Home » HP Manuals » Storage Devices » HP StorageWorks 2/16V » Manual Viewer

HP StorageWorks 2/16V Brocade Fabric OS Command Reference Manual - Supporting - Page 586

secAuthSecret, specified, it is converted to a WWN and then the entry is removed. If no option

View all HP StorageWorks 2/16V manuals

Add to My Manuals
Save this manual to your list of manuals

Page 586 highlights

2 secAuthSecret secAuthSecret Manages the DH-CHAP shared secret key information. Synopsis secauthsecret [--show] [--set] [--remove value | --all] Description Use this command to manage the DH-CHAP shared secret key database used for authentication. This command displays, sets, and removes shared secret key information from the database or deletes the entire database. If you are performing set or remove operations, when the command is completed new data is saved persistently. New data is effective with the next authentication request. The configuration applies to a switch instance only. A Brocade Security license is required to run this command in non-secure as well as secure mode. Operands This command has the following operands: --show Lists the WWNs for which shared secret is configured. --set Sets shared secrets with a WWN. NOTE: when setting secrets for an entry of an EX_Port type, the wwn of the entry must be specified. --remove [wwn | domain | swname] Removes the specified WWN entry from the database. If a domain name is specified, it is converted to a WWN and then the entry is removed. If no option is specified, command is interactive. --remove --all Deletes the entire secret key database. When setting secrets for an entry of an EX_Port type, the WWN of the entry must be specified. When removing an entry of an EX_Port type, the WWN of the entry must be specified. Examples To list the shared secret WWN: switch:admin> secauthsecret --show WWN DId Name 10:00:00:60:69:80:5b:e8 1 switch To set the shared secret: switch:admin>secAuthSecret --set This command sets up secret keys for the DH-CHAP authentication. The minimum length of a secret key is 8 characters and maximum 40 characters. Setting up secret keys does not initiate DH-CHAP authentication. If switch is configured to do DH-CHAP, it is performed whenever a port or a switch is enabled. Warning: Please use a secure channel for setting secrets. Using an insecure channel is not safe and may compromise secrets. Following inputs should be specified for each entry. 1. WWN for which secret is being set up. 2. Peer secret: The secret of the peer that authenticates to peer. (continued on next page) 554 Fabric OS Command Reference Manual 53-1000436-01

Section	Page
Contents	5
About This Document	19
How This Document Is Organized	19
Supported Hardware and Software	20
What’s New in This Document	21
Document Conventions	25
Text Formatting	25
Notes, Cautions, and Warnings	25
Key Terms	25
Additional Information	26
Brocade Resources	26
Optional Brocade Features	28
Other Industry Resources	29
Getting Technical Help	30
Document Feedback	31
Using Fabric OS Commands	33
Understanding Role-Based Access Control	33
Using the Command Line Interface	34
Fabric OS Commands	35
aaaConfig	35
ad	38
ag	48
agshow	53
agtCfgDefault	55
agtCfgSet	58
agtCfgShow	61
aliAdd	64
aliCreate	65
aliDelete	66
aliRemove	67
aliShow	68
aptPolicy	69
auditCfg	71
authUtil	72
backplaneTest	74
backport	76
bannerSet	78
bannerShow	79
bcastShow	80
bladeBeacon	81
bladeDisable	82
bladeEnable	83
burninErrClear	85
burninErrShow	86
burninLevel	87
burninStatus	88
camTest	89
centralMemoryTest	91
cfgActvShow	95
cfgAdd	96
cfgClear	97
cfgCreate	98
cfgDelete	99
cfgDisable	100
cfgEnable	101
cfgRemove	102
cfgSave	103
cfgShow	104
cfgSize	106
cfgTransAbort	107
cfgTransShow	108
chassisConfig	109
chassisName	112
chassisShow	113
chipRegShow	115
cmemRetentionTest	116
cmiTest	118
configDefault	120
configDownload	122
configShow	126
configUpload	129
configure	132
crossPortTest	139
dataTypeShow	142
date	143
dbgShow	145
defZone	146
defZoneCreate	148
defZoneDelete	149
diagClearError	150
diagCommandShow	151
diagDisablePost	152
diagEnablePost	153
diagEnv	154
diagFailLimit	156
diagHelp	157
diagLoopId	158
diagModeShow	159
diagPost	160
diagRetry	161
diagSetBurnin	162
diagSetCycle	163
diagShow	164
diagShowTime	165
diagSkipTests	166
diagStatus	167
diagStopBurnin	168
distribute	169
dlsReset	171
dlsSet	172
dlsShow	173
dnsConfig	174
enclosureShow	175
errClear	177
errDelimiterSet	178
errDump	179
errFilterSet	180
errModuleShow	181
errShow	182
exit	183
fabPortShow	184
fabRetryShow	187
fabricLog	188
fabricPrincipal	190
fabricShow	191
fabStateClear	193
fabStateResize	194
fabStateShow	195
fabStatsShow	196
fabSwitchShow	198
fanDisable	200
fanEnable	201
fanShow	202
fastboot	203
fastwritecfg	204
fazoneAdd	206
fazoneCreate	207
fazoneDelete	209
fazoneRemove	210
fazoneShow	211
fcipChipTest	212
fcipPathTest	214
fcLunQuery	216
fcPing	217
fcpLogClear	219
fcpLogDisable	220
fcpLogEnable	221
fcpLogShow	222
fcpProbeShow	223
fcpRlsShow	224
fcrbcastconfig	225
fcrChipTest	226
fcrConfigure	228
fcrDisable	229
fcrEnable	230
fcrFabricShow	231
fcrLsanCount	232
fcrLsanMatrix	233
fcrPathTest	236
fcrPhyDevShow	238
fcrProxyConfig	240
fcrProxyDevShow	242
fcrResourceShow	244
fcrRouterPortCost	246
fcrRouteShow	248
fcrXlateConfig	249
fddCfg	251
fdmiCacheShow	253
fdmiShow	254
ficonClear	255
ficoncupset	256
ficoncupshow	257
ficonHelp	258
ficonShow	259
filterTest	265
firmwareCommit	267
firmwareDownload	268
firmwareDownloadStatus	272
firmwareRestore	275
firmwareShow	276
fportTest	277
fosConfig	280
fruReplace	282
fspfShow	283
fwAlarmsFilterSet	285
fwAlarmsFilterShow	286
fwClassInit	287
fwConfigReload	288
fwConfigure	289
fwFruCfg	293
fwHelp	294
fwMailCfg	295
fwPortDetailShow	297
fwSamShow	300
fwSet	301
fwSetToCustom	302
fwSetToDefault	303
fwShow	304
h	307
haDisable	308
haDump	309
haEnable	311
haFailover	312
haShow	313
haSyncStart	314
haSyncStop	315
help	316
historyLastShow	317
historyMode	318
historyShow	319
httpCfgShow	321
i	322
ifModeSet	324
ifModeShow	326
interfaceShow	327
interopMode	331
iodReset	334
iodSet	335
iodShow	336
ipAddrSet	337
ipAddrShow	339
ipfilter	340
iscsiCfg	343
iscsiChipTest	351
iscsiHelp	352
iscsiPathTest	354
iscsiPortCfg	355
iscsiSessionCfg	358
iscsiswcfg	360
iscsiTargetName	362
islShow	363
isnscCfg	364
itemList	366
killTelnet	368
licenseAdd	369
licenseHelp	370
licenseIdShow	371
licensePort	372
licenseRemove	374
licenseShow	375
linkCost	376
login	378
logout	379
loopPortTest	380
lsanZoneShow	382
lsDbShow	384
memShow	387
miniCycle	388
minisPropShow	393
msCapabilityShow	394
msConfigure	395
msPlatShow	397
msPlatShowDBCB	398
msPlClearDB	399
msPlMgmtActivate	400
msPlMgmtDeactivate	401
msTdDisable	402
msTdEnable	403
msTdReadConfig	404
myId	405
nbrStateShow	406
nbrStatsClear	407
nodeFind	409
nsAliasShow	411
nsAllShow	414
nscamShow	415
nsShow	417
nsZoneMember	420
passwd	423
passwdCfg	426
pathInfo	431
pdShow	436
perfAddEEMonitor	437
perfAddIPMonitor	439
perfAddReadMonitor	440
perfAddRWMonitor	441
perfAddSCSIMonitor	442
perfAddUserMonitor	443
perfAddWriteMonitor	445
perfCfgClear	446
perfCfgRestore	447
perfCfgSave	448
perfClearAlpaCrc	449
perfClearEEMonitor	450
perfClearFilterMonitor	451
perfDelEEMonitor	452
perfDelFilterMonitor	453
perfHelp	454
perfMonitorClear	455
perfMonitorShow	457
perfSetPortEEMask	461
perfShowAlpaCrc	463
perfShowEEMonitor	464
perfShowFilterMonitor	466
perfShowPortEEMask	468
pkiCreate	470
pkiRemove	471
pkiShow	472
policy	473
portAlpaShow	476
portBufferShow	477
portCamShow	479
portCfg	481
portCfgDefault	487
portCfgEPort	488
portCfgEXPort	489
portCfgGPort	492
portCfgISLMode	493
portCfgLongDistance	495
portCfgLPort	498
portCfgNPort	500
portCfgNPIVPort	501
portCfgPersistentDisable	503
portCfgPersistentEnable	504
portCfgShow	505
portCfgSpeed	508
portCfgTrunkPort	509
portCfgVEXPort	510
portCmd	512
portDebug	516
portDisable	517
portEnable	518
portErrShow	519
portFlagsShow	521
portLedTest	522
portLogClear	523
portLogConfigShow	524
portLogDisable	525
portLogDump	526
portLogDumpPort	527
portLogEnable	528
portLogEventShow	529
portLoginShow	531
portLogPdisc	532
portLogReset	533
portLogResize	534
portLogShow	535
portLogShowPort	540
portLogTypeDisable	541
portLogTypeEnable	542
portLoopbackTest	543
portMirror	546
portName	549
portPerfShow	550
portRegTest	551
portRouteShow	553
portShow	555
portStats64Show	562
portStatsClear	565
portStatsShow	566
portSwap	570
portSwapDisable	571
portSwapEnable	572
portSwapShow	573
portTest	574
portTestShow	576
portZoneShow	577
powerOffListSet	578
powerOffListShow	580
psShow	581
quietMode	582
reboot	583
routeHelp	584
secActiveSize	585
secAuthSecret	586
secCertUtil	588
secDefineSize	591
secFabricShow	592
secFCSFailover	594
secGlobalShow	595
secHelp	597
secModeDisable	598
secModeEnable	599
secModeShow	604
secNonFCSPasswd	605
secPolicyAbort	606
secPolicyActivate	607
secPolicyAdd	608
secPolicyCreate	611
secPolicyDelete	614
secPolicyDump	616
secPolicyFCSMove	618
secPolicyRemove	619
secPolicySave	622
secPolicyShow	623
secStatsReset	625
secStatsShow	627
secTempPasswdReset	629
secTempPasswdSet	630
secTransAbort	631
secVersionReset	632
sensorShow	633
setDbg	634
setEsdMode	635
setGbicMode	636
setMediaMode	637
setModem	638
setSfpMode	640
setSplbMode	641
setVerbose	642
sfpShow	643
shellFlowControlDisable	647
shellFlowControlEnable	648
slotOff	649
slotOn	650
slotPowerOff	651
slotPowerOn	652
slotShow	653
slTest	655
snmpConfig	657
Trap Recipient Severity Level	657
snmpMibCapSet	663
snmpMibCapShow	665
spinFab	667
spinJitter	670
spinSilk	673
sramRetentionTest	677
statsClear	679
statsTest	680
stopPortTest	682
supportFfdc	683
supportFtp	684
supportSave	686
supportShow	690
supportShowCfgDisable	695
supportShowCfgEnable	696
supportShowCfgShow	697
switchBeacon	698
switchCfgPersistentDisable	699
switchCfgPersistentEnable	700
switchCfgSpeed	701
switchCfgTrunk	702
switchDisable	703
switchEnable	704
switchName	705
switchReboot	706
switchShow	707
switchShutdown	712
switchStart	713
switchStatusPolicySet	714
switchStatusPolicyShow	716
switchStatusShow	718
switchUptime	720
syslogdFacility	721
syslogdIpAdd	722
syslogdIpRemove	723
syslogdIpShow	724
sysShutdown	725
systemVerification	727
tempShow	729
timeout	730
topologyShow	731
traceDump	733
trackChangesHelp	734
trackChangesSet	735
trackChangesShow	736
trunkDebug	737
trunkShow	738
tsClockServer	740
tsTimeZone	742
turboRamTest	745
txdPath	746
upTime	749
uRouteConfig	750
uRouteRemove	751
uRouteShow	752
userConfig	754
userRename	758
version	759
wwn	760
zone	761
zoneAdd	764
zoneCreate	765
zoneDelete	767
zoneHelp	768
zoneObjectCopy	769
zoneObjectExpunge	770
zoneObjectRename	771
zoneRemove	772
zoneShow	773
Licensed Product Commands	775
Advanced Zoning Commands	775
Fabric Assist Mode Commands	776
Extended Fabrics Command	777
Fabric Watch Commands	777
ISL Trunking Commands	778
Advanced Performance Monitoring Commands	778
Secure Fabric OS Commands	779
Exclusive Primary FCS Commands	781
Commands Exclusive to the Primary FCS	781
Control Processor Commands	785
Commands Supported on the Standby CP	785
supportShow Reference	787
supportShow Control Commands	787
supportShow Command Groups	788

Match case Limit results 1 per page

554

Fabric OS Command Reference Manual

53-1000436-01

secAuthSecret

Manages the DH-CHAP shared secret key information.

Synopsis

secauthsecret

[

--show

] [

--set

] [

--remove

value

--all

]

Description

Use this command to manage the DH-CHAP shared secret key database used for

authentication.

This command displays, sets, and removes shared secret key information from the database or

deletes the entire database. If you are performing set or remove operations, when the command is

completed new data is saved persistently. New data is effective with the next authentication

request. The configuration applies to a switch instance only.

A Brocade Security license is required to run this command in non-secure as well as secure mode.

Operands

This command has the following operands:

--show

Lists the WWNs for which shared secret is configured.

--set

Sets shared secrets with a WWN. NOTE: when setting secrets for an entry of

an EX_Port type, the wwn of the entry must be specified.

--remove

[

wwn

domain

swname

]

Removes the specified WWN entry from the database. If a domain name is

specified, it is converted to a WWN and then the entry is removed. If no option

is specified, command is interactive.

--remove --all

Deletes the entire secret key database.

When setting secrets for an entry of an EX_Port type, the WWN of the entry must be specified.

When removing an entry of an EX_Port type, the WWN of the entry must be specified.

Examples

To list the shared secret WWN:

switch:admin>

secauthsecret --show

WWN

DId

Name

-----------------------------------------------

10:00:00:60:69:80:5b:e8

switch

To set the shared secret:

switch:admin>

secAuthSecret --set

This command sets up secret keys for the DH-CHAP authentication.

The minimum length of a secret key is 8 characters and maximum 40

characters. Setting up secret keys does not initiate DH-CHAP

authentication. If switch is configured to do DH-CHAP, it is performed

whenever a port or a switch is enabled.

Warning: Please use a secure channel for setting secrets. Using

an insecure channel is not safe and may compromise secrets.

Following inputs should be specified for each entry.

1. WWN for which secret is being set up.

2. Peer secret: The secret of the peer that authenticates to peer.

(continued on next page)