Brocade Fabric OS Command Reference Manual - Supporting Fabric OS v5.3.0 (53-1000436-01, June 2007)
Fabric OS Command Reference Manual 41
53-1000436-01
authUtil
2
authinit [<slotnumber>/]<portnumber>, [<slotnumber>/<portnumber>...| allE>]
Restarts authentication after changing the DH-chap group, hash type, and
shared secret between a pair of switches. This CLI works independent of the
authentication policy, that means you can initiate the authentication even if
the switch is in OFF or Auto Passive mode. This CLI requests for confirmation
and prints a general disclaimer/ warning message that the usage will be
disastrous and may bring down the E-port if the DH chap shared secrets are
not installed properly. Authentication proceeds only if you accept the warning.
This command does not work on Private, Loop, NPIV, and FICON devices.
Values include:
slotnumber Specify the slot number for slot-bases switches.
portnumber For directors, use slot/port format for specifying the port number.
allE Specify all E_ports in the switch.
Without any specified operands, the command displays the usage.
Examples To display authentication configuration on the switch:
switch:admin> authutil --show
AUTH TYPE HASH TYPE GROUP TYPE
--------------------------------------
fcap,dhchap sha1,md5 0,1,2,3,4
To set DH-CHAP as the authentication protocol:
switch:admin> authutil --set -a dhchap
Authentication is set to dhchap.
To set both protocols in order of FCAP and then DH-CHAP:
switch:admin> authutil --set -a all
Authentication is set to fcap,dhchap.
To set DH group 3:
switch:admin> authutil --set -g 3
DH Group was set to 3.
To set all DH groups to be specified in auth negotiate in order of 0, 1, 2, 3, and 4:
switch:admin> authutil --set -g "*"
DH Group is set to 0,1,2,3,4
To restart authentication for a director based switch, use the slot and port format for specifying the
port number:
switch:admin> authutil --authinit 0/s1, 0/2
See Also portShow, secAuthSecret