HP AE370A Brocade Fabric OS Command Reference Manual v6.2.0 (53-1001186-01, Ap - Page 31
Understanding Admin Domain restrictions, Using the command line interface
UPC - 882780362611
View all HP AE370A manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 31 highlights
DRAFT: BROCADE CONFIDENTIAL Understanding Admin Domain restrictions 1 • Accounts with user or admin permissions can be granted chassis permissions. A user account with the chassis role can execute chassis-level commands at the user RBAC access level. An admin account with the chassis role can execute chassis-level commands at the admin RBAC access level. Refer to Appendix A, "Appendix A: Command availability" for context and switch type information as it applies to CLI commands. Understanding Admin Domain restrictions A subset of Fabric OS commands is subject to Admin Domain restrictions that may be in place. In order to execute an AD-restricted command on a switch or device, the switch or device must be part of a given Admin domain, and the user must be logged into that Admin Domain. Six Admin Domain types are supported, as defined in Table 4. TABLE 4 AD types AD Type Definition Allowed Allowed to execute in all ADs. PhysFabricOnly Allowed to execute only in AD255 context (and the user should own access to AD0-AD255 and have admin RBAC privilege). Disallowed Only allowed to execute in AD0 or AD255 context, not allowed in AD1-AD254 context. PortMember All control operations allowed only if the port or the local switch is part of the current AD. View access allowed if the device attached to the port is part of current AD. AD0Disallowed Allowed to execute only in AD255 and AD0 (if no ADs are configured). AD0Only Allowed to execute only in AD0 when ADs are not configured. Refer to Appendix A, "Appendix A: Command availability" for a listing of Admin Domain restrictions that apply to the commands included in this manual. Using the command line interface The Fabric OS command line interface (accessed via Telnet, SSH, or serial console) provides full management capability on a Brocade switch. The Fabric OS CLI enables an administrator to monitor and manage individual switches, ports, and entire fabrics from a standard workstation. Selected commands must be issued from a secure Telnet or SSH session, as indicated in the command description in this manual. Access is controlled by a switch-level password for each access level. The commands available through the CLI are based on the user's login role and the license keys used to unlock certain features. The Fabric OS CLI provides the following capabilities: Fabric OS Command Reference 3 53-1001186-01