Secauthcertificate – Dell POWEREDGE M1000E User Manual

Fabric OS Command Reference

825

53-1001764-02

secAuthCertificate

2

secAuthCertificate

Configures FCAP certificate for authentication with peer switches

Synopsis

secauthcertificate --show

secauthcertificate --set [-wwn wwn | -did domain_id |-all] [ -usecert brcd | thirdparty]

secauthcertificate --remove [-wwn wwn | -did domain_id |-all]

secauthcertificate --help

Description

Use this command to manage certificates for FCAP authentication on a switch.

FCAP requires the exchange of certificates between two or more switches to authenticate each
other before they are allowed to join fabric. FCAP certificates can be issued by Brocade or any third
party CA.

Use this command to add, remove, or display the switches in the certificate database. When
adding switches, you can specify the type of certificate to be used in the authentication. Brocade
and third Party certificates are supported.

Fabric OS supports two authentication protocols, DHCHAP and FCAP. By default, FCAP is the default
switch authentication protocol. Use the authUtil command to configure the authentication protocol.

Note

The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may
be in place. Refer to chapter 1, "Using Fabric OS commands" and Appendix A, "Command
Availability" for details.

Operands

This command has the following operands:

--

show

Displays the switches in the certificate database. No operand is required with
this command.

--

set

Adds the specified switch entries to the certificate database.

--

remove

Removes the specified switch entries from the certificate database.

--

help

Displays the command usage.

One or more switches must be specified with the --set and --remove
options. The switches can be specified in one of the following ways; each of
these operands is inclusive:

-wwn wwn

Specifies the World Wide Name of the peer switches. You may specify
multiple WWNs separated by a comma..

-did domain_id Specifies the Domain ID of the peer switches. You may specify multiple DIDs

separated by a comma.

-all

Specifies all switches in the fabric.

-usecert brcd | thirdparty

Specifies the FCAP certificate to be used for authentication with the specified
switches. Specify thirdparty to use a third party certificate. Specify brcd to
use a Brocade certificates (default). This operand is optional with the --set
option; if omitted, the default is used.