Brocade OS Command Reference Manual Supporting Fabric OS v6.0.0 (53-1000599-01, October 2007)

ManualsBrandsHP ManualsComputer AccessoriesHP DC SAN Director Switch Multiprotocol Extension Blade Option

581

582

583

584

585

586

587

588

589

590

Fabric OS Command Reference 561

53-1000599-01

secPolicyRemove

Removes members from an existing security policy.

Synopsis secpolicyremove “name” , “member[;member...]”

Description Use this command to remove members from an existing security policy. It is not possible to remove

all members from the FCS_POLICY; the local switch WWN cannot be deleted from the FCS policy. In

the case of SCC policy, if it is empty after removing all members, all access to the switch itself

would be disallowed.

If FCS policy is enabled, this command must be issued from the primary FCS switch.

Operands This command has the following operands:

“name” Specify the name of an existing policy you want to remove members from.

Valid values for this operand are:

• DCC_POLICY_nnn

• FCS_POLICY

• SCC_POLICY

The specified policy name must be capitalized.

The DCC_POLICY policy name has the common prefix DCC_POLICY_ followed

by a string of user defined characters. These characters do not have to be

capitalized like regular policy names, but are case sensitive.

This operand is required.

“member” Specify a member or list of members to delete from the policy. The members

must be enclosed in quotation marks and separated by semicolons. This

operand is required. Depending on the policy type, members can be specified

using IP address, WWN, domain, or switch name.

WWN Member Policy Types

The following policy types require members be specified by WWN address:

• FCS_POLICY

• SCC_POLICY

These policy types require member IDs be specified as WWN strings,

domains, or switch names. If domain or switch names are used, the switches

associated must be present in the fabric or the command fails.

DCC_POLICY Members

The DCC_Policy_nnn is a list of devices associated with a specific switch and

port combination. The device is specified with a WWN string. The switch and

port combination must be specified in the following format:

switch port

switch can be specified using WWN, domain, or switch name.