Brocade Communications Systems 804 Configuring security authentication using the BCU

Brocade Adapters Administrator’s Guide 19

53-1001583-01

Host security authentication 3

3. Configure the following parameters on the Port Security Authentication tab:

a. Select the Enable Authentication check box to enable or disable the authentication policy.

If authentication is enabled, the port attempts to negotiate with the switch. If the switch

does not participate in the authentication process, the port skips the authentication

process.

b. Type and retype the secret.

The maximum length of the secret is 63 bytes. The default secret for each interface is its

port world wide name (PWWN) without the colons; for example, 0102030405060708.

Select the algorithm type from the list:

•MD5 - A hashing algorithm that verifies a message’s integrity using Message Digest

version 5.

•SHA1 - A secure hashing algorithm that computes a 160-bit message digest for a data

file that is provided as input.

•MD5SH1 - Similar to the MD5 hashing algorithm, but used for DH-CHAP

authentication.

•SHA1MD5 - Similar to the SHA1 hashing algorithm, but used for DH-CHAP

authentication.

c. Select DHNULL as the group value (this is the only group that is supported).

4. Click Apply to apply the changes.

5. Click OK to save the changes and close the dialog box.

Configuring security authentication using the BCU

Enter the following commands to display or configure security authentication for the ports:

•bcu auth --algo <port_id> <md|sha1|ms|sm>

•bcu auth --policy <port_id> {on|off}

•bcu auth --secret <port_id> “secret_string”

•bcu auth --show <port_id>

•bcu auth --stats <port_id>

•bcu auth --statsclr <port_id>

Refer to “auth” on page 128 for details about these commands.

Contents

Main Brocade Communications Systems, Incorporated Document History June 2010 Title Publication number Summary of changes Date Brocade Adapters Administrators Guide Supporting HBA models 415, 425, 815, 825 Contents About This Document Chapter 1 Host Management Overview Chapter 2 Getting Started with HCM Software Chapter 3 Host Configuration Chapter 4 Monitoring Chapter 5 Diagnostics Appendix A HCM Dialog Boxes Appendix B Brocade Command Utility Page Page About This Document In this section How this document is organized Document conventions Text formatting ATTENTION Notes, cautions, and warnings Key terms Notice to the reader Additional information Brocade resources Other industry resources Getting technical help Related documentation Page Page Host Management Overview Host bus adapters TABLE 1 HCM software HCM features Tree node pop-up menus 1 Tree node pop-up menus TABLE 2 SAN component Pop-up menu feature Adapter support TABLE 3 Getting Started with HCM Software HCM software launch Launching the application on Windows platforms Launching the application on Linux platforms Remember password Skip login Changing an HCM application password Changing an HCM agent password FIGURE 3 Software downgrade using Adapter Software Installer Downgrading HCM and driver or HCM only Downgrading driver only HCM configuration data Backing up data after an uninstall Data restoration Restoring backed up data FIGURE 4 HCM main window FIGURE 5 Legend Help menu HCM product icons TABLE 4 Event severity icons Discovery TABLE 5 Setting up out-of-band discovery for an adapter FIGURE 6 Logging off HCM Host Configuration Host security authentication Configuring security authentication using HCM (Host and HBA) FIGURE 7 Configuring security authentication using the BCU Buffer credits Basic port configuration TABLE 6 Opening the Basic Port Configuration dialog box FIGURE 8 Port logging level Configuring the port logging level using HCM Configuring the port logging level using the BCU Port speed Configuring the port speed using HCM Configuring the port speed using the BCU Frame data field size Specifying the maximum frame size using HCM Configuring the frame data field size using the BCU Persistent binding Enabling and disabling persistent binding using HCM Enabling and disabling persistent binding using the BCU QoS Configuring QoS on the switch side using the BCU Configuring QoS on the HBA side using the BCU Path time out Specifying path time out using HCM Specifying path time out using the BCU Target rate limiting Enabling and disabling rate limiting on the adapter side using HCM Enabling and disabling rate limiting on the adapter side using the BCU Boot over SAN Configuring Boot over SAN Page Pre-boot configuration Configuring fabric-based boot LUN discovery Boot image update Uploading the boot image using HCM Updating the boot image using the BCU Virtual port configuration Virtual port restrictions Creating a virtual port FIGURE 10 Deleting a virtual port HCM logging levels Configuring the HCM logging level using HCM Advanced port configuration Opening the Advanced Port Configuration dialog box FIGURE 13 TABLE 7 Interrupt Control Coalesce Configuring the Interrupt Control Coalesce using HCM Name configuration Dual role changes Name validation Defining a name FIGURE 14 Editing the name fields FIGURE 15 Adding name entries Removing a name entry Exporting the properties for a WWN Importing the properties for a WWN Importing properties in EFCM format Importing properties in DCFM or FM format Importing duplicated names FIGURE 16 NPIV Monitoring Performance monitoring Polling frequency rate Controlling the polling frequency rate Resetting statistics FIGURE 17 Master log Page Filtering event log entries FIGURE 18 Application log Syslog support Opening the Syslog Server Configuration dialog box FIGURE 20 Registering a host server Removing a host server Syslog host configuration using VMware Diagnostics Diagnostics using the BCU diag commands fcdiag commands TABLE 10 TABLE 11 Diagnostics using HCM Running a hardware-level test using HCM FIGURE 21 Diagnostics using HCM Hardware-level test parameters TABLE 12 Hardware-level test Parameter Test Options NOTE: During the test, IOC will be disabled. NOTE: For an External Loopback test, you must plug in the loopback connector. Running a Fibre Channel protocol-level test using HCM FIGURE 22 Displaying test log details FIGURE 23 Beaconing Configuring beaconing using HCM Configuring beaconing using the BCU SFP management Displaying SFP information using the BCU Displaying SFP information using HCM FIGURE 24 Debugging supportSave TABLE 13 supportSave collection sources Automatic statistics collection TABLE 14 supportSave collection using HCM supportSave collection on a port crash event supportSave collection using a command prompt supportSave collection using a browser A HCM Dialog Boxes Page Authentication Statistics dialog box A Authentication Statistics dialog box Page Backup dialog box Base Port Properties panel Change HCM Password dialog box Change HCM Agent Password dialog box Configure Names dialog box A Configure Names dialog box NOTE: You can also search for a name by typing the name into the text box and clicking OK. Page Define Name dialog box Duplicated Names dialog box Event Properties dialog box Fabric Statistics dialog box FCP IM Statistics dialog box Page FCP IM Module Statistics dialog box A FCP IM Module Statistics dialog box Select Monitor > Statistics > FCP IM Module Statistics from the Host Connectivity Manager. Right-click a port from the device tree and select Statistics > FCP IM Module Statistics. Page Fibre Channel Security Protocol Configuration dialog box Page Hardware Tests Diagnostics dialog box HBA Properties panel HBA Properties panel 1. Select an HBA in the device tree. 2. Click the Properties tab in the right pane. HBA Properties panel A IOC Statistics dialog box IOC Statistics dialog box IOC Statistics dialog box A IOC Statistics dialog box IOC Statistics dialog box A Page Logical Port Statistics dialog box A Logical Port Statistics dialog box Select Monitor > Statistics > Logical Port Statistics from the Host Connectivity Manager Right-click a logical port (LPORT) from the device tree and select Logical Port Statistics. Logical Port Statistics dialog box Refer to the following topics for specific procedures using this dialog box: LPORT Properties panel Master Log tab Opening the Master Log Using the Master Log Master Log Filter dialog box Persistent Binding dialog box Port Properties panel A Port Properties panel 1. Select a port in the device tree. 2. Click the Properties tab in the right pane. Using the property panel Port Statistics dialog box A Port Statistics dialog box Select Monitor > Statistics > Port Statistics from the Host Connectivity Manager. Page Protocol Tests dialog box QoS Statistics dialog box Remote Port Properties panel Restore dialog box SFP Properties panel SFP Properties panel Syslog Server Configuration dialog box Target Statistics dialog box Target Statistics dialog box Right-click a remote port and select Target Sta tist ics. Target Statistics dialog box A Target Statistics dialog box Page Test Log Details dialog box Virtual Port Creation dialog box Virtual Port Deletion dialog box Virtual Port Properties panel Virtual Port Statistics dialog box Virtual Port Statistics dialog box Page Page B Brocade Command Utility About the BCU - - BCU commands BCU commands B BCU commands BCU commands B adapter adapter B Example bcu adapter --list See Also ioc, port auth Page Page bios Page boot Page debug debug diag drvconf fabric fcdiag Page fcpim fcpim See Also ioc vport ioc Page log lport lport B The following are examples of a Brocade 1020 expansion card versus a Brocade 825 adapter: pbind port port B Example # bcu port --list port See Also adapter ioc qos ratelim rport rport Example bcu rport --list 2/0 rport B vport Page Page C HCM Troubleshooting HCM tab navigation C HCM does not restrict duplicate WWNs if BCU is used to create V_Ports RHEL4 U7 x86/x64 OS crashes after invalid operand from hcmagent D Glossary and Acronyms Page Page Index C E F H I L M Q R S T V