Technical data
Web Tools Administrator’s Guide 223
53-1002934-02
Establishing authentication policies for HBAs
16
Deleting an IKE or IPsec policy
You can delete one or more IKE or IPsec policies.
To delete an IKE or IPsec policy, perform the following steps.
1. Open the Switch Administration window.
2. Select Show Advanced Mode.
3. Select the Security Policies tab.
4. Under Security Policies, select Ethernet IPsec or Ethernet IPsec.
5. Select the policy or policies you want to delete.
6. Select Delete.
The policy is deleted from the SA database (SADB), and is removed from the list.
Establishing authentication policies for HBAs
To establish and enable authentication policies for HBAs as the log in to a fabric, perform the
following steps.
1. Open the Switch Administration window.
2. Click Show Advanced Mode.
3. Select the Security Policies tab.
4. Select Authentication under Security Policies.
The Authentication Policy Settings window displays.
5. Under Configure Authentication Policy, do the following.
• Select the Authentication Type. The choices are FCAP, DHCHAP, or both.
• Select the Switch Authentication Policy Mode. The choices are Passive, Active, On, or Off.
• Select the Hash Type used. The choices are SHA1, MD5, or both.
• Select the DH-Group Type. The choices are 0, 1, 2, 3, 4; 0 (DH Null option), 1 (1024 bit
key), 2 (1280 bit key), 3 (1536 bit key), or 4 (2048 bit key).
• Use the Device Authentication Policy Mode selector to set the desired mode. The choices
are On, Off, or Passive.
• Click Apply.
6. If your authentication method uses a shared secret, select the Shared Secret Keys tab.
The Shared Secret Keys window displays.
7. Se le ct Add.
The Add Shared Secret Keys dialog box displays.
8. Enter or browse to select the switch/HBA WWN or name or domain ID in the Switch or HBA
WWN/Name/Domain ID field.
9. Enter the shared secret key for the peer device (an HBA in this case) in the Peer Shared Secret
and Confirm Peer Shared Secret fields.