HP StorageWorks 2/16V Brocade Secure Fabric OS Administrator's Guide (53-10002 - Page 74
Creating an SCC Policy
View all HP StorageWorks 2/16V manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 74 highlights
3 To create a DCC policy "DCC_POLICY_example" that includes devices 44:55:66:77:22:33:44:dd and 33:44:55:66:77:11:22:cc, ports 1 through 4 of switch domain 4, and all devices currently connected to ports 1 through 4 of switch domain 4: primaryfcs:admin> secpolicycreate "DCC_POLICY_example", "44:55:66:77:22:33:44:dd;33:44:55:66:77:11:22:cc;4[1-4]" DCC_POLICY_xxx has been created Creating an SCC Policy Note Fabric OS v5.2.0 supports local SCC policies; however the local SCC polices created in non-secure mode cannot be used while in secure mode. Policies created in non-secure mode are deleted when secure mode is enabled. Back up SCC policies before enabling secure mode. The SCC policy is used to restrict which switches can join the fabric. Switches are checked against the policy each time secure mode is enabled, the fabric is initialized with secure mode enabled, or an E_Port-to-E_Port connection is made. The policy is named SCC_POLICY and accepts members listed as WWNs, domain IDs, or switch names. Only one SCC policy may be created. By default, any switch is allowed to join the fabric; the SCC policy does not exist until it is created by the administrator. Note When an SCC policy is activated, any non-FCS switches in the fabric not included in the policy member list, will be segmented from the fabric. A SCC policy is required if FICON is enabled. When connecting fibre channel router to secure Fabric that has an active SCC policy, the front domain of fibre channel router must be included in the SCC policy. The possible SCC policy states are shown in Table 3-13. 3-24 Secure Fabric OS Administrator's Guide Publication Number: 53-1000244-01