Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)
Send feedback to nx5000-docfeedback@cisco.com
44-9
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 44 Configuring FC-SP and DHCHAP
Sample Configuration
Configuring DHCHAP AAA Authentication
You can configure AAA authentication to use a RADIUS or TACACS+ server group. If AAA
authentication is not configured, local authentication is used by default.
To configure the AAA authentication, see the “Configuring AAA” section on page 16-6.
Displaying Protocol Security Information
Use the show fcsp commands to display configurations for the local database.
The following example shows how to display the DHCHAP configuration for the specified interface:
switch# show fcsp interface fc2/4
fc2/4:
fcsp authentication mode:SEC_MODE_ON
Status: Successfully authenticated
The following example shows how to display DHCHAP statistics for the specified interface:
switch# show fcsp interface fc2/4 statistics
The following example shows how to display the FC-SP WWN of the device connected to the specified
interface:
switch# show fcsp interface fc2/1 wwn
The following example shows how to display the hash algorithm and DHCHAP groups configured in the
switch:
switch# show fcsp dhchap
The following example shows how to display the DHCHAP local password database:
switch# show fcsp dhchap database
Tip Use the ASCII representation of the device WWN to configure the switch information on RADIUS and
TACACS+ servers.
Sample Configuration
This section provides the steps to configure the example illustrated in Figure 44-2.
Figure 44-2 Sample DHCHAP Authentication
187234
Password sent by NX-5000 to MDS-9509
Password sent by MDS-9509 to NX5000
int fc 1/6 int fc 4/5
MDS-9509
Oregon