More and more vendor tools are supporting SHA-256 and SHA-512 in SNMPv3 authentication. Please add this option to NPM. SHA-256 was "launched in 2000 as a new version of SHA functions and was adopted as FIPS standard in 2002" (https://www.geeksforgeeks.org/difference-between-sha1-and-sha256/)
Please note the Checkpoint Article (https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk90860)
„In version R81 and higher adding a new user with MD5 or SHA1 is not supported (only SHA256 and SHA512).”
Also:
HPE iLO : https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=emr_na-a00026111en_us
Broadcom : https://techdocs.broadcom.com/us/en/ca-enterprise-software/it-operations-management/spectrum/10-4-2/managing-network/modeling-and-managing-your-it-infrastructure/snmpv3-support.html
It's time to implement this.
Moved to the Network Performance Monitor Feature Requests
I hope that something comes of this SOON. This important enough that it should be release as a HOTFIX!!!!
It on the roadmap: https://thwack.solarwinds.com/product-forums/the-orion-platform/b/news/posts/wwwo
Are there any news regarding this topic? More and more vendors are phasing out SHA1 for SNMPv3 Authentication.
SHA 256/512 Support for SNMPv3 polling is one of the highest priority items we have on the immediate roadmap as we see more vendors move towards this standard.
I hope this is a part of "Secure by Design" coz supporting older algorithms and not the newer ones does not resonate well with the customer community. Most security vendors like Checkpoint, Palo Alto, .. even networking vendors like Cisco, Juniper .. are discontinuing or have already discontinued support for SHA1.
At least a timeline needs to be stated .. we are already in H2 of 2022, but no sign of this support.
Following as we're needing to move forward from SHA1
