beautypg.com

Secpolicydelete – Dell POWEREDGE M1000E User Manual

Page 948

background image

920

Fabric OS Command Reference

53-1002746-01

secPolicyDelete

2

secPolicyDelete

Deletes an existing security policy.

SYNOPSIS

secpolicydelete name

DESCRIPTION

Use this command to delete an existing security policy from the defined security database. Run
secPolicyActivate to delete the policies from the active security policy list. Deleting a security policy
does not cause any traffic disruption.

Each policy corresponds to a management method. The list of members of a policy acts as an access
control list for that management method. Before a policy is created, there is no enforcement for that
management method; all access is granted. After a policy has been created and a member has been
added to the policy, that policy becomes closed to all access except from included members. If the policy
is deleted all access is granted.

NOTES

When an FCS policy is enabled, this command can be issued only from the Primary FCS switch.

The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may be in
place. Refer to Chapter 1, "Using Fabric OS Commands" and Appendix A, "Command Availability" for
details.

OPERANDS

The following operand is required:

"name"

Specify the name of a security policy to delete. The policy name must be
capitalized. Quotation marks are optional. Once a security policy is deleted,
fabric-wide switch access through that method is unrestricted. Valid security policy
names include the following:

DCC_POLICY_nnn

Deletes the specified Device Connection Control (DCC) policy. The
DCC_POLICY_nnn name has the common prefix DCC_POLICY_ followed by a
string of user-defined characters. These characters do not have to be capitalized.

ALL_DCC_POLICY

Deletes all DCC policies from the defined policy list.

ALL_STALE_DCC_POLICY

Deletes all stale DCC policies from the defined policy list. DCC policies become
stale when the ports are removed from a logical switch.

SCC_POLICY

Deletes the Switch Connection Control policy from the defined policy list.

FCS_POLICY

Deletes the Fabric Configuration Server policy from the defined policy list.

EXAMPLES

To delete an existing security policy:

switch:admin> secpolicydelete "DCC_POLICY_ab1"
About to delete policy DCC_POLICY_ab1.
Are you sure (yes, y, no, n):[no] y
DCC_POLICY has been deleted.

To delete all existing DCC policies in the fabric:

primaryfcs:admin> secpolicydelete ALL_DCC_POLICY
About to clear all the DCC policies
ARE YOU SURE (yes, y, no, n): [no] y