manualshive.com logo in svg

HP McDATA, User Manual

The user manual for the HP McDATA product is available for free download on our website. This comprehensive manual provides detailed instructions and essential information for users to efficiently utilize the product. Access the manual at manualshive.com to enhance your experience with the HP McDATA device.

Share
Download
background image

54

Configuring RADIUS servers

IMPORTANT:

RADIUS server support is available only with the McDATA SANtegrity Enhanced PFE key 

and can be managed only with the CLI and Element Manager. Element Manager also requires a PFE key. 
See ”

Installing Product Feature Enablement keys

” on page 82 for more information about installing a PFE 

key. To obtain the McDATA 4Gb SAN Switch serial number and PFE key, follow the step-by-step instructions 
on the 

firmware feature entitlement request certificate

 for the PFE key. You can obtain a PFE key from the 

web at: 

www.webkey.external.hp.com

.

A RADIUS server authenticates users and devices using a challenge/response protocol over a secure SSL 
connection. Basic implementations consist of a central RADIUS server containing a database of authorized 
users as well as authentication information. A RADIUS client wishing to verify the authenticity of a user 
issues a challenge to the user and collects the response to the challenge. This information is forwarded to 
the RADIUS server for authentication and the server responds with the results, either an accept or reject. 

The RADIUS client does not need to be configured with any user authentication information, this all resides 
on the RADIUS server and can be managed centrally and separately from the clients. In addition, no 
passwords are exchanged between the RADIUS server and its clients. Authentication of requests from a 
RADIUS client to the server and responses from the server to a client can also be authenticated. This 
requires sharing a secret between the server and client.

The accounting RADIUS supports the auditing of the users and switch services such as Telnet, FTP, and 
switch management applications. The RADIUS Accounting Server enables (True) or disables (False) the 
auditing of activity during a user session. The default is False. When enabled, user activity is audited 
whether UserAuthServer is enabled or not. The accounting server UDP port number is the ServerUDPPort 
value plus 1 (default 1813).

Configuring RADIUS servers involves the following tasks:

Adding a RADIUS server

, page 55

Removing a RADIUS server

, page 56

Editing RADIUS server information

, page 57

Modifying RADIUS server authentication order

, page 58

                                                                                           

Summary of Contents for McDATA

Page 1: ...McDATA 4Gb SAN Switch for HP p Class BladeSystem user guide Part number AA RW20C TE Third edition November 2006 ...

Page 2: ...only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services Nothing herein should be construed as constituting an additional warranty HP shall not be liable for technical or editorial errors or omissions contained herein Firefox is a registered trademark of Mozilla Foundation Java is a registered trademark of Sun Microsystem...

Page 3: ...ATA Web Server Fabric tree 19 Graphic window 19 Data windows and tabs 20 Selecting switches 20 Selecting ports 20 2 Managing Fabrics 21 Securing a fabric 21 Security consistency checklist 21 Connection security 22 User account security 22 Remote authentication 22 Device security 23 Edit Security dialog 24 Create Security Set dialog 25 Create Security Group dialog 25 Create Security Group Member di...

Page 4: ...finitions 43 Managing the active zone set 43 Displaying the configured and active zone sets 44 Creating a zone set 45 Activating and deactivating a zone set 45 Removing a zone from a zone set 45 Removing a zone set 45 Managing zones 46 Creating a zone in a zone set 46 Adding zone members 47 Renaming a zone or a zone set 47 Removing a zone member 47 Removing a zone from a zone set 48 Merging fabric...

Page 5: ...trap configuration 77 Archiving a switch 78 Switch binding 78 Restoring a switch 79 Restoring the factory default configuration 80 Downloading a support file 81 Installing Product Feature Enablement keys 82 Installing firmware 83 Displaying hardware status 84 4 Managing ports 85 Port information data window 85 Port statistics data window 88 Viewing and configuring ports 91 Port symbolic name 91 Po...

Page 6: ...log 68 31 Advanced switch properties dialog 72 32 System services dialog 73 33 Network properties dialog 75 34 SNMP Properties dialog 76 35 Restore Dialogs Full Restore and Selective Restore tab pages 79 36 Features Licenses dialog 82 37 Add License Key dialog 82 38 Hardware status LEDs 84 39 Port Information data window 85 40 Port Statistics data window 88 41 Port Properties dialog 91 42 Port Dia...

Page 7: ...ing ports on page 85 describes port management tasks of the McDATA Web Server and Element Manager A glossary of terms and an index are also provided Intended audience This manual introduces the switch management products and explains their installation and use It is intended for users responsible for installing and using switch management tools Prerequisites Prerequisites for using this product in...

Page 8: ... permitted provided that the following conditions are met 1 Redistributions of source code must retain the above copyright notice this list of conditions and the following disclaimer Table 1 Document conventions Convention Element Medium blue text Figure 1 Cross reference links and e mail addresses Medium blue underlined text http www hp com Web site addresses Bold font Key names Text typed into a...

Page 9: ...ITS OR BUSINESS INTERRUPTION HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY WHETHER IN CONTRACT STRICT LIABILITY OR TORT INCLUDING NEGLIGENCE OR OTHERWISE ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE This software consists of voluntary contributions made by many individuals on behalf of the JDOM Project and was originally created by Brett McLa...

Page 10: ...sites For other product information see the following HP web sites http www hp com http www hp com go storage http www hp com support http www docs hp com http h71028 www7 hp com enterprise cache 80316 0 0 0 121 html ...

Page 11: ...or a single fabric consisting of McDATA 4Gb SAN switches HP StorageWorks M Series switches or McDATA switches References to HAFM in this document also apply to EFCM IMPORTANT Element Manager is available only with the Element Manager Product Features Enablement PFE key See Installing Product Feature Enablement keys on page 82 for information about installing a PFE key To obtain the McDATA 4Gb SAN ...

Page 12: ...lt password Click the OK button This dialog will prompt you to change the default password each time you log in until you change it See Managing user accounts on page 49 for information about changing the password 5 Select Switch Network Properties 6 Change the IP Address Subnet Mask and Gateway settings to reflect your desired network configuration in the Network Properties dialog 7 Click OK 8 Cl...

Page 13: ...ing and using HAFM To start Element Manager in HAFM add the switch IP address to the discovery list Locate and double click the switch in the fabric map to open You can also select the switch and select Element Manager from the application list HAFM displays the Element Manager window shown in Figure 1 Figure 1 Element Manager window Exiting McDATA Web Server or Element Manager To exit a McDATA We...

Page 14: ...ll be displayed If the Event Browser is disabled when McDATA Web Server is started and later enabled only those events from the time the Event Browser was enabled and forward will be displayed Choose the default port view when opening the faceplate display You can set the faceplate to reflect the current port type default port speed port operational state or port transceiver media Regardless of th...

Page 15: ...enabling this function through the Element Manager for the individual switch At the bottom of HAFM desktop window is an icon that indicates whether the call home feature is enabled An X over the phone icon indicates that the call home feature is disabled To enable call home support for system problems using Element Manager 1 Select File HAFM Settings 2 Select Call Home Support in the pull down men...

Page 16: ...witch and its ports The fabric name is displayed for reference in the fabric tree above the switch names Click a switch name or icon to display a different switch faceplate in the graphic window Information displayed in the data windows corresponds to the data window tab selected The Element Manager application uses a modified faceplate display with fewer menus no fabric tree and fewer data window...

Page 17: ...e Time Switch Properties Advanced Switch Properties Services Switch Binding Security Consistency Checklist Network Properties SNMP Properties Toggle Beacon Port Threshold Alarm Configuration Load Firmware Reset Switch Restore Factory Defaults Features Radius Servers1 Download Support File Port Port Properties Advanced Port Properties Reset Port Port Diagnostics Port Properties Advanced Port Proper...

Page 18: ...ort and Blade Shortcut keys Shortcut key combinations provide an alternative method of accessing menu options in the web applet For example to open the Preferences dialog press Alt F then press R The shortcut key combinations are not case sensitive Wizards Configuration Wizard Same as McDATA Web Server Help Help Topics About Same as McDATA Web Server 1 Requires SANtegrity PFE key and Secure Socket...

Page 19: ...ndicate operational status A green icon indicates normal operation A yellow icon indicates that a switch is operational but may require attention to maintain maximum performance A red icon indicates a potential failure or non operational state as when the switch is offline A blue icon indicates that a switch is unknown unreachable or unmanageable through the McDATA 4Gb SAN Switch If the status of ...

Page 20: ...figured Zonesets data window on page 64 Active Zoneset Displays the active zone set for the fabric including zones and their member ports This data window is available only in McDATA Web Server See Displaying the configured and active zone sets on page 44 for more information about this data window See Zoning concepts on page 37 for information about zone sets and zones Configured Security Display...

Page 21: ...ecurity consistency checklist is available only with Element Manager which requires the Element Manager PFE key See Installing Product Feature Enablement keys on page 82 for more information about installing a PFE key To obtain the McDATA 4Gb SAN Switch serial number and PFE key follow the step by step instructions on the firmware feature entitlement request certificate for the PFE key You can obt...

Page 22: ...ount and password when you attempt to add a fabric using McDATA Web Server or log in to a switch through Telnet Your system administrator defines accounts passwords and authority levels that are stored on the switch See Managing user accounts on page 49 for more information The Admin account possesses Admin authority which grants full access to all tasks of the McDATA Web Server menu system The sw...

Page 23: ...f each group type The security configuration is made up of all security sets on the switch In addition to authorization the switch can be configured to require authentication to validate the identity of the connecting switch device or host Authentication can be performed locally using the switch security database or remotely using a RADIUS server With a RADIUS server the security database for the ...

Page 24: ...and select an option in the Edit menu or right click on a security item in the graphic window and select an option from the popup menus The orphan security set contains the security groups and members that don t belong to a user defined security set Excluding the orphan security set you can only have 1 group type in a security set The three types of security groups are ISL Default E_Port authentic...

Page 25: ...m the popup menu 3 Enter a name for the new security set The naming conventions for security sets are Must start with a letter All alphanumeric chars aA zZ 0 9 The symbols _ and are the only symbols allowed 4 Click OK to save the change Create Security Group dialog Use the Create Security Group dialog shown in Figure 7 to add a security group to a security set To open the Create a Security Group d...

Page 26: ...art with a letter All alphanumeric chars aA zZ 0 9 The symbols _ and are the only symbols allowed 4 Click OK to save the change Create Security Group Member dialog Use the Create Security Group Member dialog shown in Figure 8 to add a member to a security group Choose options from the Group Member or manually enter a hex value and Authentication drop down lists and enter values in the Secret and B...

Page 27: ...wing to open the Edit Security dialog from the faceplate display Click Security on the tool bar Select Security Edit Security 2 Choose one of the following to open the Create a Security Group Member dialog Click a security group in the graphic window of the Edit Security dialog Click Security Member in the tool bar Right click on a security group in the graphic window of the Edit Security dialog S...

Page 28: ...curity set group or member Select the item to remove and select a remove option from the Edit menu Click OK in the Remove dialog to remove that item from the security file and save the changes Clear security Select the Security Sets directory name Select Edit Clear Security Click OK in the Remove dialog to remove all security sets and save the changes You can also right click on the Security Sets ...

Page 29: ...he expected domain ID of a switch to be verified before being allowed to attach to the fabric NOTE The fabric binding feature must be enabled on all switches in the fabric When enabling this feature it is best to set the switch state to offline enable the fabric binding feature on all switches and then set the switch state to online 4 Click OK to save the settings and close the Security Config dia...

Page 30: ...s enabled using the System Services or SNMP Properties dialogs If SNMP is enabled default and the read and write community strings have not been changed from their defaults you risk unwanted access to the switch See Enabling SNMP configuration on page 30 for more information SNMP is enabled by default In band management is the ability to manage switches across Inter switch Links ISL using McDATA W...

Page 31: ... Event Browser is 10 000 The maximum number of entries allowed on a switch is 1200 Once the maximum is reached the event list wraps and the oldest events are discarded and replaced with the new events Event entries from the switch use the switch time stamp while event entries generated by the web applet have a workstation time stamp You can filter sort and export the contents of the Event Browser ...

Page 32: ...ort By Severity By Timestamp By Source By Type or By Description Table 4 Severity levels Severity Icon Description Alarm an alarm is a serviceable event This means that attention by the user or field service is required Alarms are posted asynchronously to the screen and cannot be turned off If the alarm denotes that a system error has occurred the customer and or field representative will generall...

Page 33: ...lay only those events that fall within those times aa indicates AM or PM The current year yy can be entered as either 2 or 4 digits For example 12 12 03 will be interpreted December 12 2003 Text select one or more of the corresponding options and enter a text string case sensitive for event source type and description The Event Browser displays only those events that satisfy all of the search spec...

Page 34: ...dow Figure 12 Devices data window Table 5 describes the entries in the Devices data window Table 5 Devices Data Window Entries Entry Description Port WWN Port world wide name Nickname Device port nickname To create a new nickname or edit an existing nickname double click the cell and enter a nickname in the Edit Nickname dialog See Managing device port nicknames on page 35 for more information Det...

Page 35: ...the Nicknames xml file on other workstations Nicknames are saved to an XML file stored on the switch If different nickname files exist on other McDATA 4Gb SAN Switches in the fabric you will be prompted to resolve differences before the Nicknames dialog will be displayed A series of dialogs is presented to resolve differences between the nicknames stored on that switch with nicknames stored on oth...

Page 36: ...pen the Edit Nickname dialog In the Edit Nickname dialog edit the nickname and click OK 3 Click Apply to save the changes and exit the Nicknames dialog 4 In the Save Nicknames dialog click Save then click Close Deleting a nickname To delete a device port nickname 1 Select Fabric Nicknames to open the Nicknames dialog 2 Choose one of the following methods Double click a cell in the Nicknames column...

Page 37: ...ts and properties page 39 Zones Zoning divides the fabric for purposes of controlling discovery and inbound traffic A zone is a named group of ports or devices Members of the same zone can communicate with each other and transmit outside the zone but cannot receive inbound traffic from outside the zone Zoning is hardware enforced on a switch port if the sum of the logged in devices plus the device...

Page 38: ...copies of the zoning database one copy is maintained in temporary memory for editing purposes the second copy is maintained in permanent memory Zoning database edits are made on an individual switch basis and are not propagated to other switches in the fabric when saved When a zone set is activated it is propagated and saved to temporary memory in each switch in the fabric If the Interop Auto Save...

Page 39: ...ch This will be enforced during the configuration of zoning and during a zoning database merge from the fabric MaxZones is 2047 The maximum number of zones that can be configured on the switch This will be enforced during the configuration of zoning and during a zoning database merge from the fabric MaxTotalMembers is 10 000 The maximum number of total zone members that can be configured on the sw...

Page 40: ...e zone set to your needs and then activate that updated zone set to apply the changes to the fabric When you activate a zone set the switch distributes that zone set to the temporary zoning database on every switch in the fabric However in addition to the merged active zone set each switch maintains its own original zone set in its zoning database NOTE If the Interop Auto Save parameter is enabled...

Page 41: ...nes or zone sets Click Save Zoning to implement the changes Click Close to close the Error Check dialog Click Close in the Edit Zoning dialog to close the Edit Zoning dialog Table 6 Edit zoning dialog tool bar buttons and icons Button Icon Description Create Zone Set button Create a new zone set Create Zone button Create a new zone Add Member button Add selected port device to a zone Remove Member...

Page 42: ...ving the Interop Auto Save parameter disabled can disrupt device configurations should a switch have to be reset For this reason the Interop Auto Save parameter should be enabled in a production environment Default zone The Default Zone parameter enables True or disables False communication among ports devices that are not defined in the active zone set or when there is no active zone set This par...

Page 43: ...t Edit Clear Zoning Click Yes to confirm that you want to delete all zones and zone sets in the Removes All dialog Right click the Zone Sets heading at the top of the Zone Sets tree Select Clear Zoning from the popup menu Click Yes to confirm that you want to delete all zone sets and zones Managing the active zone set Zoning a fabric involves creating a zone set creating zones as zone set members ...

Page 44: ...es A zone set entry expands to show its member zones A zone entry expands to show its member ports devices The Configured Zonesets data window shown in Figure 16 displays all zone sets zones and zone membership in the zoning database To open the Configured Zoneset data window click the Configured Zoneset tab below the data window Figure 16 Configured zonesets data window The Active Zoneset data wi...

Page 45: ...ll fabric zoning that results in no communication among devices It is not necessary to deactivate the active zone set before activating a new one To deactivate the active zone set 1 Select Zoning Deactivate Zone Set to open the Deactivate Zone Set dialog 2 Acknowledge the warning about traffic disruption 3 Click Yes to confirm that you want to deactivate the active zone set Removing a zone from a ...

Page 46: ...ng Edit Zoning to open the Edit Zoning dialog 2 Select a zone set in which to create a zone 3 Select Edit Create a Zone 4 Enter a name for the new zone in the Create a Zone dialog The new zone name is displayed in the Zone Sets dialog A zone name must begin with a letter and be no longer than 64 characters Valid characters are 0 9 A Z a z _ and 5 Click OK NOTE If you enter the name of a zone that ...

Page 47: ...ber or 4 digits for a Domain Port member DDPP Domain IDs can be 97 127 when interop mode is set to Standard or1 31 when interop mode is set to McDATA Fabric mode 3 Click OK to display the Error Check dialog 4 Click Error Check to check for zoning conflicts such as empty zones or zone sets 5 Click Save Zoning to implement the changes 6 Click Close to close the Error Check dialog 7 Click Close to cl...

Page 48: ...System command line interface guide for information about the Show Port command A zone merge will fail if the two active zone sets have member zones with identical names that differ in membership or type For example consider Fabric A and Fabric B each with a zone named ZN1 in its active zone set Fabric A ZN1 contains a member specified by Domain ID 1 and Port 1 Fabric B ZN1 contains a member speci...

Page 49: ...dify their own password Select Switch User Accounts to open the User Account Administration dialog A user account consists of the following Account name or login Password Authority level Expiration date Switches come from the factory with the following user accounts The Admin account is the only user that can manage all user accounts with the User Account Administration dialogs The Admin account c...

Page 50: ...New Account Login field Account names are limited to 15 characters 4 Select the Admin Authority Enabled option if the account is to have the ability to modify switch configurations 5 Enter a password in the New Password field and enter it again in the Verify Password field A password must have a minimum of 8 characters and no more than 20 6 Select the Permanent Account option if this account is to...

Page 51: ...splay to open the User Account Administration dialog 2 Click the Remove Account tab to open the Remove Account tab page shown in Figure 19 3 Select the account login name from the list of accounts at the top of the dialog 4 Click Remove Account 5 Click Close to close the User Account Administration dialog Figure 19 User Account Administration Dialog Remove Account tab page ...

Page 52: ...n account on a switch 1 Select Switch User Accounts in the faceplate display to open the User Account Administration dialog 2 Click the Change Password tab to open the Change Password tab page shown in Figure 20 3 Select the account login name from the list of accounts at the top of the dialog 4 Enter the old password enter the new password and re enter the new password 5 Click Change Password 6 C...

Page 53: ...shown in Figure 21 3 Select the account login name from the list of accounts at the top of the dialog 4 Select the Admin Authority Enabled option to grant admin authority to the account name 5 Select an Account Expiration Date option If the account is not to be permanent enter the number of days until the account expires 6 Click Modify Account to save the changes 7 Click Close to close the User Ac...

Page 54: ...S server for authentication and the server responds with the results either an accept or reject The RADIUS client does not need to be configured with any user authentication information this all resides on the RADIUS server and can be managed centrally and separately from the clients In addition no passwords are exchanged between the RADIUS server and its clients Authentication of requests from a ...

Page 55: ...r of seconds the RADIUS client will wait for a response from the RADIUS server before retrying or giving up on a request 7 Enter the number of retries in the Retries field This is the maximum number of times the RADIUS client will retry a request sent to the primary RADIUS server 8 Select Sign Packet to enable the switch to include a digital signature Message Authenticator in all RADIUS access req...

Page 56: ...Remove Server tab page To remove a RADIUS server 1 Select Switch Radius Servers in the faceplate display 2 Click the Remove Server tab in the Radius Server Information dialog shown in Figure 23 3 Select the server to be removed in server list at the top of the dialog 4 Click Remove Server to remove the server 5 Click Close to close the Radius Server Information dialog ...

Page 57: ...f a RADIUS server 1 Select Switch Radius Servers in the faceplate display 2 Click the Edit Server tab in the Radius Server Information dialog shown in Figure 24 3 Select the server to be edited in server list at the top of the dialog 4 Make changes to the IP Address UDP Port Timeout Retries and Secret fields 5 Select the server type Device User Account and Sign Packet options 6 Click Edit Server t...

Page 58: ...e modified in server list at the top of the dialog 4 Make changes to the Device Authentication Order or User Authentication Order drop down lists Select one of the following a Local Only attempts to authenticate using local switch password database b RADIUS Only attempts to authenticate using the RADIUS server another computer that provides authentication c RADIUS Local Attempts to authenticate us...

Page 59: ...sh Press the F5 key Right click in the graphic window of the faceplate display Select Refresh Switch from the popup menu Switch event log You can display the switch event log using the Event Browser To open the Event Browser from McDATA Web Server select Fabric Show Event Browser To open the Event Browser from Element Manager select View Show Event Browser See Displaying the event browser on page ...

Page 60: ...h model First Port Address Switch Fibre Channel address World Wide Name Switch world wide name Serial Number Number assigned to each chassis Reason for Status Additional status information Vendor Switch manufacturer MAC Address Media Access Control address Negotiated Domain ID The domain ID currently being used by the fabric Configured Domain ID The domain ID defined by network administrator Domai...

Page 61: ...eded Warning Temperature Temperature threshold 65 Celsius above which a warning condition alarm is generated Failure Temperature Temperature threshold 70 Celsius above which a failure condition alarm is generated Diag Status Diagnostic status Diag Fault Code Not applicable Test Status Not applicable Test Fault Code Not applicable Network IP Address Internet Protocol address Subnet Mask Mask that d...

Page 62: ...try switch See Displaying detailed device information on page 35 for information about displaying FDMI information FDMI HBA Entry Limit Maximum number of Host Bus Adapters HBA that can be registered with a switch Embedded GUI Enabled McDATA Web Server web applet status Enables or disables the web applet on the switch Inactivity Timeout Number of minutes the switch waits to terminating an idle comm...

Page 63: ...are enforcement of zoning regardless of type All zones and all supported zone member types will have hardware enforcement Advanced R_A_TOV Resource allocation timeout value E_D_TOV Error detect timeout value Number of Donor Groups Total number of donor port groups A donor group is a set of ports on a switch that can donate buffer credits to each other Inactivity Timeout Number of minutes the switc...

Page 64: ...n for the selected ports Click the Port Info data window tab in the faceplate display to open the Port Statistics data window See Port information data window on page 85 for a description of the Port Information data window entries McDATA Web Server Configured Zonesets data window The McDATA Web Server Configured Zonesets data window displays all zone sets zones and zone membership in the zoning d...

Page 65: ...and enable or disable an individual alarm Figure 28 Port Threshold Alarm Configuration dialog 3 Select the Enable All Port Threshold Alarms option to enable monitoring for all the individual alarm types that are enabled The Enable All Port Threshold Alarms option is the master control for the individual alarms For example the switch will monitor Cyclic Redundancy Check CRC errors only if both the ...

Page 66: ... date and time stamps in alarms and log entries An Ethernet connection to an NTP server is required When date time is set or displayed in the firmware it is displayed based on the time zone configured However when displayed in the Date Time dialog the value is always in local time The difference between switch and workstation times must not exceed 24 hours or the switch management application can ...

Page 67: ...d devices Adding moving or removing ISLs or other connections After an NDCLA operation is complete management connections must be re initiated McDATA Web Server or Element Manager sessions will re connect automatically Telnet sessions must be restarted manually Applicable code versions Future switch code releases will be upgraded non disruptively unless specifically indicated in its associated rel...

Page 68: ...erties page 72 System services page 73 Network properties page 75 SNMP properties page 76 Switch properties Use the Switch Properties dialog to change the following switch configuration parameters Domain ID and domain ID lock page 69 Syslog page 70 Symbolic name page 70 Switch administrative states page 71 Broadcast support page 71 In band management page 71 Fabric Device Management Interface page...

Page 69: ...ment utility is used The valid Domain ID range while in standard mode default is 97 127 McDATA Web Server and CLI will display this as 97 127 HAFM will display this as 1 31 Prior to changing from Standard mode to McDATA Fabric mode it is recommended that the switch be isolated from the fabric take switch offline before making the configuration changes and all domain IDs in the fabric should be not...

Page 70: ...host must contain an entry that specifies the name of the log file in which to save error messages Add the following line to the syslog conf file A tab separates the selector field local0 info and action field that contains the log file path name var adm messages messages name local0 info tab var adm messages name Symbolic name The symbolic name is a user defined name of up to 32 characters that i...

Page 71: ... Broadcast for FC SW 3 T11 Presentation Number T11 02 031v0 Fabric Shortest Path First FSPF is used to set up a fabric spanning tree used in transmission of broadcast frames Broadcast frames are retransmitted on all ISLs indicated in the spanning tree and all online N_Ports and NL_Ports When a broadcast frame is received these zones are enforced at the N_Ports and NL_Ports If the originator of the...

Page 72: ...about itself to the switch when the HBA logs into the switch If FDMI is enabled on a switch the switch stores the HBA information in its FDMI database Disabling FDMI on a switch clears the FDMI database If you disable FDMI on a switch then re enable it you must reset the ports to cause the HBAs to log in again and thus forward HBA information to the switch Click the Devices data window tab and cli...

Page 73: ...abric Mode Valid domain IDs are 1 31 Enabling the 239 Domain Support option extends the valid domain IDs to 1 239 for both Standard and McDATA Fabric Mode settings However all switches in the fabric must support 239 domain IDs System services The System Services dialog provides a central location for you to enable or disable any of the external user services such as SNMP Secure Sockets Layer SSL S...

Page 74: ... time and validated with the workstation s date time If the Switch and workstation date time are not synchronized invalid certificates will be generated and prevent an SSL connection from being established between the switch and the management application To disable SSL when using a user authentication RADIUS server the RADIUS authentication order must first be set to Local Telnet CLI Allows users...

Page 75: ...BootP Acquires the IP configuration from a BootP server If no IP address is obtained the switch reverts to the previously configured IP address RARP Reverse Address Resolution Protocol Acquires the IP address from a RARP server A RARP request is broadcast with up to three retries each at 5 second intervals If no IP address is obtained the switch reverts to the previously configured IP address DHCP...

Page 76: ...s Right click a switch graphic in the faceplate display and select SNMP Properties from the popup menu Making any changes Click OK to put the new values into effect NOTE Since read community trap community and write community settings are like passwords and are write only fields the current settings are displayed as asterisks Figure 34 SNMP Properties dialog SNMP properties are divided into the fo...

Page 77: ...ers for the switch location The default is undefined Authentication Trap Enables or disables the reporting of SNMP authentication failures If enabled a notification trap is sent when incorrect community string values are used The default value is False Write Community Write community password up to 32 characters that authorizes an SNMP client to write information to the switch This is a write only...

Page 78: ...nt Manager also requires a PFE key See Installing Product Feature Enablement keys on page 82 for more information about installing a PFE key To obtain the McDATA 4Gb SAN Switch serial number and PFE key follow the step by step instructions on the firmware feature entitlement request certificate for the PFE key You can obtain a PFE key from the web at www webkey external hp com Switch binding estab...

Page 79: ...an severely disrupt the fabric After the restore process is complete the switch can be reconnected to the fabric The Restore dialog consists of the Full Restore tab page and Selective Restore tab page To restore a switch 1 Log in to the fabric through the switch you want to restore You cannot restore a switch over an ISL 2 Select Switch Restore in the faceplate display to open the Restore dialog s...

Page 80: ... and the file contains zone sets a dialog prompts you to activate one of those zone sets Click Yes Select a zone set from the drop down list in the Select Zone Set to be Activated dialog 6 Click OK and view the results in the top pane of the Restore dialog Restoring the factory default configuration You can restore the switch and port configuration settings to the factory default values Select Swi...

Page 81: ...rt file to your workstation Observe the status in the Status area 5 Click Close to close the Download Support File dialog after the support file is saved to your workstation FDMI HBA Entry Level 1000 Subnet Mask Address 255 0 0 0 Gateway Address 10 0 0 254 Network Discovery Static Remote Logging False Remote Logging Host Ip Address 10 0 0 254 NTP Client Enabled False NTP Server IP Address 10 0 0 2...

Page 82: ...ATA 4Gb SAN Switch serial number and PFE key follow the step by step instructions on the firmware feature entitlement request certificate for the PFE key You can obtain a PFE key from the web at www webkey external hp com To install a PFE key 1 Add a fabric with the IP address of the switch on which you want to install the PFE key 2 Open the faceplate display of the switch on which you want to ins...

Page 83: ...ons must be restarted manually When you need to do NDCLA hot reset to multiple switches only perform the NDCLA hot reset on one switch at a time and allow a 75 second wait before performing the NDCLA hot reset operation on the next switch CAUTION Changes to the fabric may disrupt the NDCLA process Common administrative operations that change the fabric include zoning modifications adding moving or...

Page 84: ...er in the faceplate display Power LED Indicates the voltage status of the switch Heartbeat LED Indicates the general status of the internal switch processor and the results of the POST System Fault LED Indicates an error such as an over temperature condition internal system error voltage fault or corrupt configuration Figure 38 Hardware status LEDs ...

Page 85: ...port page 95 Testing ports page 95 NOTE External ports are numbered 0 and 9 internal ports are numbered 1 8 Port information data window The Port Information data window shown in Figure 39 displays detailed port information for the selected ports To open the Port Information data window click the Port Info data window tab Figure 39 Port Information data window Information in the Port Information d...

Page 86: ...tch reset Operational Port State The port state that is currently active This value may be different from the administrative port state for example due to an error condition Configured Administrative Port State The port state Online Offline Diagnostics or Down that is saved in the switch configuration either by the user or at the factory This value is persistent it will be maintained during a swit...

Page 87: ...bitrate for access Applies only to ports running in loop FL mode Port Binding Not applicable Extended Credits Not applicable Media Media Type The transceiver fibre type such as single mode multi mode copper Media The transceiver type Media Speed The maximum transceiver speed Media Transmitter The transceiver transmitter type such as longwave shortwave electrical Media Distance The maximum transcei...

Page 88: ...lear Baseline to set the current baseline when viewing baseline statistics The baseline will also be set when the switch status changes from unreachable to reachable Table 18 describes the Port Statistics data window entries Table 18 Port statistics data window entries Entry Description Start Time The beginning of the period over which the statistics apply The start time for the Absolute view is n...

Page 89: ... is from the 10 bit characters and special K characters Ep Connects Number of E_Port logins FBusy Number of class 2 and class 3 fabric busy F_BSY frames generated by this port in response to incoming frames This usually indicates a busy condition on the fabric or N_port that is preventing delivery of this frame Flow Errors Number of times a frame is received and all the switch ports receive buffer...

Page 90: ...ence primitives received by the port Total Errors Total number of primitive and non primitive port link errors Total Link Resets Number of link reset primitives transmitted and received by the port Total LIPs Received Number of loop initialization primitive frames received Total LIPs Transmitted Number of loop initialization primitive frames transmitted Tx Offline Sequences Number of offline primi...

Page 91: ...Port symbolic name page 91 Port states page 92 Port types page 93 Port speeds page 94 Port transceiver media status page 94 Device scan page 94 The port settings are configured using the Port Properties dialog shown in Figure 41 To open the Port Properties dialog select one or more ports then select Port Port Properties Figure 41 Port Properties dialog NOTE Use the Select to Propagate Changes to E...

Page 92: ... SAN Switch for HP p Class BladeSystem command line interface guide for more information To view the operational state select View View Port States To change port administrative state 1 Select one or more ports in the faceplate display 2 Select Port Port Properties to open the Port Properties dialog 3 Select the option that corresponds to the port state you want 4 Click OK to write the new port st...

Page 93: ...es to open the Port Properties dialog 3 Select Port Type from the drop down list 4 Click OK to write the new port type to the switch Table 20 Port types State Description F_Port Fabric port supports a single public device N_Port FL_Port Fabric loop port self discovers a single device N_Port or a loop of up to 126 public devices NL_Port G_Port Generic port self discovers as an F_Port or an E_Port G...

Page 94: ...e the new port speed to the switch Port transceiver media status Table 22 lists the port media states and their meanings for the two external ports Select View View Port Media to display transceiver media status Device scan The Device Scan feature queries the connected device during login for FC 4 descriptor information Disable this parameter only if the scan creates a conflict with the connected ...

Page 95: ...fy device WWNs 1 Select a single port on the faceplate display 2 Select Port Port Binding to open the Port Binding dialog 3 Click the Port Binding checkbox to enable port binding 4 Select each device WWN from the WWN pull down menu and click Add To remove a WWN select the WWN in the WWN List and click Remove 5 Click OK Resetting a port The Reset Port option reinitializes the port using the saved c...

Page 96: ...ween the port and its device node or device loop The port being tested must be online and connected to a remote device The port passes the test if the frame that was sent by the ASIC matches the frame that was received This test requires that the port be online and therefore does not disrupt communication To run the diagnostics tests on a port 1 Select the port to be tested in the faceplate displa...

Page 97: ...ies If you connect the last switch back to the first switch you create a cascade with a loop topology CHAP Challenge Handshake Authentication Protocol Class 2 service A service that multiplexes frames at frame boundaries to or from one or more N_Ports wit h acknowledgment provided Class 3 service A service that multiplexes frames at frame boundaries to or from one or more N_Ports without acknowled...

Page 98: ...on Formerly known as the Force PROM button Momentary button on the switch used to reset the switch or place the switch in maintenance mode Maintenance mode Formerly known as force PROM mode Maintenance mode sets the IP address to 10 0 0 1 and provides access to the switch for maintenance purposes Management Information Base MIB A set of guidelines and definitions for SNMP functions Management work...

Page 99: ... Management Protocol Target A storage device that responds to an initiator device User account An object stored on a switch that consists of an account name password authority level and expiration date VCCI Voluntary Control Council for Interference World Wide Name WWN A unique 64 bit address assigned to a device by the device manufacturer WWN World Wide Name Zone Zoning divides the fabric for pur...

Page 100: ...100 ...

Page 101: ...65 current administrative state 71 D data window Active Security 30 Active Zoneset 44 Configured Zonesets 44 64 description 20 Devices 34 59 port information 85 port statistics 88 data window continued switch 60 database zoning 40 date 66 Decode error 65 default configuration 80 visibility 45 zoning 43 device authentication 54 nickname 36 scan 94 security 23 Devices data window 34 59 diagnostics p...

Page 102: ...net browser 12 interoperability 73 IP address 75 configuration 75 ISL monitoring 65 L loop port 93 loopback test 95 loss of signal monitoring 65 M Management Server 74 McDATA Web Server start 12 user interface 16 media status 94 memory workstation 12 N NDCLA See Non disruptive code load and activation network discovery 75 properties 75 Network Time Protocol description 66 service 74 nickname creat...

Page 103: ... SerDes level test 96 services 73 severity levels 32 SFP level test 96 Simple Network Management Protocol configuration 77 enable 30 77 properties 76 proxy 77 service 74 trap configuration 77 static boot method 75 status icon color 19 subnet mask address 75 Subscriber s choice HP 9 support file 81 switch administrative state 71 advanced properties 72 binding 78 configuration 68 displaying informat...

Page 104: ... community 77 Z zone add member port 47 definition 37 remove member port 47 rename 47 zone merge description 48 failure 48 failure recovery 48 zone set activate 45 active 38 44 create 45 deactivate 45 definition 38 management 43 orphan 38 remove 45 rename 47 tree 40 zoning 73 configuration 42 database 38 40 default 43 remove all 43 zoning database restore 42 save to file 42 ...

Reviews:

No comments

Related manuals for McDATA

3Com SuperStack II Important Information preview
SuperStack II
Brand: 3Com Pages: 2
3Com CoreBuilder 5000 Quick Start And Reference preview
CoreBuilder 5000
Brand: 3Com Pages: 16
3Com CoreBuilder 9000 Quick Installation Manual preview
CoreBuilder 9000
Brand: 3Com Pages: 24
Datavideo SE-3000 Instruction Manual preview
SE-3000
Brand: Datavideo Pages: 58
E-T-A 921 Series Instructions For Installation Manual preview
921 Series
Brand: E-T-A Pages: 6
OEM VX-100 Specifications preview
VX-100
Brand: OEM Pages: 1
Paugge ENT-MX20B16X16 User Manual preview
ENT-MX20B16X16
Brand: Paugge Pages: 20
Fairchild FPS FSDH0265RN Manual preview
FPS FSDH0265RN
Brand: Fairchild Pages: 20
Black Box SW614A User Manual preview
SW614A
Brand: Black Box Pages: 57
A-Neuvideo ANI-44VGA Instruction Manual preview
ANI-44VGA
Brand: A-Neuvideo Pages: 9
Zektor HDS4x2 User Manual preview
HDS4x2
Brand: Zektor Pages: 30
System Q ScatterBox POE308 Quick Start Manual preview
ScatterBox POE308
Brand: System Q Pages: 2
Kramer VP-443 User Manual preview
VP-443
Brand: Kramer Pages: 29
Niles ABS-1 Features & Specifications Manual preview
ABS-1
Brand: Niles Pages: 2
LEGRAND Chief Kontour KPWR Series Installation Instructions Manual preview
Chief Kontour KPWR Series
Brand: LEGRAND Pages: 8
Cables to Go 29508 User Manual preview
29508
Brand: Cables to Go Pages: 16
Texas Instruments XIO3130 EVM User Manual preview
XIO3130 EVM
Brand: Texas Instruments Pages: 17
Xantech 686-10 Installation Instructions preview
686-10
Brand: Xantech Pages: 5

Brands by name

Popular brands

Load more brands