Manualshelf

Brocade Secure Fabric OS Administrator's Guide - Supporting Fabric OS v3.2.0, v4.4.0, v5.0.1, v5.1.0, 5.2.0, and 5.3.0 (53-1000244-02, June 2007)

ManualsBrandsHP ManualsStorageBrocade 4Gb SAN Switch
21222324252627282930
10 Secure Fabric OS Administrator’s Guide
53-1000244-02
2
3. If the Secure Fabric OS and Advanced Zoning licenses are already listed, the features are
already available and the remaining steps are not required; continue if either license is not
listed.
4. Contact the switch supplier to purchase the required license key.
5. After the key is received, type licenseAdd “key.
key is the license key string exactly as provided by the switch supplier; it is case sensitive. You
can copy it from the email in which it was provided directly into the CLI.
switch:admin> licenseadd "aAaaaaAaAaAaAaA"
adding license key "aAaaaaAaAaAaAaA"
6. Type the licenseShow command to verify that the license was successfully activated.
If the license is listed, the feature is immediately available (the Secure Fabric OS license
displays as “Security license”).
Verifying the Digital Certificate
Secure Fabric OS requires that each switch in the fabric has PKI objects and a digital certificate.
Verify whether the objects and a digital certificate are correctly installed in the fabric (see
“Displaying the Digital Certificate Status” on page 10).
DISPLAYING THE DIGITAL CERTIFICATE STATUS
Use the pkishow command to display the status of the digital certificate and other PKI objects in
the fabric.
The digital certificate and other objects status displays Exists for passphrase, Private Key, CSR,
Certificate, and Root Certificate when the certificate and objects are installed and ready.
Use the following instructions to correct status when one or more of the items displays Empty:
If the certificate displays Empty but the other objects display Exist, follow the procedures in
“Obtaining the Digital Certificate File” on page 12, then “Distributing Digital Certificates to the
Switches” on page 18.
If all the object and certificate display Empty, create the objects on the switch as describe in
“Creating PKI Objects” on page 11, then follow the instructions in “Obtaining the Digital
Certificate File” on page 12 and “Distributing Digital Certificates to the Switches” on page 18.
If any of the other objects display Empty or the command displays an error message, re-create
the objects as described in “Creating PKI Objects” on page 11.
To verify that digital certificates are installed on all the switches in the fabric
1. Log in to one of the switches in the fabric as admin.
2. Display the PKI objects:
- For Fabric OS v4.4.0, v5.01, v5.1.0, v5.2.0, or v5.3.0 enter pkiShow. If the switch is a
two-domain Brocade 24000, enter this command on both logical switches.
- For Fabric OS v3.2.0, enter configShow “pki”.