Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)

ManualsBrandsHP ManualsStorageCisco MDS 9513 with Supervisor 2 Director Switch

601

602

603

604

605

606

607

608

609

610

Send feedback to nx5000-docfeedback@cisco.com

44-8

Cisco Nexus 5000 Series Switch CLI Software Configuration Guide

OL-16597-01

Chapter 44 Configuring FC-SP and DHCHAP

DHCHAP

Note The switch WWN identifies the physical switch. This WWN is used to authenticate the switch and is

different from the VSAN node WWN.

Configuring DHCHAP Passwords for Remote Devices

To locally configure the remote DHCHAP password for another switch in the fabric, perform this task:

The following example configures a clear text password for another switch in the fabric that is identified

by the switch WWN device name:

switch(config)# fcsp dhchap devicename 00:11:55:66:00:aa:bb:cc password 0 NewPassword

The following example configures a password entered in an encrypted format for another switch in the

fabric that is identified by the switch WWN device name:

switch(config)# fcsp dhchap devicename 00:11:22:33:55:aa:bb:cc password 7 asdflkjh

About the DHCHAP Timeout Value

During the DHCHAP protocol exchange, if the Cisco Nexus 5000 Series switch does not receive the

expected DHCHAP message within a specified time interval, authentication failure is assumed. The time

ranges from 20 (no authentication is performed) to 1000 seconds. The default is 30 seconds.

When changing the timeout value, consider the following factors:

• The existing RADIUS and TACACS+ timeout values.

• The same value must also be configured on all switches in the fabric.

Configuring the DHCHAP Timeout Value

To configure the DHCHAP timeout value, perform this task:

Command Purpose

Step 1

switch# configuration terminal

Enters configuration mode.

Step 2

switch(config)# fcsp dhchap devicename

switch-wwn password password

Configures a password for another switch in the

fabric that is identified by the switch WWN

device name.

switch(config)# no fcsp dhchap devicename

switch-wwn password password

Removes the password entry for this switch from

the local authentication database.

Command Purpose

Step 1

switch# configuration terminal

Enters configuration mode.

Step 2

switch(config)# fcsp timeout

timeout

Configures the reauthentication timeout to the specified

value. The unit is seconds.

switch(config)# no fcsp timeout

timeout

Reverts to the factory default of 30 seconds.