Brocade Fabric OS Command Reference Manual Supporting Fabric OS v7.0.0 (April 2011)

ManualsBrandsHP ManualsComputer AccessoriesHP Multi Protocol Blade Performance Extension LTU

891

892

893

894

895

896

897

898

899

900

Fabric OS Command Reference 865

53-1001764-01

secAuthSecret

Manages the DH-CHAP shared secret key information.

SYNOPSIS secauthsecret --show

secauthsecret --set

secauthsecret --remove value | --all

DESCRIPTION Use this command to manage the DH-CHAP shared secret key database used for authentication. This

command displays, sets, and removes shared secret key information from the database or deletes the

entire database. If you are performing set or remove operations, when the command is completed new

data is saved persistently. New data is effective with the next authentication request. The configuration

applies to a switch instance only.

Port level authentication security must be enabled before encryption configuration can be enabled.

Pre-shared secret keys should be configured on both ends of the ISL to perform authentication. For

encrypted ports, an authentication key of 32 characters is recommended. Spaces are not allowed.

NOTES The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may be in

place. Refer to Chapter 1, "Using Fabric OS Commands" and Appendix A, "Command Availability" for

details.

OPERANDS This command has the following operands:

--show

Lists the WWNs for which a shared secret is configured.

--set

Sets shared secrets with a WWN. This command is interactive. When setting

secrets for an entry of an EX_Port, the WWN of the entry must be specified.

Spaces are not allowed.

--remove [wwn | domain | swname]

Removes the specified WWN entry from the database. If a domain name is

specified, it is converted to a WWN and then the entry is removed. When

removing an entry of an EX_Port type, the WWN of the entry must be specified. If

no option is specified, the command is interactive.

--remove --all

Deletes the entire secret key database.

EXAMPLES To list the shared secret WWN:

switch:admin> secauthsecret --show

WWN DId Name

---------------------------------------

10:00:00:60:69:80:5b:e8 1 switch

To set the shared secret:

switch:admin> secAuthSecret --set

This command sets up secret keys for the DH-CHAP

authentication. The minimum length of a secret key

is 8 characters and maximum 40 characters. Setting

up secret keys does not initiate DH-CHAP