Reference Guide
66 Brocade Fabric OS Command Reference
53-1004112-02
authUtil
authUtil
Displays and sets the authentication configuration.
Synopsis authutil
authutil --show
authutil --set option value
authutil --policy -sw option | -dev option
authutil --authinit [slot/]port[, [slot/]port...] | allE
Description Use this command to display and set local switch authentication parameters.
Use --set to change authentication parameters such as protocol, Diffie-Hellman group (DH group), or hash type.
When no protocol is set, the default setting of "FCAP, DH- CHAP" is used. When no group is set, the default
setting of "*" (meaning "0,1,2,3,4") is used. Configuration settings are saved persistently across reboots.
Configuration changes take effect during the next authentication request.
Use the --show command to display the current authentication configuration.
Authentication parameters are set on a per-switch basis. If Virtual Fabrics are enabled, all authentication
parameters apply to the current logical switch context only, and must be configured separately for each logical
switch. Use setContext to change the current logical switch context.
In a VF environment, authentication is performed only on physical E_Ports, not on logical interswitch links (LISLs).
An FCR switch does not depend on the authentication policy to perform authentication or encryption/compression
key exchange with the edge fabric. The authentication policy set on an FCR switch is not considered to perform
authentication with the edge fabric. The authUtil configuration on the FCR switch does not affect EX_Port. The
EX_Port acts passively by accepting the parameters received from the edge fabric.
Notes The execution of this command is subject to Virtual Fabric restrictions that may be in place. Refer to "Using Fabric
OS Commands" and "Command Availability" for details.
Operands This command has the following operands:
--show
Displays the local authentication configuration.This option is supported in the Access
Gateway (AG) mode.