Brocade Fabric OS Command Reference Manual Supporting Fabric OS v6.3.0 (53-1001337-01, July 2009)

ManualsBrandsHP ManualsStorageBrocade 8/24c Power Pack+ SAN Switch for BladeSystem c-Class

791

792

793

794

795

796

797

798

799

800

Fabric OS Command Reference 763

53-1001337-01

secAuthSecret

Manages the DH-CHAP shared secret key information.

Synopsis secauthsecret --show

secauthsecret --set

secauthsecret --remove value | --all

Description Use this command to manage the DH-CHAP shared secret key database used for authentication.

This command displays, sets, and removes shared secret key information from the database or

deletes the entire database. If you are performing set or remove operations, when the command is

completed new data is saved persistently. New data is effective with the next authentication

request. The configuration applies to a switch instance only.

Note The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may

be in place. Refer to chapter 1, "Using Fabric OS commands" and Appendix A, "Command

Availability" for details.

Operands This command has the following operands:

--show Lists the WWNs for which a shared secret is configured.

--set Sets shared secrets with a WWN. This command is interactive. When setting

secrets for an entry of an EX_Port, the WWN of the entry must be specified.

--remove [wwn | domain | swname]

Removes the specified WWN entry from the database. If a domain name is

specified, it is converted to a WWN and then the entry is removed. When

removing an entry of an EX_Port type, the WWN of the entry must be

specified. If no option is specified, the command is interactive.

--remove --all Deletes the entire secret key database.

Examples To list the shared secret WWN:

switch:admin> secauthsecret --show

WWN DId Name

-----------------------------------------------

10:00:00:60:69:80:5b:e8 1 switch

To set the shared secret:

switch:admin> secAuthSecret --set

This command sets up secret keys for the DH-CHAP authentication.

The minimum length of a secret key is 8 characters and maximum 40

characters. Setting up secret keys does not initiate DH-CHAP

authentication. If switch is configured to do DH-CHAP, it is performed

whenever a port or a switch is enabled.

Warning: Please use a secure channel for setting secrets. Using

an insecure channel is not safe and may compromise secrets.

Following inputs should be specified for each entry.