Home » HP Manuals » Storage Devices » HP StorageWorks 2/64 » Manual Viewer

HP StorageWorks 2/64 HP StorageWorks Fabric OS 5.x Command Reference Guide (AA - Page 52

authUtil

View all HP StorageWorks 2/64 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 52 highlights

authUtil Displays and sets the authentication configuration. Synopsis authutil [--show][--set value] Availability admin Description Use this command to display and set local switch authentication parameters. Use --set to change authentication parameters, such as protocol and Diffie-Hellman group (DH group), which saves new configuration persistently. Authentication process uses the protocol that is set using this command. When no protocol is set, the default setting of fcap, dhchap is used. The default setting of "*" (for example, 0,1,2,3,4) is used when no group is set. The new configuration is effective with the next authentication request. Use --show to display the current authentication configuration of the switch. Use the portShow command to display the authentication type and associated parameters, if applicable, used on the port at port online or when enabling security, whichever occurs last. NOTE: A security license is required to run this command in nonsecure as well as secure mode. Operands This command has the following operands: --show --set Displays local authentication configuration. Modifies authentication configuration. Values include: -a Sets authentication protocol. Specify fcap to set only FCAP authentication, dhchap to set only DH-CHAP authentication, and all to set both FCAP and DH-CHAP (default). When authentication is set to all, implicit order is FCAP followed by DH-CHAP; for example, in authentication negotiation FCAP is given priority over DH-CHAP on the local switch, however a responder can still select DH-CHAP. -g Sets DH group. Values 0 to 4 and "*" are valid values. DH group 0 is called NULL DH. A user can select other groups between 1 and 4. Each DH group specifies a key size and associated parameters implicitly. Higher group value provides stronger cryptography and higher level of security in authentication protocol. When DH group is set to a specified value, only that DH group is enabled in authentication. Specifying "*" as a group enables all DH groups 0, 1, 2, 3, and 4, in that order; for example, in authentication negotiation NULL DH is given priority over other groups, however a responder can still select other DH group. Without any specified operands, the command displays the usage. 52 Fabric OS commands

Section	Page
Contents	3
About this guide	13
Intended audience	13
Related documentation	13
HP StorageWorks Fabric OS 5.x master glossary	13
Document conventions and symbols	14
Table 1 Document conventions	14
HP technical support	15
HP-authorized reseller	15
Helpful web sites	15
Fabric OS command line interface	17
Understanding access levels	17
Table 2 Fabric OS v5.x user access maximum sessions	17
Table 3 Role permissions	18
Using the Fabric OS command line interface	18
Using this guide	19
Fabric OS commands	21
aaaConfig	22
agtCfgDefault	25
agtCfgSet	29
agtCfgShow	32
aliAdd	35
aliasDelete	37
aliasJoin	38
aliasPurge	40
aliasShow	41
aliCreate	42
aliDelete	44
aliRemove	45
aliShow	47
aptPolicy	49
authUtil	52
backplaneTest	54
backport	56
bannerSet	58
bannerShow	59
bcastShow	60
bladeBeacon	62
bladeDisable	63
bladeEnable	65
burninErrClear	67
burninErrShow	68
burninLevel	69
burninStatus	70
camTest	71
centralMemoryTest	73
cfgActvShow	78
cfgAdd	79
cfgClear	81
cfgCreate	83
cfgDelete	85
cfgDisable	86
cfgEnable	87
cfgRemove	88
cfgSave	90
cfgShow	92
cfgSize	95
cfgTransAbort	97
cfgTransShow	98
chassisConfig	99
chassisName	103
chassisShow	104
Table 4 Command output descriptions	104
chipRegShow	108
cmemRetentionTest	109
cmiTest	111
configDefault	113
configDownload	115
configShow	118
configUpload	120
configure	123
Table 5 Configure command fabric parameters fields	124
Table 6 Configure command virtual channel fields	126
Table 7 RSCN transmission modes	127
Table 8 Configure command arbitrated loop settings	127
Table 9 Configure command system services fields	128
Table 10 Configurable application attributes	128
crossPortTest	132
dataTypeShow	136
date	137
dbgShow	139
diagClearError	140
diagCommandShow	141
diagDisablePost	142
diagEnablePost	143
diagEnv	144
diagFailLimit	146
diagHelp	147
diagLoopId	148
diagModeShow	149
diagPost	151
diagRetry	152
diagSetBurnin	153
diagSetCycle	154
diagSetEsdMode	156
diagShow	157
diagShowTime	158
diagSkipTests	159
diagStatus	160
diagStopBurnin	161
dlsReset	162
dlsSet	163
dlsShow	164
dnsConfig	165
enclosureShow	167
errClear	168
errDelimiterSet	169
errDump	170
errFilterSet	172
errModuleShow	173
errShow	176
exit	178
fabPortShow	179
fabRetryShow	182
fabricLog	184
fabricPrincipal	186
fabricShow	188
fabStateClear	189
fabStateResize	190
fabStateShow	192
fabStatsShow	194
fabSwitchShow	196
fanDisable	198
fanEnable	199
fanShow	200
fastBoot	201
faZoneAdd	202
faZoneCreate	204
faZoneDelete	206
faZoneRemove	207
faZoneShow	209
fcPing	210
fcpLogClear	213
fcpLogDisable	214
fcpLogEnable	215
fcpLogShow	216
fcpProbeShow	218
fcpRlsShow	220
fdmiCacheShow	221
fdmiShow	222
ficonClear	224
ficoncupset	225
ficoncupshow	226
ficonHelp	228
ficonShow	230
filterTest	237
Table 11 List of filter test numbers, definitions, and action types	237
firmwareCommit	239
firmwareDownload	241
firmwareDownloadStatus	245
firmwareRestore	247
firmwareShow	248
fportTest	249
fruReplace	252
fspfShow	254
Table 12 fspfshow display fields	254
fwAlarmsFilterSet	257
fwAlarmsFilterShow	258
fwClassInit	259
fwConfigReload	260
fwConfigure	261
Table 13 fwConfigure fabric watch classes and areas	261
fwFruCfg	267
fwHelp	269
fwMailCfg	270
fwPortDetailShow	273
fwSamShow	276
fwSet	277
fwSetToCustom	278
fwSetToDefault	279
fwShow	280
h	283
haDisable	284
haDump	285
haEnable	287
haFailover	288
haShow	289
haSyncStart	291
haSyncStop	292
help	293
historyLastShow	294
historyMode	295
historyShow	296
httpCfgShow	299
i	300
Table 14 i command field descriptions	300
ifModeSet	302
ifModeShow	304
interfaceShow	305
interopMode	309
iodReset	311
iodSet	312
iodShow	313
ipAddrSet	314
ipAddrShow	316
islShow	317
itemList	318
Table 15 Object descriptions	319
killTelnet	320
licenseAdd	322
licenseHelp	323
licenseIdShow	324
licenseRemove	325
licenseShow	326
linkCost	327
login	329
logout	330
loopPortTest	331
lSDbShow	333
Table 16 lsdbShow display fields	333
memShow	337
miniCycle	338
minisPropShow	344
msCapabilityShow	346
msConfigure	348
msPlatShow	350
msPlatShowDBCB	352
msPlClearDB	353
msPlMgmtActivate	354
msPlMgmtDeactivate	355
msTdDisable	356
msTdEnable	358
msTdReadConfig	359
myId	360
nbrStateShow	361
nbrStatsClear	362
nodeFind	365
nsAliasShow	368
nsAllShow	372
nscamShow	374
nsShow	377
nsZoneMember	382
passwd	386
pathInfo	388
pdShow	393
perfAddEEMonitor	395
perfAddIPMonitor	397
perfAddReadMonitor	399
perfAddRWMonitor	401
perfAddSCSIMonitor	403
perfAddUserMonitor	405
perfAddWriteMonitor	407
perfCfgClear	409
perfCfgRestore	410
perfCfgSave	411
perfClearEEMonitor	412
perfClearFilterMonitor	414
perfClrAlpaCrc	416
perfDelEEMonitor	417
perfDelFilterMonitor	418
perfHelp	419
perfMonitorClear	421
perfMonitorShow	423
perfSetPortEEMask	427
perfShowAlpaCrc	429
perfShowEEMonitor	430
perfShowFilterMonitor	432
perfShowPortEEMask	434
pkiCreate	436
pkiRemove	437
pkiShow	438
portAlpaShow	439
portBufferShow	440
portCamShow	442
portCfg	444
portCfgDefault	448
portCfgEPort	449
portCfgGPort	450
portCfgISLMode	451
portCfgLongDistance	453
portCfgLPort	456
portCfgPersistentDisable	459
portCfgPersistentEnable	461
portCfgShow	463
portCfgSpeed	466
portCfgTrunkPort	467
portDebug	468
portDisable	469
portEnable	470
portErrShow	471
portFlagsShow	473
portLedTest	475
portLogClear	476
portLogConfigShow	477
portLogDump	478
portLogDumpPort	480
portLogEventShow	482
portLoginShow	484
portLogPdisc	486
portLogPortShow	487
portLogReset	489
portLogResize	490
portLogShow	491
portLogShowPort	496
portLogTypeDisable	498
portLogTypeEnable	499
portLoopbackTest	500
portName	503
portPerfShow	505
portRegTest	506
portRouteShow	508
portShow	510
Table 17 portShow display fields	510
portStats64Show	514
portStatsClear	517
portStatsShow	518
portSwap	521
portSwapDisable	523
portSwapEnable	524
portSwapShow	525
portTest	526
portTestShow	528
powerOffListSet	530
powerOffListShow	533
psShow	535
qloopAdd	537
qloopCreate	538
qloopDelete	540
qloopRemove	541
qloopShow	543
quietMode	545
rcsDisabled	546
reboot	547
routeHelp	548
saveCore	549
secActiveSize	555
secAuthSecret	556
secCertUtil	559
secDefineSize	563
secFabricShow	564
secFCSFailover	566
secGlobalShow	567
secHelp	568
secModeDisable	570
secModeEnable	571
secModeShow	577
secNonFcsPasswd	578
secPolicyAbort	579
secPolicyActivate	580
secPolicyAdd	581
secPolicyCreate	585
secPolicyDelete	589
secPolicyDump	592
secPolicyFCSMove	595
secPolicyRemove	597
secPolicySave	600
secPolicyShow	601
secStatsReset	603
secStatsShow	606
secTempPasswdReset	609
secTempPasswdSet	611
secTransAbort	613
secVersionReset	614
sensorShow	615
setDbg	616
setEsdMode	617
setGbicMode	618
setMediaMode	619
setModem	620
Figure 1 Two modems attached for high availability	621
setSfpMode	622
setSplbMode	623
setVerbose	624
sfpShow	625
shellFlowControlDisable	629
shellFlowControlEnable	630
slotOff	631
slotOn	632
slotPowerOff	633
slotPowerOn	634
slotShow	635
slTest	637
snmpConfig	639
snmpMibCapSet	647
snmpMibCapShow	649
spinFab	651
spinJitter	654
spinSilk	658
sramRetentionTest	663
statsClear	665
statsTest	666
stopPortTest	668
supportFtp	669
supportSave	671
supportShow	674
supportShowCfgDisable	679
supportShowCfgEnable	680
supportShowCfgShow	681
switchBeacon	682
switchCfgPersistentDisable	683
switchCfgPersistentEnable	684
switchCfgSpeed	685
switchCfgTrunk	686
switchDisable	687
switchEnable	688
switchName	689
switchReboot	690
switchShow	691
switchShutdown	694
switchStart	695
switchStatusPolicySet	696
Table 18 Default contributor, values, and status	696
switchStatusPolicyShow	698
Table 19 Default contributor, values, and status	698
switchStatusShow	700
switchUptime	702
syslogdFacility	703
syslogdIpAdd	704
syslogdIpRemove	705
syslogdIpShow	706
systemVerification	707
tempShow	710
timeout	711
topologyShow	712
traceDump	714
traceFtp	716
traceTrig	718
trackChangesHelp	720
trackChangesSet	721
trackChangesShow	723
trunkDebug	724
trunkShow	726
tsClockServer	727
tsTimeZone	729
turboRamTest	731
txdPath	733
upTime	736
uRouteConfig	737
uRouteRemove	739
uRouteShow	740
userConfig	742
userRename	745
version	746
voltShow	747
wwn	749
zoneAdd	750
zoneCreate	751
zoneDelete	753
zoneHelp	754
zoneObjectCopy	756
zoneObjectExpunge	758
zoneObjectRename	760
zoneRemove	762
zoneShow	764
Licensed product commands	767
Advanced zoning commands	767
Table 20 Zoning commands	767
QuickLoop Fabric Assist mode commands	768
Table 21 QuickLoop fabric assist mode commands	768
Extended Fabrics command	769
Table 22 Extended fabrics commands	769
Fabric Watch commands	769
Table 23 Fabric watch commands	769
ISL Trunking commands	769
Table 24 HP trunking commands	769
Advanced Performance Monitoring commands	770
Table 25 Performance monitoring commands	770
Secure Fabric OS commands	771
Table 26 HP secure fabric OS commands	771
Exclusive primary FCS commands	773
Commands exclusive to the primary FCS	773
Table 27 Commands exclusive to the primary FCS	773
MUA-based roles	777
switchAdmin Role Permissions	777
Table 28 switchAdmin commands	777
Control processor commands	787
Commands supported on the active CP	787
Commands supported on the standby CP	787
Table 29 Commands supported on the standby CP	787
supportShow reference	789
supportShow control commands	789
supportShow command groups	789
Table 30 supportShow command groups	789
Proc entry information displayed	792
Table 31 proc entry information displayed	792
Glossary	797
Index	821
A	821
B	821
C	821
D	822
E	822
F	823
H	824
I	824
K	824
L	824
M	825
N	825
P	825
Q	826
R	827
S	827
T	828
U	829
V	829
W	829

Match case Limit results 1 per page

Fabric OS commands

Displays and sets the authentication configuration.

Synopsis

authutil

[--show][--set

value

]

Availability

admin

Description

Use this command to display and set local switch authentication parameters. Use

--set

to change

authentication parameters, such as protocol and Diffie-Hellman group (DH group), which saves new

configuration persistently. Authentication process uses the protocol that is set using this command.

When no protocol is set, the default setting of

fcap,

dhchap

is used. The default setting of

"*"

(for

example,

0,1,2,3,4

) is used when no group is set. The new configuration is effective with the next

authentication request.

Use

--show

to display the current authentication configuration of the switch. Use the

portShow

command to display the authentication type and associated parameters, if applicable, used on the port at

port online or when enabling security, whichever occurs last.

NOTE:

A security license is required to run this command in nonsecure as well as secure mode.

Operands

This command has the following operands:

authUtil

--show

Displays local authentication configuration.

Modifies authentication configuration. Values include:

--set

-a

Sets authentication protocol. Specify

fcap

to set only FCAP

authentication,

dhchap

to set only DH-CHAP authentication,

and

all

to set both FCAP and DH-CHAP (default). When

authentication is set to

all

, implicit order is FCAP followed

by DH-CHAP; for example, in authentication negotiation

FCAP is given priority over DH-CHAP on the local switch,

however a responder can still select DH-CHAP.

-g

Sets DH group. Values

and

"*"

are valid values. DH

group 0 is called NULL DH. A user can select other groups

between 1 and 4. Each DH group specifies a key size and

associated parameters implicitly. Higher group value

provides stronger cryptography and higher level of security

in authentication protocol. When DH group is set to a

specified value, only that DH group is enabled in

authentication. Specifying

"*"

as a group enables all DH

groups 0, 1, 2, 3, and 4, in that order; for example, in

authentication negotiation NULL DH is given priority over

other groups, however a responder can still select other DH

group.

Without any specified operands, the command displays the usage.