PGP Universal Server allows you to use SNMP to monitor the condition of your server as well as the status of encrypted and decrypted messages. PGP Universal provides custom MIBs that are available for download via the administrative interface.
· PGP Universal Server 3.x or higher
· PC running MG-SOFT MIB Browser
To Enable SNMP on PGP Universal
1. Log in to the PGP Universal Server admin interface.
2. Click Services > SNMP and then select Enable SNMP.
3. Click Edit to select an interface for SNMP to use for communication.
4. Enter a Community name (public is a default for Read-Only).
Note: The Community name is similar to a username or password that allows access to the device’s statistics.
Symantec recommends that you change the default Community string to something not easily guessed.
5. Select SNMP Traps Recipient. Type the IP address or hostname of a PC that is running SNMP monitoring software.
Custom PGP MIB Files
These files are custom MIBs that enable your SNMP software to query the PGP Universal Server and receive the following information:
· Processed that day
· Encrypted and/or signed that day
· Decrypted that day
· Processed total
· Encrypted and/or signed total
· Decrypted total
· Currently in the mail queue
You can also use the standard SNMP MIB to poll the following system information:
· The number of instances of certain running processes
· System memory usage
· Disk usage
· System load information
Download the custom MIB files:
1. Log in to PGP Universal Server admin interface.
2. Click Services > SNMP.
3. Click the Download PGP MIBs button and save the zipped file.
Setup the SNMP software
1. Install SNMP software on your computer and then open the MIB Browser.
2. Type the IP address of the PGP Universal Server e.g.10.1.1.211.
3. Expand the MIB tree iso/org/dod/internet/mgmt/mib-2/system/
4. Right-click sysName and click Contact. A successful connection to your server should result in the sysUpTime, displaying a value similar to 0 days 00h:05m:50s.
· If it reads TIMEOUT – the software cannot contact the PGP Universal Server.
· Verify your network connectivity.
· Verify that SNMP is enabled on PGP Universal Server.
5. Right-click sysName again, select Get. The result output should return the name of your PGP Universal Server.
6. Close the MIB Browser.
7. Add the custom PGP MIBs to work with your SNMP software. The MIBs will need to be compiled and then loaded into the software.
8. Unzip the custom PGP MIB files.
9. Open the MG-SOFT MIB Compiler then click File > Open > PGP-SMI.mib.
10. Click Tools > Compile and select PGP-SMI.mib.
11. When prompted select PGP-SMI.mib and click Save.
The files are saved to the C:\Program Files\MS-SOFT\MIB Browser\MIB\SMIDB directory.
12. Repeat steps 9 – 11 for the PGP-UNIVERSAL-MIB.mib.
13. Open the MIB Browser.
14. Click the MIB tab.
For the evaluation version there can be only 3 loaded MIB modules.
· Keep only RFC1213-MIB
· Load PGP-SMI
· Load PGP-UNIVERSAL-MIB
15. Click the Query tab and expand the tree to the PGP Universal Server folder.
16. Right-click one of the available messaging objects, e.g. messagesProcessedTotal, and select Contact. The sysUpTime should be returned.
17. Right-click sysUpTime again and select Get. The total number of messages processed should be returned.
18. Test that SNMP Traps are working correctly.
A. Run the Trap Ringer Console in the MIB Browser (Tools > Trap Ringer Console).
B. Stop one of the following processes on PGP Universal Server:
You should receive a notification in the SNMP Trap Ringer Console.
C. Raise the CPU system load to a value that exceeds one of these values to get a notification:
· 4% over a 1 minute average
· 1% over a 5 minute average
· 1% over a 15 minute average
D. Decrease the amount of free space on your hard drive to get a notification:
· 20% or less on /
· 20% of less on /boot