Configuring Dhchap Passwords For The Local Switch; Password Configuration For Remote Devices - Cisco Nexus 6000 Series Configuration Manual

Hide thumbs Also See for Nexus 6000 Series:

Installation manual (86 pages)

Reference manual (12 pages)

Configuration manual (232 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

page of 216

/ 216
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring DHCHAP Authentication

also the most vulnerable configuration if someone from the outside maliciously attempts to access any

one switch in the fabric.

• Configuration 2—Use a different password for each switch and maintain that password list in each

switch in the fabric. When you add a new switch, you create a new password list and update all switches

with the new list. Accessing one switch yields the password list for all switches in that fabric.

• Configuration 3—Use different passwords for different switches in the fabric. When you add a new

switch, multiple new passwords corresponding to each switch in the fabric must be generated and

configured in each switch. Even if one switch is compromised, the password of other switches are still

protected. This configuration requires considerable password maintenance by the user.

All passwords are restricted to 64 alphanumeric characters and can be changed, but not deleted.

Note

We recommend using RADIUS or TACACS+ for fabrics with more than five switches. If you need to use a

local password database, you can continue to do so using Configuration 3 and using Cisco MDS 9000 Family

Fabric Manager to manage the password database.

Configuring DHCHAP Passwords for the Local Switch

You can configure the DHCHAP password for the local switch.

Procedure

Step 1

Step 2

Password Configuration for Remote Devices

You can configure passwords in the local authentication database for other devices in a fabric. The other

devices are identified by their device name, which is also known as the switch WWN or device WWN. The

password is restricted to 64 characters and can be specified in clear text (0) or in encrypted text (7).

The switch WWN identifies the physical switch. This WWN is used to authenticate the switch and is

Note

different from the VSAN node WWN.

Cisco Nexus 6000 Series NX-OS SAN Switching Configuration Guide, Release 6.x

142

Command or Action

configure terminal

Example:

switch# configure terminal

switch(config)#

fcsp dhchap password [0 | 7] password [wwn wwn-id]

Example:

switch(config)# fcsp dhchap password [0|7]

myword wwn 11:22:11:22:33:44:33:44

Configuring FC-SP and DHCHAP

Purpose

Enters global configuration mode.

Configures a clear text password for

the local switch.

OL-27932-01

Table of Contents

Configuring Dhchap Passwords For The Local Switch; Password Configuration For Remote Devices - Cisco Nexus 6000 Series Configuration Manual

Configuring DHCHAP Passwords for the Local Switch

Password Configuration for Remote Devices

Related Manuals for Cisco Nexus 6000 Series

Related Content for Cisco Nexus 6000 Series

Table of Contents