HP StorageWorks 2/16V Brocade Fabric Manager Administrator's Guide (53-1000019 - Page 196
Managing Administrative Domains, Requirements for Admin Domains
View all HP StorageWorks 2/16V manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 196 highlights
12 Managing Administrative Domains The default truststore password is "password". Fabric Manager provides a set of command line utilities to manage the truststore. You can use these utilities to import, export, delete, and print trusted certificates. You can also change the default trusted password. importcert exportcert listcert printcert deletecert storepasswd Imports a certificate from a file and add it to the list of trusted certificates (truststore). Exports a certificate from the truststore to another file. Prints the contents of a truststore entry or the entire truststore file. Prints the contents of a certificate stored in a file other than the truststore. Deletes a truststore entry. Changes the default truststore password. The new password must be at least six characters long. Caution Use care when typing the password, as it is echoed (displayed exactly as typed). This is a limitation of the Java keytool. Fabric Manager supports certificate validation and extended hostname verification (if they are enabled). By default, both certificate validation and hostname verification are enabled. If certificate validation is enabled, switch connection is not established unless the certificate is issued by a trusted CA. If the switch certificate is not issued by a well-known CA (or one of the trusted CAs in the trusted certificate repository), the root certificate must be added to the trusted certificate repository. Managing Administrative Domains Using Administrative Domains (Admin Domains), you can partition the fabric into logical groups and allocate administration of these groups to different user accounts so that these accounts manage only the Admin Domains assigned to them and do not make changes to the rest of the fabric. You can create domains that are grouped together based on the type of members in the domain. For example, you can create Admin Domains based on the type of switches in your fabric using the WWN or domain ID (not to be confused with the Admin Domain number) or put all the devices in a particular department in the same Admin Domain for ease of administering those devices. You can have up to 256 Admin Domains in a fabric (254 user-defined and 2 system-defined), numbered from 0 through 255. Admin Domains are designated by a name and a number. This document refers to specific Admin Domains using the format "ADn" where n is a number between 0 and 255. See the Web Tools Administrator's Guide for additional information. Requirements for Admin Domains Admin Domains are supported on fabrics with switches running Fabric OS 5.2.0 and higher. You must have a valid Advanced Zoning license to use Admin Domains. 12-4 Fabric Manager Administrator's Guide Publication Number: 53-1000196-01-HP