Manualshelf

Brocade Secure Fabric OS Administrator's Guide - Supporting Fabric OS v3.2.0, v4.4.0, v5.0.1, v5.1.0, 5.2.0, and 5.3.0 (53-1000244-02, June 2007)

ManualsBrandsHP ManualsComputer AccessoriesHP SN8000B 16Gb 32-port Fibre Channel Blade
71727374757677787980
Secure Fabric OS Administrator’s Guide 57
53-1000244-02
3
To add a member to an existing Secure Fabric OS policy
1. From a sectelnet or SSH session, log in to the primary FCS switch as admin.
2. Type secPolicyAdd “policy_name”, “member;...;member”.
policy_name is the name of the Secure Fabric OS policy. member is the item to be added to the
policy, identified by device or switch IP address, switch domain ID, device or switch WWN, or
switch name.
3. To implement the change immediately, enter the secPolicyActivate command.
For example, to add a member to the MS_POLICY using the device port WWN:
primaryfcs:admin> secpolicyadd "MS_POLICY", "12:24:45:10:0a:67:00:40"
Member(s) have been added to MS_POLICY.
To add an SNMP manager to WSNMP_POLICY:
primaryfcs:admin> secpolicyadd "WSNMP_POLICY", "192.168.5.21"
Member(s) have been added to WSNMP_POLICY.
To add two devices to the DCC policy, and to attach domain 3 ports 1 and 3 (WWNs of devices
are 11:22:33:44:55:66:77:aa and 11:22:33:44:55:66:77:bb):
primaryfcs:admin> secpolicyadd "DCC_POLICY_abc",
"11:22:33:44:55:66:77:aa;11:22:33:44:55:66:77:bb;3(1,3)"
REMOVING A MEMBER FROM A POLICY
If all the members are removed from a policy, that policy becomes closed to all access. The last
member cannot be removed from the FCS_POLICY, because a primary FCS switch must be
designated.
To remove a member from a Secure Fabric OS policy
1. From a sectelnet or SSH session, log in to the primary FCS switch as admin.
2. Type secPolicyRemove “policy_name”, “member;...;member”.
policy_name is the name of the Secure Fabric OS policy. member is the device or switch to be
removed from the policy, identified by IP address, switch domain ID, device or switch WWN, or
switch name.
3. To implement the change immediately, enter the secPolicyActivate command.
For example, to remove a member that has a WWN of 12:24:45:10:0a:67:00:40 from
MS_POLICY:
primaryfcs:admin> secpolicyremove "MS_POLICY", "12:24:45:10:0a:67:00:40"
Member(s) have been removed from MS_POLICY.
DELETING A POLICY
If an entire Secure Fabric OS policy is deleted, that aspect of the fabric becomes open to all access.
To delete a Secure Fabric OS policy
1. From a sectelnet or SSH session, log in to the primary FCS switch as admin.
2. Type secPolicyDelete “policy_name”.