Dell Brocade 6510 Fabric OS Command Reference v7.1.0 - Page 91
Fabric OS Administrator's Guide, policy
View all Dell Brocade 6510 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 91 highlights
authUtil 2 enabled. Specifying "*" enables all DH groups 0, 1, 2, 3, and 4, in that order. This means that in authentication negotiation, the NULL DH group is given priority over all other groups. In the case of a port that is enabled for encryption and you specify "*", the DH group 4 is selected.This option is supported in AG mode. -h sha1 | md5 | all Sets the hash type. Valid values are "sha1", "md5" or "all", which sets both hash types. Use this option to disable md5 authentication access by setting the hash type to sha1 only. Disabling md5 access is required when configuring the system for FIPS. Refer to the Fabric OS Administrator's Guide for details on FIPS configuration. This option is supported in AG mode. --policy Sets the switch authentication policy or device authentication policy. The following options are supported: -sw on |off | active | passive Sets the switch authentication policy. Specify one of the following modes. Operands are exclusive. If the switch has ports enabled for encryption, only the ON and ACTIVE options are supported. Only on and off options are supported in AG mode. on Sets the switch authentication policy to ON mode. Strict authentication is enforced on all E_Ports. The interswitch link (ISL) goes down (port disable), if the connecting switch does not support the authentication or the authentication policy is switched off. off Turns the authentication policy off, and the switch rejects any authentication requests. active Sets the authentication policy to active mode. During switch initialization, authentication is initiated on all E_Ports, but the port is not disabled if the connecting switch does not support authentication or the authentication policy is turned off. passive Sets the authentication policy to passive mode (default) . The switch does not initiate authentication but participates in authentication if the connecting switch initiates authentication. -dev off | passive | on Sets the device authentication policy. Three modes are supported. Device authentication policy is off by default. This option and suboptions are supported in AG mode. off Turns off the device authentication policy. Authentication is not required. The switch ignores any authentication requests and continues with the FC probing without authentication. passive Sets the authentication policy to passive mode. Authentication is optional. If the attached device is capable of doing the authentication then the switch participates in authentication; otherwise it forms an F_Port without authentication. In this mode the device accepts authentication on all F_Ports. on Sets the authentication policy to "on" mode. Authentication is mandatory. If the attached device is not capable of doing authentication, the corresponding port is disabled. Fabric OS Command Reference 63 53-1002746-01