Reference Guide

ManualsBrandsDell ManualsAccess PlatformsBrocade G620

211

212

213

214

215

216

217

218

219

220

Activating ACL policy changes

You can implement changes to the ACL policies using the secPolicyActivate command. This saves the changes to the active policy set

and activates all policy changes since the last time the command was issued. You cannot activate policies on an individual basis; all

changes to the entire policy set are activated by the command. Until a secPolicySave or secPolicyActivate command is issued, all policy

changes are in volatile memory only and are lost upon rebooting.

1. Connect to the switch and log in using an account with admin permissions, or an account with OM permissions for the Security

RBAC class of commands.

2. Type the secPolicyActivate command.

Example of activating policy changes

switch:admin> secpolicyactivate

About to overwrite the current Active data.

ARE YOU SURE (yes, y, no, n): [no] y

Deleting an ACL policy

1. Connect to the switch and log in using an account with admin permissions, or an account with OM permissions for the Security

RBAC class of commands.

2. Enter the secPolicyDelete command, specifying the name of the ACL policy to delete.

secpolicydelete "policy_name"

3. Save and activate the policy deletion by entering the secPolicyActivate command.

Example of deleting an ACL policy

switch:admin> secpolicydelete "DCC_POLICY_010"

About to delete policy Finance_Policy.

Are you sure (yes, y, no, n):[no] y

Finance_Policy has been deleted.

Adding a member to an existing ACL policy

As soon as a policy has been activated, the aspect of the fabric managed by that policy is enforced.

1. Connect to the switch and log in using an account with admin permissions, or an account with OM permissions for the Security

RBAC class of commands.

2. Enter the secPolicyAdd command.

3. To implement the change immediately, enter the secPolicyActivate command.

For example, to add a member to the SCC_POLICY using the switch WWN:

switch:admin> secpolicyadd "SCC_POLICY", "12:24:45:10:0a:67:00:40"

Member(s) have been added to SCC_POLICY.

Example of adding members to the DCC policy

To add two devices to the DCC policy, and to attach domain 3 ports 1 and 3 (WWNs of devices are 11:22:33:44:55:66:77:aa and

11:22:33:44:55:66:77:bb):

switch:admin> secpolicyadd "DCC_POLICY_abc",

"11:22:33:44:55:66:77:aa;11:22:33:44:55:66:77:bb;3(1,3)"

Configuring Security Policies

Brocade Fabric OS Administration Guide, 8.0.1

53-1004111-02 217