Save and activate SecuritySet2 on Switch2 | Q-Logic 5000 instruction

3 – Planning Fabric Security

S

b.Create an ISL group (Group_ISL_1) in Security_Set_1 with Switch_1 and Switch_2 as members. The Switch_1 secret must be shared with the Switch_2 security database.

ISL Group on Switch_1: Group_ISL_1

Switch_1

Switch_2

Node WWN: 10:00:00:c0:dd:07:e3:4c

Authentication: CHAP

Primary Hash: MD5

Primary Secret: 0123456789abcdef

Binding: None

Node WWN: 10:00:00:c0:dd:07:e3:4e

Authentication: CHAP

Primary Hash: MD5

Primary Secret: abcdefabcdef012

Binding: None

3.Configure security on HBA_1 using the appropriate management tool. Logins between the Switch_1 and HBA_1 will be challenged (CHAP) for their respective secrets. Therefore, the secrets for Switch_1 and HBA_1 that you configured on Switch_1 must also be configured on HBA_1.

4.Save and activate Security_Set_1 on Switch_1.

5.Create a security set (Security_Set_2) on Switch_2. Create an ISL group (Group_ISL_2) in Security_Set_2 with Switch_1 and Switch_2 as members.

ISL Group on Switch_2: Group_ISL_2

Switch_2

Switch_1

Node WWN: 10:00:00:c0:dd:07:e3:4e

Authentication: CHAP

Primary Hash: MD5

Primary Secret: abcdefabcdef0123

Binding: None

Node WWN: 10:00:00:c0:dd:07:e3:4c

Authentication: CHAP

Primary Hash: MD5

Primary Secret: 0123456789abcdef

Binding: None

6.Save and activate Security_Set_2 on Switch_2.

3-26	59096-04 A

Image 66

Q-Logic 5000 manual Save and activate SecuritySet2 on Switch2

Contents

SANbox 5000 Series Fibre Channel Switch Installation Guide Document Revision History Table of Contents Section Planning Section Installation Section Removal/Replacement List of Figures Page Introduction Intended Audience Related Materials New in this Release Safety Notices Sicherheitshinweise Communications Statements Federal Communications Commission FCC Class a Statement CE Statement Vcci Class a Statement MIC Class a Statement model 5200 only Laser Safety Information Electrostatic Discharge Sensitivity Esds Precautions Accessible Parts Pièces AccessiblesZugängliche Teile General Public License Preamble 13.2 Introduction General Public License Introduction General Public License Introduction General Public License Introduction General Public License How to Apply These Terms to Your New Programs Copyright C yyyy name of author Technical Support AvailabilityTraining Contact Information Support Headquarters General Description Maintenance Button Resetting a SwitchChassis Controls and LEDs Placing the Switch in Maintenance Mode Chassis LEDs Input Power LED Green System Fault LED AmberHeartbeat LED Green Fibre Channel Ports Fibre Channel Ports Port LEDs Port Logged-In LED GreenPort Activity LED Green Transceivers Port Types Ethernet Port Ethernet Port Serial Port Serial Port Pin Identification Power Supplies and Fans Model 5202/5602 Switch Power Supplies Switch Management QuickTools Web Applet Command Line Interface Enterprise Fabric SuiteApplication Programming Interface Storage Management Initiative-Specification SMI-S Simple Network Management ProtocolFile Transfer Protocols General Description Switch Management 59096-04 a Planning Devices Device Access Performance Zoning Database Limits Distance Extended Credit Distances and Cable Lengths Bandwidth Latency Feature Licensing Multiple Chassis Fabrics Optimizing Device Performance Domain ID, Principal Priority, and Domain ID Lock Two-Switch Stack Stacking Four-Switch Stack Six Switch Stack Common Topologies Cascade Topology Cascade-with-a-Loop Topology Mesh Topology Mesh Topology MultiStage Topology Multistage Topology Switch Services Fabric Security Connection Security User Account Security Port Binding Device Security Security Example Switches and HBAs with Authentication Security Example Switches and HBAs HBA1 ISL Group on Switch1 GroupISL1 Security Example Radius Server 10. Security Example Radius Server Radius1 Configuration on Switch1 and Switch2 HBA1 Save and activate SecuritySet2 on Switch2 Security Example Host Authentication 11. Security Example Management Server MS Group Group1 Fabric Management Planning Fabric Management 59096-04 a Installation Site Requirements Switch Power Requirements Fabric Management WorkstationEnvironmental Conditions Installing a Switch Mount the Switch Avertissement Mounting the Model 5200/5600 Switch in a Rack without Rails Install Transceivers Removing 10-Gbps Port Covers Configure the Workstation Choose Make New Connection Configuring the Workstation Serial Port Connect the Workstation to the Switch Workstation Cable Connections Connect the Switch to AC Power Installation Installing a Switch Installation Installing a Switch Configure the Switch Configuration Wizard Prompts Telnet 10.0.0.1 Switch Login admin Password Cable Devices to the Switch Installing Firmware Installation Installing Firmware Using QuickTools to Install Firmware Using the CLI to Install FirmwareOne-Step Firmware Installation Enter the password for your account name FTP only Custom Firmware Installation Adding a Switch to an Existing Fabric Installing Feature License Keys Installation Installing Feature License Keys 59096-04 a Diagnostics/Troubleshooting Chassis Diagnostics Input Power LED Is Extinguished System Fault LED Is Illuminated Power-On Self Test Diagnostics Heartbeat LED Blink Patterns Fatal Post Error Blink Pattern Internal Firmware Failure Blink Pattern Configuration File System Error Blink Pattern Over Temperature Blink Pattern Logged-In LED Indications Logged-In LED EPort Isolation Excessive Port Errors Diagnostics/Troubleshooting Power-On Self Test Diagnostics Transceiver Diagnostics Power Supply Diagnostics Model 5202/5602 Switch Power Supply LEDs Recovering a Switch Using Maintenance Mode Exiting the Maintenance Menu Unpacking a Firmware Image File in Maintenance Mode Copying Log Files in Maintenance Mode Resetting the Network Configuration in Maintenance ModeResetting User Accounts in Maintenance Mode Removing the Switch Configuration in Maintenance Mode Remaking the File System in Maintenance Mode Resetting the Switch in Maintenance ModeUpdating the Boot Loader in Maintenance Mode Removal/Replacement SFP Transceiver Removal and Replacement Power Supply Removal and Replacement Power Supply Removal Power Supply Installation Page Specifications Fabric Specifications Specifications Fabric Specifications Maintainability Dimensions Snmp FTP Tftp Electrical Environmental Regulatory Certifications Glossary Fdmi FRU MIB WWN Page Index Index-2 59096-04 a LED Index-4 59096-04 a 59096-04 a Index-5