HP StorageWorks SN6000 Fibre Channel Switch Command Line Interface Guide 151
PrimarySecret
(ISL and Port Groups)
Hexadecimal string that is encrypted by the primary hash for
authentication with the member. The string has the following lengths
depending on the primary hash function:
•
MD5 hash: 16-byte
•
SHA-1 hash: 20-byte
SecondaryHash
(ISL and Port Groups)
Hash function to use to decipher the encrypted secondary secret sent
by the group member. Hash values are
MD5
or
SHA-1
. The
secondary hash is used when the primary hash is not available on
the group member. The primary hash and the secondary hash cannot
be the same.
SecondarySecret
(ISL and Port Groups)
Hex string that is encrypted by the secondary hash and sent for
authentication. The string has the following lengths, depending on the
secondary hash function:
•
MD5 hash: 16-byte
•
SHA-1 hash: 20-byte
Secret
(MS Groups)
Hexadecimal string that is encrypted by the hash function for
authentication with MS group members. The string has the following
lengths depending on the hash function:
•
MD5 hash: 16-byte
•
SHA-1 hash: 20-byte
Binding
(ISL Groups)
Domain ID of the switch to which to bind the ISL group member
worldwide name. This option is available only if
FabricBindingEnabled
is set to True using the
set config security
command. 0 (zero) specifies no binding.
Table 12
Group member attributes (continued)
Attribute
Description
Operands
list
Displays a list of all groups and the security sets of which they are members. This operand is
available without an Admin session.
members [group]
Displays all members of the group given by [group]. This operand is available without an Admin
session.
remove [group] [member_list]
Remove the port/device worldwide name given by [member] from the group given by [group].
Use a <space> to delimit multiple member names in
[member_list]
rename [group_old] [group_new]
Renames the group given by [group_old] to the group given by [group_new].
securitysets [group]
Displays the list of security sets of which the group given by [group] is a member. This operand is
available without an Admin session.
type [group]
Displays the group type for the group given by [group]. This operand is available without an
Admin session.
Notes
Primary and secondary secrets are not included in a switch configuration backup. Therefore, after
restoring a switch configuration, you must re-enter the primary and secondary secrets. Otherwise, the
switch will isolate because of an authentication failure.
For more information about managing groups in security sets, see the
securityset
command.
Summary of Contents for StorageWorks SN6000
Page 16: ...16 Command Line Interface Usage ...
Page 20: ...20 User Account Configuration ...
Page 34: ...34 Network Configuration ...
Page 82: ...82 Zoning Configuration ...
Page 86: ...86 Connection Security Configuration ...
Page 96: ...96 Device Security Configuration ...
Page 100: ...100 RADIUS Server Configuration ...
Page 124: ...124 Simple Network Management Protocol Configuration ...
Page 318: ...318 Command Reference ...
Page 330: ...330 Index ...