Manualshelf

Users Guide

ManualsBrandsDell ManualsComputer equipmentBrocade M5424
31323334353637383940
Fabric OS Command Reference 3
53-1002921-02
Understanding Virtual Fabric restrictions
1
Manage critical security parameters (CSPs) input and output functions.
Zeroize encryption CSPs.
Register and configure a key vault.
Configure a recovery share policy.
Create and register recovery share.
Encryption group- and clustering-related operations.
Manage keys, including creation, recovery, and archiving functions.
Admin and FabricAdmin
Users authenticated with the Admin and FabricAdmin RBAC roles may perform routine
encryption switch management functions including the following:
Configure virtual devices and crypto LUN.
Configure LUN/tape associations.
Perform re-keying operations.
Perform firmware download.
Perform regular Fabric OS management functions.
For a listing of RBAC permissions for cryptoCfg subcommands, refer to the Fabric OS Encryption
Adminsitrator’s Guide.
Understanding Virtual Fabric restrictions
All Fabric OS commands are subject to additional RBAC enforcement with regard to Virtual Fabric
contexts and switch types. Commands can be executed in one or more of the contexts described in
Table 3. Execution of chassis commands requires chassis permissions.
Switch commands are further defined by the switch type restrictions as described in Table 4.
Switch type restrictions are not applicable to commands that require chassis permissions.
TABLE 3 Virtual Fabric contexts
Context type Definition
Switch context Command applies to the current logical switch only, or to a specified
logical switch.
Chassis context Command applies to the chassis on which it is executed.
Switch and chassis
context
Command can be executed in a logical switch context or in a chassis
context.
Disallowed Command is not supported in Virtual Fabric mode.
TABLE 4 Switch types
Switch type Definition
All Switches Command can be executed in any switch context.
Base Switch Only Command can be executed only on the base switch.
Default Switch Only Command can be executed only on the default switch.
N/A Command is a chassis command or not supported in Virtual Fabric
mode.