Thanks Widjaja for your reply,
Alert Map entries
# nSvcEvent nHostname
1.3.6.1.4.1.20006.1.6.7 0xfff0009a 1.3.6.1.4.1.20006.1.3.1.2(1,2)\
# nHostStateID
1.3.6.1.4.1.20006.1.1.1.4(3,0)\
# nSvcDesc
1.3.6.1.4.1.20006.1.3.1.6(7,8)\
# nSvcStateID
1.3.6.1.4.1.20006.1.3.1.7(9,0)\
# nSvcAttempt
1.3.6.1.4.1.20006.1.3.1.8(100,0)\
# nSvcDurationSec
1.3.6.1.4.1.20006.1.3.1.9(101,0)\
# nSvcGroupName
1.3.6.1.4.1.20006.1.3.1.10(102,0)\
# nSvcLastCheck
1.3.6.1.4.1.20006.1.3.1.11(10,0)\
# nSvcLastChange
1.3.6.1.4.1.20006.1.3.1.12(11,0)\
# nSvcOutput
1.3.6.1.4.1.20006.1.3.1.17(12,0)
Event disp file
{d "%w- %d %m-, %Y - %T"} - A "nSvcEvent" event has occurred, from {t} device, named {m}.\u000d\u000a\u000d\u000aThe SNMP trap that is generated as a result of an event with the service\u000a in Nagios.\u000d\u000a\u000anHostname = {S 1}\u000anSvcDesc = {S 7}\u000anSvcStateID = {T nSvcStateID 9}\u000anSvcOutput = {S 12}\u000anHostname.nHostEventIndex = {o 2}\u000anHostStateID = {T nHostStateID 3}\u000anSvcDesc.nSvcEventIndex = {o 5}\u000anSvcAttempt = {I 7}\u000anSvcDurationSec = {I 8}\u000anSvcGroupName = {S 9}\u000anSvcLastCheck = {I 10}\u000anSvcLastChange = {I 11}\u000d\u000a\u000d\u000a(event [{e}])\u000d\u000a
This is the trap variable which is giving severity details such as critical, warning or OK
nSvcStateID
1.3.6.1.4.1.20006.1.3.1.7(9,0)\
Regards
Ajit C