Secpolicyremove – Dell POWEREDGE M1000E User Manual

Fabric OS Command Reference

927

53-1002746-01

secPolicyRemove

2

secPolicyRemove

Removes members from an existing security policy.

SYNOPSIS

secpolicyremove "name" ,"member[;member...]"

DESCRIPTION

Use this command to remove one or more members from an existing security policy. It is not possible to
remove all members from the FCS_POLICY; the local switch WWN cannot be deleted from the FCS
policy. In the case of SCC policy, if it is empty after removing all members, all access to the switch itself
would be disallowed.

NOTES

If an FCS policy is enabled, this command must be issued from the primary FCS switch.

The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may be in
place. Refer to Chapter 1, "Using Fabric OS Commands" and Appendix A, "Command Availability" for
details.

OPERANDS

This command has the following operands:

"name"

Specify the name of an existing policy you want to remove members from. This
operand is required. Valid values for this operand include the following:

•

DCC_POLICY_nnn

•

FCS_POLICY

•

SCC_POLICY

The specified policy name must be capitalized.

The DCC_POLICY policy name has the common prefix DCC_POLICY_ followed
by a string of user-defined characters. These characters do not have to be
capitalized like regular policy names, but are case-sensitive.

"member"

Specify a member or list of members to delete from the policy. The list must be
enclosed in quotation marks; members must be separated by semicolons. This
operand is required. Depending on the policy type, members can be specified
using IP address, WWN, domain, or switch name.

WWN Member Policy Types

The following policy types require members be specified by WWN address:

•

FCS_POLICY

•

SCC_POLICY

These policy types require member IDs be specified as WWN strings, domains, or
switch names. If domain or switch names are used, the switches associated must
be present in the fabric or the command fails.

DCC_POLICY Members

The DCC_Policy_nnn is a list of devices associated with a specific switch and port
combination. The device is specified with a WWN string. The switch and port
combination must be specified in the switch port format where switch can be
specified by switch WWN, domain, or switch name. The port parameter can be
specified by port number separated by commas, and enclosed in either brackets
or parentheses: for example, (2, 4, 6). Ports enclosed in brackets include the
devices currently attached to those ports.

The following examples illustrate several ways to specify the port values:

(1-6)

Selects ports 1 through 6.