Secauthcertificate - Brocade Communications Systems 8 Command Reference Manual
Fabric os command reference manual supporting fabric
Hide thumbs
Also See for 8:
- Reference (842 pages) ,
- Reference manual (382 pages) ,
- Administrator's manual (310 pages)
Table of Contents
Advertisement
secAuthCertificate
Configures FCAP certificate for authentication with peer switches
Synopsis
secauthcertificate --show
secauthcertificate --set [-wwn wwn | -did domain_id |-all] [ -usecert brcd | thirdparty]
secauthcertificate --remove [-wwn wwn | -did domain_id |-all]
secauthcertificate --help
Description
Use this command to manage certificates for FCAP authentication on a switch.
FCAP requires the exchange of certificates between two or more switches to authenticate each
other before they are allowed to join fabric. FCAP certificates can be issued by Brocade or any third
party CA.
Use this command to add, remove, or display the switches in the certificate database. When
adding switches, you can specify the type of certificate to be used in the authentication. Brocade
and third Party certificates are supported.
Fabric OS supports two authentication protocols, DHCHAP and FCAP. By default, FCAP is the default
switch authentication protocol. Use the authUtil command to configure the authentication protocol.
Note
The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may
be in place. Refer to chapter 1, "Using Fabric OS commands" and Appendix A, "Command
Availability" for details.
Operands
This command has the following operands:
--show
--set
--remove
--help
Fabric OS Command Reference
53-1001764-02
Displays the switches in the certificate database. No operand is required with
this command.
Adds the specified switch entries to the certificate database.
Removes the specified switch entries from the certificate database.
Displays the command usage.
One or more switches must be specified with the --set and --remove
options. The switches can be specified in one of the following ways; each of
these operands is inclusive:
-wwn wwn
Specifies the World Wide Name of the peer switches. You may specify
multiple WWNs separated by a comma..
-did domain_id Specifies the Domain ID of the peer switches. You may specify multiple DIDs
separated by a comma.
-all
Specifies all switches in the fabric.
-usecert brcd | thirdparty
Specifies the FCAP certificate to be used for authentication with the specified
switches. Specify thirdparty to use a third party certificate. Specify brcd to
use a Brocade certificates (default). This operand is optional with the --set
option; if omitted, the default is used.
secAuthCertificate
2
825
Advertisement
Table of Contents
