Appendix A Appendix A: Command Availability; In This Appendix; Command Validation Checks - Brocade Communications Systems A7533A - Brocade 4Gb SAN Switch Base Command Reference Manual
Brocade fabric os command reference manual v6.2.0 (53-1001186-01, april 2009)
Hide thumbs
Also See for A7533A - Brocade 4Gb SAN Switch Base:
- Reference manual (1240 pages) ,
- Command reference manual (816 pages) ,
- Reference (550 pages)
Table of Contents
Advertisement
Appendix A: Command availability
In this appendix
Command validation checks
Before a command is executed, it is validated against the following checks.
1. Active or Standby availability: on enterprise-class platforms systems, checks that the command
2. Role Based Access Control (RBAC) availability: checks that the invoking user's role is permitted
3. Admin Domain availability: If Admin Domains are enabled, the system checks that the
Fabric OS Command Reference
53-1001186-01
•
Command validation checks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 849
•
Encryption commands and permissions . . . . . . . . . . . . . . . . . . . . . . . . . . . 850
is available on the Control Processor (CP).
to invoke the command. If the command modifies system state, the user's role must have
modify permission for the command. If the command only displays system state, the user's role
must have observe permission for the command. Some commands both observe and modify
system state and thus require observe-modify permission. The following RBAC permissions are
supported:
•
O = observe
•
OM = observe-modify,
•
N = none/not available
command is allowed in the currently selected Admin Domain. For information on Admin
Domain concepts and restrictions, refer to the Fabric OS Administrator's Guide.
Admin Domain Types are one or more of the following. If more than one AD type is listed for a
command, the AD type is option- specific. Display options may be allowed, but set options may
be subject to Admin Domain restrictions.
•
SwitchMember = Allowed to execute only if the local switch is part of the current AD.
•
Allowed = Allowed to execute in all ADs.
•
PhysFabricOnly = Allowed to execute only in AD255 context (and the user should own
access to AD0-AD255 and have admin RBAC privilege).
•
Disallowed = Only allowed to execute in AD0 or AD255 context, not allowed in AD1-AD254
context.
•
PortMember = All control operations allowed only if the port or the local switch is part of
the current AD. View access allowed if the device attached to the port is part of the current
AD.
•
AD0Disallowed = Allowed to execute only in AD255 and AD0 (if no ADs are configured).
•
AD0Only = Allowed to execute only in AD0 when ADs are not configured.
Appendix
A
849
Hide quick links:
Advertisement
Table of Contents
