HP StorageWorks 8/20q HP StorageWorks 8/20q Fibre Channel Switch command line - Page 157
PrimarySecret, SecondaryHash, SHA-1, SecondarySecret, Secret, Binding, FabricBindingEnabled
View all HP StorageWorks 8/20q manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 157 highlights
Table 13 Group member attributes (continued) Attribute PrimarySecret (ISL and Port Groups) SecondaryHash (ISL and Port Groups) SecondarySecret (ISL and Port Groups) Secret (MS Groups) Binding (ISL Groups) Description Hexadecimal string that is encrypted by the primary hash for authentication with the member. The string has the following lengths depending on the primary hash function: • MD5 hash: 16-byte • SHA-1 hash: 20-byte Hash function to use to decipher the encrypted secondary secret sent by the group member. Hash values are MD5 or SHA-1. The secondary hash is used when the primary hash is not available on the group member. The primary hash and the secondary hash cannot be the same. Hex string that is encrypted by the secondary hash and sent for authentication. The string has the following lengths, depending on the secondary hash function: • MD5 hash: 16-byte • SHA-1 hash: 20-byte Hexadecimal string that is encrypted by the hash function for authentication with MS group members. The string has the following lengths depending on the hash function: • MD5 hash: 16-byte • SHA-1 hash: 20-byte Domain ID of the switch to which to bind the ISL group member worldwide name. This option is available only if FabricBindingEnabled is set to True using the set config security command. 0 (zero) specifies no binding. Operands list Displays a list of all groups and the security sets of which they are members. This operand is available without an Admin session. members [group] Displays all members of the group given by [group]. This operand is available without an Admin session. remove [group] [member_list] Remove the port/device worldwide name given by [member] from the group given by [group]. Use a to delimit multiple member names in [member_list] rename [group_old] [group_new] Renames the group given by [group_old] to the group given by [group_new]. securitysets [group] Displays the list of security sets of which the group given by [group] is a member. This operand is available without an Admin session. type [group] Displays the group type for the group given by [group]. This operand is available without an Admin session. Notes Primary and secondary secrets are not included in a switch configuration backup. Therefore, after restoring a switch configuration, you must re-enter the primary and secondary secrets. Otherwise, the switch will isolate because of an authentication failure. For more information about managing groups in security sets, see the securityset command. 8/20q Fibre Channel Switch command line interface guide 157