HP StorageWorks 2/16V Brocade Secure Fabric OS Administrator's Guide (53-10002 - Page 100
secPolicyShow, secPolicyActivate, secModeEnable, passwdcfg, setdefault, Recovery Processes, Continued
View all HP StorageWorks 2/16V manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 100 highlights
4 Table 4-5 Recovery Processes (Continued) Symptom Possible Causes Recommended Actions A policy that has been created is not listed by the secPolicyShow command. The new policy was not saved or activated. Save or activate the policy changes by entering the secPolicySave or secPolicyActivate command. Incorrect policy name used. Verify that the correct policy name was used. Policy names must be entered in all uppercase characters. The message "The page cannot be displayed" is displayed when HTTP access is attempted, and response time is slow. An HTTP policy has been created but has no members. Add the desired members to the HTTP policy. Unable to establish a sectelnet/SSH session to the IP address of the active CP of a SilkWorm 24000 or 48000, or a session to the standby CP is disconnected when it becomes the active CP. sectelnet/SSH sessions cannot be established to the IP address of the active CP in secure mode. This enables enforcement of Telnet policy for each logical switch. Establish a sectelnet/SSH session to the IP addresses of the logical switches or the standby CP instead (if allowed by Telnet policy). A security transaction appears to have been lost. One of the switches in the Wait for the switch to complete booting; then, reenter the security fabric rebooted while the command on the new primary FCS switch to complete the transaction was in progress. transaction. Fabric segments after secure mode is enabled on a SilkWorm 24000 or 48000 director. CPs failed over during process of enabling secure mode. Type secModeEnable again on the segmented switch, using the same FCS list as used before. Secure mode cannot be enable on edge fabric because the RC process fails, security data is not downloaded, and/or domain 1 returns false. secModeEnable quickmode option was used on a Fabric that is connected to a fibre channel router. Quickmode attempts add fibre channel router's front domain to the FCS policy. Do not use quickmode to enable a secure mode on a Fabric that has a fibre channel router connected to it. Secure mode cannot be enabled because of the password management policy setting is not the default value. A switch has non-default values for one or more of the password management policy settings. Only the password management policy default values are supported by secure mode. On each switch restore the password policy settings to the default values by running passwdcfg -setdefault. 4-20 Secure Fabric OS Administrator's Guide Publication Number: 53-1000244-01