Brocade Secure Fabric OS Administrator's Guide (53-1000244-01, November 2006)

ManualsBrandsHP ManualsStorageHP StorageWorks 4/32B Full SAN Switch

100

4-20 Secure Fabric OS Administrator’s Guide

Publication Number: 53-1000244-01

A policy that has been

created is not listed by

the secPolicyShow

command.

The new policy was not

saved or activated.

Save or activate the policy changes by entering the secPolicySave

or secPolicyActivate command.

Incorrect policy name used. Verify that the correct policy name was used. Policy names must

be entered in all uppercase characters.

The message “The page

cannot be displayed” is

displayed when HTTP

access is attempted, and

response time is slow.

An HTTP policy has been

created but has no

members.

Add the desired members to the HTTP policy.

Unable to establish a

sectelnet/SSH session to

the IP address of the

active CP of a SilkWorm

24000 or 48000, or a

session to the standby CP

is disconnected when it

becomes the active CP.

sectelnet/SSH sessions

cannot be established to the

IP address of the active CP

in secure mode. This

enables enforcement of

Telnet policy for each

logical switch.

Establish a sectelnet/SSH session to the IP addresses of the logical

switches or the standby CP instead (if allowed by Telnet policy).

A security transaction

appears to have been

lost.

One of the switches in the

fabric rebooted while the

transaction was in progress.

Wait for the switch to complete booting; then, reenter the security

command on the new primary FCS switch to complete the

transaction.

Fabric segments after

secure mode is enabled

on a SilkWorm 24000 or

48000 director.

CPs failed over during

process of enabling secure

mode.

Type secModeEnable again on the segmented switch, using the

same FCS list as used before.

Secure mode cannot be

enable on edge fabric

because the RC process

fails, security data is not

downloaded, and/or

domain 1 returns false.

secModeEnable quickmode

option was used on a Fabric

that is connected to a fibre

channel router. Quickmode

attempts add fibre channel

router's front domain to the

FCS policy.

Do not use quickmode to enable a secure mode on a Fabric that has

a fibre channel router connected to it.

Secure mode cannot be

enabled because of the

password management

policy setting is not the

default value.

A switch has non-default

values for one or more of

the password management

policy settings.

Only the password management policy default values are

supported by secure mode. On each switch restore the password

policy settings to the default values by running passwdcfg --

setdefault.

Table 4-5 Recovery Processes (Continued)

Symptom Possible Causes Recommended Actions