Secauthsecret – Dell POWEREDGE M1000E User Manual
Page 859
Fabric OS Command Reference
827
53-1001764-02
secAuthSecret
2
secAuthSecret
Manages the DH-CHAP shared secret key information.
Synopsis
secauthsecret --show
secauthsecret --set
secauthsecret --remove value | --all
Description
Use this command to manage the DH-CHAP shared secret key database used for authentication.
This command displays, sets, and removes shared secret key information from the database or
deletes the entire database. If you are performing set or remove operations, when the command is
completed new data is saved persistently. New data is effective with the next authentication
request. The configuration applies to a switch instance only.
Note
The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may
be in place. Refer to chapter 1, "Using Fabric OS commands" and Appendix A, "Command
Availability" for details.
Operands
This command has the following operands:
--
show
Lists the WWNs for which a shared secret is configured.
--
set
Sets shared secrets with a WWN. This command is interactive. When setting
secrets for an entry of an EX_Port, the WWN of the entry must be specified.
--
remove [wwn | domain | swname]
Removes the specified WWN entry from the database. If a domain name is
specified, it is converted to a WWN and then the entry is removed. When
removing an entry of an EX_Port type, the WWN of the entry must be
specified. If no option is specified, the command is interactive.
--
remove --all
Deletes the entire secret key database.
Examples
To list the shared secret WWN:
switch:admin>
secauthsecret --show
WWN DId Name
-----------------------------------------------
10:00:00:60:69:80:5b:e8 1 switch
To set the shared secret:
switch:admin>
secAuthSecret --set
This command sets up secret keys for the DH-CHAP authentication.
The minimum length of a secret key is 8 characters and maximum 40
characters. Setting up secret keys does not initiate DH-CHAP
authentication. If switch is configured to do DH-CHAP, it is performed
whenever a port or a switch is enabled.
Warning: Please use a secure channel for setting secrets. Using
an insecure channel is not safe and may compromise secrets.
Following inputs should be specified for each entry.