Brocade Fabric OS Command Reference Manual - Supporting Fabric OS v5.3.0 (53-1000436-01, June 2007)
568 Fabric OS Command Reference Manual
53-1000436-01
secModeEnable
2
"5; 10:00:00:60:69:00:00:20; star1"
If a member is specified by domain or switch name, the switch must be in the
fabric or the command fails.
This operand is optional. If no operand is specified, the session becomes
interactive and you are prompted to enter FCS members.
--fcs list_of_switches Specify a list of switches for the FCS policy. Specifying "*" defaults this to all
the switches currently present in the fabric. If a member is specified by
domain or switch name, the switch must be in the fabric or the command
fails.
If the list of FCS switches is not specified, the session becomes interactive
and the user is prompted to enter FCS members.
--currentpwd Use the current passwords of the switch the command is run on (the primary
FCS switch) for root, factory, admin and user accounts. Non-FCS admin
account password is set the same as FCS admin account password. The
command does not prompt for new passwords. Only sessions whose account
password has changed are logged out. This option can be used only on a
fabric with secure mode disabled and only when the command is run on the
switch specified as the Primary FCS switch.
--lockdown[=scc |=dcc]
Create SCC and DCC policies to lockdown the fabric. SCC policy is populated
with all the switches present in the fabric when the command is executed.
DCC policies are populated with the devices present in the fabric when the
command is executed, locking down devices on a per port basis. Ports with
no devices attached to them also are locked down with an empty DCC policy
so no device can be connected to them, preserving the fabric as is. The
lockdown operand creates both SCC and DCC policies, with the optional
argument of --lockdown=scc or --lockdown=dcc, only the specified policy is
created.
This operand can be used only on a fabric with secure mode disabled and
only when the command is run on the switch specified as the primary FCS
switch.
--quickmode This option is a shorthand notation for a combination of the
--currentpwd, --lockdown, and --fcs "*" options. On successful execution of the
command, security is enabled in the fabric with all switches being FCS, all
switches having passwords identical to that of the primary FCS and SCC, and
DCC policies capturing and maintaining the current configuration of the
fabric. This option can be used only on a fabric with secure mode disabled
and only when the command is run on the switch specified as the primary
FCS switch. This option should not be used when the fabrix is connect to a FC
Router.
If no operand is specified, the session becomes interactive and the user is prompted to enter FCS
switch members and passwords.
If the --currentpwd option is not used, the session becomes interactive and the user is prompted to
enter new passwords for root, factory, admin, user, and non-FCS admin accounts.
Examples To enable secure mose with three FCS switches specified by domain, WWN, and switch name:
primaryfcs:admin> secmodeenable