Enabling snmp access – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Multi-Service IronWare Security Configuration Guide

15

53-1003035-02

Restricting remote access to management functions

1

Syntax: [no] crypto-ssl certificate [generate | zeroize]

Using the web-management command without the http or https option makes web management
available for both.

The generate parameter generates an ssl certificate.

The zeroize parameter deletes the currently operative ssl certificate.

To import a digital certificate issued by a third-party Certificate Authority (CA) and save it in the
flash memory, use the following command.

Brocade# copy tftp flash 10.10.10.1 cacert.pem server-certificate

Syntax: copy tftp flash ip-address file-name server-certificate

The ip-address variable is the IP address of the TFTP server where the digital certificate file is being
downloaded from.

The file-name variable is the file name of the digital certificate that you are importing to the device.

Disabling Web management access by
HP ProCurve Manager

By default, TCP ports 80 is enabled on the Brocade device. TCP port 80 (HTTP) allows access to the
device’s Web Management Interface.

By default, TCP port 280 for HP Top tools is disabled. This tool allows access to the device by HP
ProCurve Manager.

The no web-management command disables both TCP ports. However, if you want to disable only
port 280 and leave port 80 enabled, use the hp-top-tools option with the command.

Example

Brocade(config)# no web-management hp-top-tools

Syntax: [no] web-management hp-top-tools

The hp-top-tools parameter disables TCP port 280.

Enabling SNMP access

SNMP is disabled by default on the Brocade devices. SNMP is required if you want to manage a
Brocade device using Brocade Network Advisor.

To enable SNMP management of the device.

Brocade(config)#snmp-server

To later disable SNMP management of the device.

Brocade(config)#no snmp-server

Syntax: [no] snmp-server