Group command

Description Creates groups, manages membership within the group, and manages the membership of groups in security sets.

IMPORTANT: This command is available only with the SANtegrity Enhanced PFE key.

Authority Admin session and a Security Edit session. Refer to the Security command for information about starting a Security Edit session. The List, Members, Securitysets, and Type operands are available without an Admin session.

Syntax group

add [group] copy

create [group] [type] delete [group]

edit [group] [member] list

members [group]

remove [group] [member_list] rename [group_old] [group_new] securitysets [group]

type [group]

Operands Edit

Initiates an editing session in which to specify a group member and its attributes for the existing group given by [group]. ISL, Port, and MS member attributes are described in Table 31, Table 32, and Table 33 respectively. The group name and group type attributes are read-only fields common to all three tables.

Table 31 ISL Group member attributes
Attribute

Description

 

 

MemberWorld Wide Name of the switch that would attach to the switch. A member

 

cannot belong to more than one group.

 

 

Authentication

Enables (CHAP) or disables (None) authentication using Challenge Handshake

 

Authentication Protocol. The default is None.

 

 

Primary Hash

The preferred hash function to use to decipher the encrypted Primary Secret sent

 

by the ISL member. The hash functions are MD5 or SHA-1. If the ISL member does

 

not support the Primary Hash, the switch will use the Secondary Hash.

 

 

Primary Secret

Hexadecimal string that is encrypted by the Primary Hash for authentication with

 

the ISL group member. The string has the following lengths depending on the

 

Primary Hash function:

 

MD5 hash: 16-byte

 

SHA-1 hash: 20-byte