HP StorageWorks 4/64 Brocade Fabric OS Command Reference Guide v6.1.0 (53-1000 - Page 32
Understanding Admin Domain Restrictions, Command Availability, server, options, timeout, domain
View all HP StorageWorks 4/64 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 32 highlights
2 aaaConfig The execution of this command is subject to Admin Domain restrictions that may be in place. Refer to chapter 1, "Understanding Admin Domain Restrictions" and Appendix A, "Command Availability" for details. Operands This command takes as input an action and its associated arguments. Without any specified action, the command prints out the usage. The following operands are supported: server Specifies an IP address or a server name in dot notation. IPv6 addresses are supported. If a name is used, a DNS entry must be correctly configured for the server. The command fails and an error is returned if the specified server IP address or name already exists in the current configuration. However, the command does not validate the server name against the IP address in the configuration. Make sure to avoid duplicate configuration of the same server, one specified by the name, the other specified by the IP address. --show Displays the current AAA service configuration. --add | --change server [options] Adds or modifies a RADIUS or LDAP server. The --add option appends the specified server to the end of the current configuration list. A maximum of 5 servers are supported for each authentication type. The --change option modifies the specified server configuration to use the new arguments. The server must be one of the IP addresses or names shown in the current configuration. The following options are supported: -conf radius|ldap Specifies the server configuration as either RADIUS or LDAP. This operand is required. Ensure that FIPS is disabled before configuring LDAP. The following operands are optional: -p port Specifies the RADIUS or LDAP server port number. Supported range is 1 to 65535. The default port is 1812 for RADIUS authentication. The default port is 389 for LDAP authentication. This operand is optional. If no port is specified, the default is used. -t timeout Specifies the response timeout for the RADIUS or the LDAP server. Supported range is between 1 and 30 seconds. The default is 3 sec. This operand is optional. If no timeout is specified, the default is used. -d domain Specifies the Windows domain name for the LDAP server, e.g., brocade.com. This option is valid only with the -conf ldap option. This option is required. -s secret Specifies a common secret between the switch and the RADIUS server. The secret must be between 8 and 40 characters long. This option is valid only with the -conf radius option, and it is optional. The default value is "sharedsecret". -a Specifies the remote authentication protocol for the RADIUs server. This option is valid only with the -conf radius option, and it is optional. The default value for this operand is CHAP. 6 Fabric OS Command Reference 53-1000599-02