Default Settings For Fabric Security - Cisco Nexus 6000 Series Configuration Manual

Default Settings for Fabric Security

Example:
switch# show fcsp dhchap database
DHCHAP Local Password:
Other Devices' Passwords:
Step 7 Display the DHCHAP configuration in the interface.
Example:
switch# show fcsp interface vfc24
vfc24
Step 8 Repeat these steps on the connecting switch.
Example:
MDS-9509# show wwn switch
Switch WWN is 20:00:00:05:30:00:38:5e
MDS-9509(config)# fcsp enable
MDS-9509(config)# fcsp dhchap password rtp9509
MDS-9509(config)# fcsp dhchap devicename 20:00:00:05:30:00:54:de password rtp9216
MDS-9509(config)# interface vfc 45
MDS-9509(config-if)# fcsp on
MDS-9509# show fcsp dhchap database
DHCHAP Local Password:
Other Devices' Passwords:
MDS-9509# show fcsp interface fc24
Fc24
You have now enabled and configured DHCHAP authentication for the sample setup.
Default Settings for Fabric Security
The following table lists the default settings for all fabric security features in any switch.
Table 19: Default Fabric Security Settings
Parameters
DHCHAP feature
DHCHAP hash algorithm
DHCHAP authentication mode
DHCHAP group default priority exchange order
DHCHAP timeout value
Cisco Nexus 6000 Series NX-OS SAN Switching Configuration Guide, Release 6.x
146
Non-device specific password:*******
Password for device with WWN:20:00:00:05:30:00:38:5e is *******
fcsp authentication mode:SEC_MODE_ON
Status:Successfully authenticated
Non-device specific password:*******
Password for device with WWN:20:00:00:05:30:00:54:de is *******
fcsp authentication mode:SEC_MODE_ON
Status:Successfully authenticated
Configuring FC-SP and DHCHAP
Default
Disabled
A priority list of MD5 followed by SHA-1 for
DHCHAP authentication
Auto-passive
0, 4, 1, 2, and 3, respectively
30 seconds
OL-27932-01