT IDENTIFIER value -------------- ----------------------- diameterCCAMIB { mib-2 XXX }

The IANA is requested to assign a value for "XXX" under the 'mib-2' subtree and to record the assignment in the SMI Numbers registry. When the assignment has been made, the RFC Editor is asked to replace "XXX" (here and in the MIB module) with the assigned value and to remove this note.

SNMPv1 by itself is not a secure environment. Even if the network itself is secure (for example by using IPSec), there is no control as to who on the secure network is allowed to access and GET (read) the objects in this MIB. It is recommended that the implementers consider the security features as provided by the SNMPv3 framework. Specifically, the use of the User-based Security Model and the View-based Access Control Model is recommended. It is then a customer/user responsibility to ensure that the SNMP entity giving access to an instance of this MIB, is properly configured to give access to the objects only to those principals (users) that have legitimate rights to indeed GET or SET (change/create/delete) them.

Thanks to Sumanth Mithra and Biswaranjan Panda for helpful suggestions and feedback.

&rfc2578; &rfc2579; &rfc2580; &rfc3588; &rfc2119; &rfc4001; &rfc3411; &rfc4006; &rfc3414; &rfc3410; &rfc3415; &I-D.ietf-dime-diameter-base-protocol-mib;