Secpolicyremove – Dell POWEREDGE M1000E User Manual
Page 887
Fabric OS Command Reference
855
53-1001764-02
secPolicyRemove
2
secPolicyRemove
Removes members from an existing security policy.
Synopsis
secpolicyremove “name” , “member[;member...]”
Description
Use this command to remove one or more members from an existing security policy. It is not
possible to remove all members from the FCS_POLICY; the local switch WWN cannot be deleted
from the FCS policy. In the case of SCC policy, if it is empty after removing all members, all access
to the switch itself would be disallowed.
Notes
If an FCS policy is enabled, this command must be issued from the primary FCS switch.
The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may
be in place. Refer to chapter 1, "Using Fabric OS commands" and Appendix A, "Command
Availability" for details.
Operands
This command has the following operands:
“name”
Specify the name of an existing policy you want to remove members from.
Valid values for this operand are:
•
DCC_POLICY_nnn
•
FCS_POLICY
•
SCC_POLICY
The specified policy name must be capitalized.
The DCC_POLICY policy name has the common prefix DCC_POLICY_ followed
by a string of user-defined characters. These characters do not have to be
capitalized like regular policy names, but are case-sensitive.
This operand is required.
“member”
Specify a member or list of members to delete from the policy. The list must
be enclosed in quotation marks; members must be separated by semicolons.
This operand is required. Depending on the policy type, members can be
specified using IP address, WWN, domain, or switch name.
WWN Member Policy Types
The following policy types require members be specified by WWN address:
•
FCS_POLICY
•
SCC_POLICY
These policy types require member IDs be specified as WWN strings,
domains, or switch names. If domain or switch names are used, the switches
associated must be present in the fabric or the command fails.
DCC_POLICY Members
The DCC_Policy_nnn is a list of devices associated with a specific switch and
port combination. The device is specified with a WWN string. The switch and
port combination must be specified in the switch port format where switch
can be specified by switch WWN, domain, or switch name. The port