HP StorageWorks Fabric OS 5.0.0 Command Reference Guide (AA-RW1MA-TE, May 2005)

Fabric OS 5.0.0 command reference guide 555
Creates a new policy.
Synopsis
secpolicycreate name [,member [;member...]
Availability
admin
Description
Use this command to create a new policy. All policies can be created only once, except for the
DCC_POLICY_nnn. Each DCC_POLICY_nnn must each have a unique name.
Adding members while creating a policy is optional. You can add members to a policy later, using the
secPolicyAdd command.
Each policy corresponds to a management method. The list of members of a policy acts as an access
control list for that management method. When security mode is first enabled using the command, only
the FCS_POLICY exists. Before a policy is created, there is no enforcement for that management method;
all access is granted. After a policy has been created and a member has been added to the policy, that
policy becomes closed to all access except from included members. If all members are then deleted from
the policy, all access is denied for that management access method.
NOTE: The FCS_POLICY can only be created when enabling security mode using the command.
If a TELNET_POLICY or SERIAL_POLICY is created, that ends the current sectelnet or serial session and a
warning is issued.
This command can be issued only in secure mode and only from the primary FCS switch.
secPolicyCreate