Reference Guide
Brocade Fabric OS Command Reference 69
53-1004112-02
authUtil
To enable sha1 hash type:
switch:admin> authutil --set -h sha1
Hash is set to sha1.
To enable all hash types:
switch:admin> authutil --set -h all
Hash is set to sha256,sha1,md5.
To check the hash types set:
switch:admin> authutil --show
AUTH TYPE HASH TYPE GROUP TYPE
--------------------------------------
fcap,dhchap sha256,sha1,md5 1
Switch Authentication Policy: PASSIVE
Device Authentication Policy: OFF
To enable Sha256 hash type:
sha256 hash type is recommended for FIPS configuration.
switch:admin> authutil --set -h sha256
Hash is set to sha256.
switch:admin> authutil --show
AUTH TYPE HASH TYPE GROUP TYPE
--------------------------------------
fcap,dhchap sha256 1
Switch Authentication Policy: PASSIVE
Device Authentication Policy: OFF
To set DH group 3:
switch:admin> authutil --set -g 3
DH Group was set to 3.
To set all DH groups to be specified in the authentication negotiation in the order of 0, 1, 2, 3, and 4:
switch:admin> authutil --set -g "*"
DH Group is set to 0,1,2,3,4
To set the Switch policy to active mode:
switch:admin> authutil --policy -sw active
Warning: Activating the authentication policy requires
either DH-CHAP secrets or PKI certificates depending
on the protocol selected. Otherwise, ISLs will be
segmented during next E-port bring-up.
ARE YOU SURE (yes, y, no, n): [no] y
Auth Policy is set to ACTIVE