SNMPv3 'Bad parse of ASN.1 type' Error with Schneider Machine Expert PLC
Hello everyone,
I'm facing a challenging issue while trying to monitor a Schneider Electric Machine Expert PLC using SNMPv3, and I'm hoping to get some help from the community.
The Problem
I can successfully poll the PLC using SNMPv1 and SNMPv2 from my Zabbix server. However, when I try to use SNMPv3 (with authNoPriv or authPriv security levels), Zabbix fails with the following error:
cannot read from session: Bad parse of ASN.1 type
This error suggests that Zabbix's backend is receiving a malformed response packet from the PLC's SNMP agent.
What Works vs. What Fails
Here is a summary of my tests so far:
This leads me to believe that the PLC's SNMPv3 implementation might have a slight deviation from the standard that a flexible tool like MIB Browser tolerates, but that Zabbix's stricter SNMP library rejects.
[B]My Request: A Sample SNMPv3 Response Capture
I'm facing a challenging issue while trying to monitor a Schneider Electric Machine Expert PLC using SNMPv3, and I'm hoping to get some help from the community.
The Problem
I can successfully poll the PLC using SNMPv1 and SNMPv2 from my Zabbix server. However, when I try to use SNMPv3 (with authNoPriv or authPriv security levels), Zabbix fails with the following error:
cannot read from session: Bad parse of ASN.1 type
This error suggests that Zabbix's backend is receiving a malformed response packet from the PLC's SNMP agent.
What Works vs. What Fails
Here is a summary of my tests so far:
- WORKS ✅
- PLC polled via a generic MIB Browser tool using SNMPv1, v2, and even v3 noAuthNoPriv.
- PLC polled via Zabbix using SNMPv1 and v2.
- FAILS ❌
- PLC polled via Zabbix using SNMPv3 (authNoPriv or authPriv).
- Using snmpwalk from the Zabbix server's command line with v3 auth parameters results in the same "Bad parse" error.
This leads me to believe that the PLC's SNMPv3 implementation might have a slight deviation from the standard that a flexible tool like MIB Browser tolerates, but that Zabbix's stricter SNMP library rejects.
[B]My Request: A Sample SNMPv3 Response Capture
you did not test same situations (MIB browser was tested with NoAuthNoPriv, but zabbix with AuthPriv or AuthNoPriv). And lets leave v1 and v2 alone, those work anyway... 
Comment