Manualshelf

Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesFastIron
1951195219531954195519561957195819591960
FastIron Configuration Guide 1899
53-1002494-02
Web authentication mode configuration
Brocade(config-vlan-10-webauth)#auth-mode passcode grace-period 5
Syntax: auth-mode passcode grace-period <value>
<value> is a number between 0 and 5 minutes. 0 means there is no grace period.
NOTE
If the grace period is re-configured while a passcode is already in the grace period, the passcode is
not affected by the configuration change. The new grace period will apply only to passcodes that
expire after the new grace period is set.
Flushing all expired passcodes that are in the grace period
You can delete old passcodes that have expired but are still valid because they are in the grace
period. This feature is useful in situations where the old passcodes have been compromised but
are still valid because of the grace period. This feature does not affect current valid passcodes or
passcodes that newly expire.
To flush out all expired passcodes that are currently in the grace period, enter the following
command.
Brocade(config-vlan-10-webauth)#auth-mode passcode flush-expired
Syntax: auth-mode passcode flush-expired
Disabling and re-enabling passcode logging
The software generates a Syslog message and SNMP trap message every time a new passcode is
generated and passcode authentication is attempted,. This is the default behavior. If desired, you
can disable passcode-related Syslog messages or SNMP trap messages, or both.
The following shows an example Syslog message and SNMP trap message related to passcode
authentication.
New passcode: 01234567. Expires in 1440 minutes. Old passcode is valid for another
5 minutes.
To disable Syslog messages for passcodes, enter the no auth-mode passcode log syslog command.
Brocade(config-vlan-10-webauth)#no auth-mode passcode log syslog
Enter the following command to disable SNMP trap messages for passcodes.
Brocade(config-vlan-10-webauth)#no auth-mode passcode log snmp-trap
Enter the following command to re-enable Syslog messages for passcodes after they have been
disabled.
Brocade(config-vlan-10-webauth)#auth-mode passcode log syslog
Enter the following command to re-enable SNMP trap messages for passcodes after they have
been disabled.
Brocade(config-vlan-10-webauth)#auth-mode passcode log snmp-trap
Syntax: [no] auth-mode passcode log syslog | snmp-trap