beautypg.com

Local user account database distribution, Distributing the local user database, Password policies – Brocade Fabric OS Administrators Guide (Supporting Fabric OS v7.3.0) User Manual

Page 140

background image

Local user account database distribution

Fabric OS allows you to distribute the user database and passwords to other switches in the fabric.
When the switch accepts a distributed user database, it replaces the local user database with the user
database it receives.

By default, switches accept the user databases and passwords distributed from other switches. The
"Locked" status of a user account is not distributed as part of local user database distribution.

When the user database is distributed, it may be rejected by a switch for one of the following reasons:

• One of the target switches does not support local account database distribution.
• One of the target switch’s user databases is protected.
• One of the remote switches has logical switches defined.
• Either the local switch or one of the remote switches has user accounts associated with user-

defined roles.

Distributing the local user database

When the local user database is distributed, all user-defined accounts residing in the receiving
switches are logged out of any active sessions.

1. Connect to the switch and log in using an account with admin permissions.
2. Enter the distribute -p PWD -d command.

NOTE
If Virtual Fabrics mode is enabled and there are logical switches defined other than the default
logical switch, then distributing the password database to switches is not supported.Distributing the
password database to switches is not allowed if there are users associated with user-defined roles
in either the sending switch or the remote switch

Accepting distributed user databases on the local switch

1. Connect to the switch and log in using an account with admin permissions.
2. Enter the fddCfg --localaccept PWD command.

Rejecting distributed user databases on the local switch

1. Connect to the switch and log in using an account with admin permissions.
2. Enter the fddCfg --localreject PWD command.

Password policies

The password policies described in this section apply to the local-switch user database only.
Configured password policies (and all user account attribute and password state information) are
synchronized across CPs and remain unchanged after an HA failover. Password policies can also be
manually distributed across the fabric (refer to

Local user account database distribution

on page 140).

Local user account database distribution

140

Fabric OS Administrators Guide

53-1003130-01

See also other documents in the category Brocade Computer Accessories: