94 Device Security Configuration
Modifying the security database
To modify the security database:
1. Open an Admin session with the admin start command.
8/20q FC Switch #> admin start
An Admin session prevents other accounts from making changes at the same time either through Telnet,
QuickTools, Enterprise Fabric Management Suite, or Simple SAN Connection Manager.
2. To open a Security Edit session, enter the security edit command. The Security Edit session
provides access to the securityset, group, and security commands used to make modifications
to the security database.
8/20q FC Switch (admin) #> security edit
8/20q FC Switch (admin-security)#> securityset . . .
8/20q FC Switch (admin-security)#> group . . .
8/20q FC Switch (admin-security)#> security . . .
3. When you finish making changes, take one of the following actions:
• To save the changes and close the Security Edit session, enter the security save command.
8/20q FC Switch (admin-security)#> security save
• To close the Security Edit session without saving changes, enter the security cancel command.
8/20q FC Switch (admin-security)#> security cancel
4. To activate the changes to the active security set, enter the security activate command.
8/20q FC Switch (admin)#> security activate
5. To release the Admin session for other administrators, enter the admin end command.
8/20q FC Switch (admin)#> admin end
Resetting the security database
There are two ways to remove all groups and security sets from the security database:
• Enter the security clear command, as shown in the following example:
8/20q FC Switch (admin-security) #> security clear
All security information will be cleared. Please confirm (y/n): [n] y
8/20q FC Switch (admin-security) #> security save
• Enter the reset security command, as shown in the following example.
8/20q FC Switch (admin) #> reset security
The security configuration values, Autosave and FabricBindingEnabled, remain unchanged.
Managing security sets
This sub-section describes the security set management tasks. All of these tasks except Activating a security
set, page 95 and Deactivating a security set, page 95 require a Security Edit session.
Creating a security set
To create a new security set, enter the securityset create command, as shown in the following
example:
8/20q FC Switch (admin-security) #> securityset create securityset_1
Deleting a security set
To delete a security set, enter the securityset delete command, as shown in the following example:
8/20q FC Switch (admin-security) #> securityset delete securityset_1
Renaming a security set
To rename a security set. enter the securityset rename command, as shown in the following
example:
8/20q FC Switch (admin-security) #> securityset rename securityset_old
securityset_new
To Next Page
Loading...
Need help?
General