HP StorageWorks 2/32 Brocade Secure Fabric OS Administrator's Guide (53-100024 - Page 26

2 3. If the Secure Fabric OS and Advanced Zoning licenses are already listed, the features are already available and the remaining steps are not required; continue if either license is not listed. 4. Contact the switch supplier to purchase the required license key. 5. After the key is received, type licenseAdd "key". key is the license key string exactly as provided by the switch supplier; it is case sensitive. You can copy it from the email in which it was provided directly into the CLI. switch:admin> licenseadd "aAaaaaAaAaAaAaA" adding license key "aAaaaaAaAaAaAaA" 6. Type the licenseShow command to verify that the license was successfully activated. If the license is listed, the feature is immediately available (the Secure Fabric OS license displays as "Security license"). Verifying the Digital Certificate Secure Fabric OS requires that each switch in the fabric has PKI objects and a digital certificate. Verify whether the objects and a digital certificate are correctly installed in the fabric (see "Displaying the Digital Certificate Status" on page 2-4). Displaying the Digital Certificate Status Use the pkishow command to display the status of the digital certificate and other PKI objects in the fabric. The digital certificate and other objects status displays Exists for passphrase, Private Key, CSR, Certificate, and Root Certificate when the certificate and objects are installed and ready. Use the following instructions to correct status when one or more of the items displays Empty: • If the certificate displays Empty but the other objects display Exist, follow the procedures in "Obtaining the Digital Certificate File" on page 2-7, then "Distributing Digital Certificates to the Switches" on page 2-13. • If all the object and certificate display Empty, create the objects on the switch as describe in "Creating PKI Objects" on page 2-5, then follow the instructions in "Obtaining the Digital Certificate File" on page 2-7 and "Distributing Digital Certificates to the Switches" on page 2-13. • If any of the other objects display Empty or the command displays an error message, re-create the objects as described in "Creating PKI Objects" on page 2-5. To verify that digital certificates are installed on all the switches in the fabric 1. Log in to one of the switches in the fabric as admin. 2. Display the PKI objects: • For Fabric OS v4.4.0, v5.01, v5.1.0, or v5.2.0 enter pkiShow. If the switch is a two-domain SilkWorm 24000, enter this command on both logical switches. • For Fabric OS v3.2.0, enter configShow "pki". 2-4 Secure Fabric OS Administrator's Guide Publication Number: 53-1000244-01