HP StorageWorks 2/16V Brocade Secure Fabric OS Administrator's Guide (53-10002 - Page 17

Introducing Secure Fabric OS Chapter 1 Brocade Secure Fabric OS is an optionally licensed product that provides customizable security restrictions through local and remote management channels on a SilkWorm fabric. Secure Fabric OS provides the ability to: • Create policies to customize fabric management access • Specify which switches and devices can join the fabric • View statistics related to attempted policy violations • Manage the fabric-wide Secure Fabric OS parameters through a single switch • Create temporary passwords specific to a login account and switch • Enable and disable Secure Fabric OS as desired Secure Fabric OS uses digital certificates based on PKI or Diffie-Hellman with Challenge-Handshake Authentication Protocol (DH-CHAP) shared secrets to provide switch-to-switch authentication. Table 1-1 lists which switches and fabrics support Secure Fabric OS. Table 1-1 Secure Fabric OS-Supported Switches and Fabrics Fabric OS Versions Supported SilkWorm Platforms v2.6.2 SilkWorm 2000-series switches v3.2.0 SilkWorm 3200 and 3800 switches v4.4.0 SilkWorm 3016, 3250, 3850, 3900, 4100, and 6400 switches SilkWorm 12000 and 24000 directors v5.0.1 SilkWorm 3014, 3250, 3850, 3900, 4100, and 6400 switches SilkWorm 12000, 24000, and 48000 directors v5.1.0 SilkWorm 3014, 3250, 3850, 3900, 4100, 4900, 6400, and 7500 switches SilkWorm 24000 and 48000 directors v5.2.0 SilkWorm 3250, 3850, 3900, 4100, 4900, 6400, and 7500 switches SilkWorm 24000 and 48000 directors This chapter includes the following sections: • "Management Channel Security," next • "Switch-to-Switch Authentication" on page 1-3 • "Fabric Configuration Server Switches" on page 1-4 • "Fabric Management Policy Set" on page 1-5 Secure Fabric OS Administrator's Guide 1-1 Publication Number 53-1000244-01