HP StorageWorks 2/16V HP StorageWorks Fabric OS 4.4.0F Release Notes (AA-RW89A - Page 22

Security: PKICERT utility, Fabric OS: CLI

Get HP StorageWorks 2/16V - SAN Switch PDF manuals and user guides View all HP StorageWorks 2/16V manuals
Add to My Manuals
Save this manual to your list of manuals

Page 22 highlights

Table 6 Fabric OS area information (continued) Fabric OS Area Description Security: PKICERT utility, installing certificates PKICERT 1.0.6 is the most current version of the PKICERT utility. When running the PKICERT utility to install switch certificates in a fabric that did not previously contain switch certificates and now includes a SAN Director 2/128, select the option to specify that certificates are installed only on those switches that do not currently contain certificates. SAN Director 2/128s are delivered with switch certificates preinstalled. Switches that were originally shipped with Fabric OS 2.5, 3.0, and 4.0 and have never installed and enabled Secure Fabric OS do not have certificates installed. If you need to reinstall switch certificates in a SAN Director 2/128, follow these guidelines: • The host running PKICERT 1.0.6 must be connected to a proxy switch running Fabric OS 2.6.2, 3.1.2, 4.2.0, or later. • All switches in the fabric other than the SAN Director 2/128 can run versions 2.6.1, 3.1, 4.1, or newer firmware. Security: selectelnet If you try to log in to a switch through a sectelnet client while that switch is in the process of either booting or shutting down, you might see the message, Random number generation failed. The message is printed by the sectelnet client because the switch telnet service is not running (the service has either already been shut down, if the switch is shutting down, or is not yet established, if the switch is booting). If the switch is booting, wait a few seconds and try again. Security: secure mode If an upgrade from Fabric OS 4.0.x to 4.1.x or 4.2 x is performed, followed by a downgrade to Fabric OS 4.0.x and upgrade back to Fabric OS 4.1.x or 4.2.x, the switch password state is reset and prompts the user for new secure mode passwords. This does not apply to upgrades from version 4.2.0 to 4.4.0. Security: secure mode, passwd telnet CAUTION: Using the passwd telnet command in secure mode to change the password, results in all sessions using that password being logged out, including the session that changed the password. This is expected behavior. The session terminates if you change the password in secure mode. Fabric OS: CLI Changing port configurations during a failover can cause ports to be commands, failover, and disabled. Reissue the command after the failover is complete to bring the port disable ports online. 22 Advanced Web Tools updates

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
Advanced Web Tools updates
22
Security: PKICERT utility,
installing certificates
PKICERT 1.0.6 is the most current version of the PKICERT utility.
When running the PKICERT utility to install switch certificates in a fabric that
did not previously contain switch certificates and now includes a SAN
Director 2/128, select the option to specify that certificates are installed only
on those switches that do not currently contain certificates. SAN Director
2/128s are delivered with switch certificates preinstalled. Switches that were
originally shipped with Fabric OS 2.5, 3.0, and 4.0 and have never installed
and enabled Secure Fabric OS do not have certificates installed.
If you need to reinstall switch certificates in a SAN Director 2/128, follow
these guidelines:
The host running PKICERT 1.0.6 must be connected to a proxy switch
running Fabric OS 2.6.2, 3.1.2, 4.2.0, or later.
All switches in the fabric other than the SAN Director 2/128 can run
versions 2.6.1, 3.1, 4.1, or newer firmware.
Security: selectelnet
If you try to log in to a switch through a sectelnet client while that switch is in
the process of either booting or shutting down, you might see the message,
Random number generation failed
. The message is printed by the
sectelnet
client because the switch telnet service is not running (the
service has either already been shut down, if the switch is shutting down, or
is not yet established, if the switch is booting). If the switch is booting, wait a
few seconds and try again.
Security: secure mode
If an upgrade from Fabric OS 4.0.x to 4.1.x or 4.2 x is performed, followed
by a downgrade to Fabric OS 4.0.x and upgrade back to Fabric OS 4.1.x
or 4.2.x, the switch password state is reset and prompts the user for new
secure mode passwords. This does not apply to upgrades from version 4.2.0
to 4.4.0.
Security: secure mode,
passwd telnet
CAUTION:
Using the passwd
telnet
command in secure mode to
change the password, results in all sessions using that password being
logged out, including the session that changed the password.
This is expected behavior. The session terminates if you change the password
in secure mode.
Fabric OS: CLI
commands, failover, and
port disable
Changing port configurations during a failover can cause ports to be
disabled. Reissue the command after the failover is complete to bring the
ports online.
Table 6
Fabric OS area information (continued)
Fabric OS Area
Description