beautypg.com

Dell POWEREDGE M1000E User Manual

Page 946

background image

918

Fabric OS Command Reference

53-1002746-01

secPolicyCreate

2

EXAMPLES

To create an FCS policy (While creating the FCS policy, the local switch WWN is automatically included
in the list. Switches included in the FCS list are FCS switches and the remaining switches in the fabric
are non-FCS switches. Out of the FCS list, the switch that is in the first position becomes the Primary
FCS switch and the remaining switches become backup FCS switches. If the first switch in the FCS list is
not reachable, the next switch becomes the Primary):

primaryfcs:admin> secpolicycreate "FCS_POLICY", "3; 4"
FCS_POLICY has been created.

To create a device policy to allow two devices to attach to domain 3 ports 1 and 3 (the WWN of first
device is 11:22:33:44:55:66:77:aa and the WWN of second device is 11:22:33:44:55:66:77:bb):

primaryfcs:admin> secpolicycreate "DCC_POLICY_aB_7", \
"11:22:33:44:55:66:77:aa;11:22:33:44:55:66:77:bb;3[1,3]"
DCC_POLICY_abc has been created.

To create a SCC policy in a fabric with three switches:

1.

Check if a policy exists.

switch:admin> secpolicyshow
____________________________________________________
ACTIVE POLICY SET
____________________________________________________
DEFINED POLICY SET

2.

Identify switches in the fabric.

switch:admin> fabricshow
Switch ID Worldwide Name Enet IP Addr FC IP Addr Name
--------------------------------------------------------------
2:fffc02 10:00:00:05:1e:39:5f:67 10.32.69.53 10.20.30.53 "sw1"
fec0:60:69bc:60:260:69ff:fe80:d4a
4:fffc04 10:00:00:05:1e:04:ef:0e 10.32.69.49 10.20.30.49 'sw2"
fec0:60:69bc:54:205:1eff:fe04:ef0e
200: fffcc8 10:00:00:05:1e:35:cd:ef 10.32.69.117 10.20.30.117 \
"nSW4100_98"

3.

Create a SCC policy that includes switches with domain IDs 2 and 4.

switch:admin> secpolicycreate "SCC_POLICY","2;4"
SCC_POLICY has been created.

4.

Activate the policy.

switch:admin> secpolicyactivate
About to overwrite the current Active Policy Set.
ARE YOU SURE (yes, y, no, n): [no] y
secpolicyactivate command was completed successfully.

To create an SCC policy that includes all switches in the fabric:

switch:admin> secpolicycreate "SCC_POLICY",*
SCC_POLICY has been created.

To create a security policy:

switch:admin> secpolicycreate SCC_POLICY,\
"10:00:00:05:1e:a1:ef:b9; 10:00:00:05:1e:a3:00:59; \
10:00:00:05:1e:a2:f9:09" -legacy
SCC_POLICY created as user specified.
switch:admin> secpolicyshow
_______________________________________
ACTIVE POLICY SET