Brocade Fabric OS Command Reference Manual - Supporting Fabric OS v5.3.0 (53-1000436-01, June 2007)
582 Fabric OS Command Reference Manual
53-1000436-01
secPolicyDelete
2
secPolicyDelete
Deletes an existing security policy.
Synopsis secpolicydelete "name"
Description Use this command to delete an existing defined policy.
Each policy corresponds to a management method. The list of members of a policy acts as an
access control list for that management method. When secure mode is first enabled using the
secModeEnable command, only the FCS_POLICY exists. Before a policy is created, there is no
enforcement for that management method; all access is granted. After a policy has been created
and a member has been added to the policy, that policy becomes closed to all access except from
included members. If the policy is deleted all access is granted.
The FCS_POLICY cannot be deleted through this command, since this policy must exist to maintain
secure mode.
When secure mode is enabled or when FCS policy is enabled on the switch in base FOS, this
command can be issued only from the Primary FCS switch.
Operands This command has the following operands:
"name" Specify the name of a security policy to delete. The policy name must be
enclosed in quotation marks. Valid security policy names are:
• DCC_POLICY_nnn
• TELNET_POLICY
• HTTP_POLICY
• API_POLICY
• RSNMP_POLICY
• WSNMP_POLICY
• SES_POLICY
• MS_POLICY
• SERIAL_POLICY
• FRONTPANEL_POLICY
• SCC_POLICY
• OPTIONS_POLICY
The specified policy name must be capitalized.
The DCC_POLICY_nnn name has the common prefix DCC_POLICY_ followed by a string of user
defined characters. These characters do not have to be capitalized like regular policy names.
This operand is required.
When in non-secure mode only SCC and DCC policies can be managed with this command.
After security policy is deleted, fabric-wide switch access through that method is unrestricted.
Examples To delete an existing security policy:
switch:admin> secpolicydelete "MS_POLICY"
About to delete policy MS_POLICY.