HP StorageWorks Fabric OS 6.1.x administrator guide (5697-0234, November 2009)
Fabric OS 6.1.x administrator guide 305
5. When prompted, type y. The DH-CHAP secret is now stored in the secret word database and is ready
for use.
switch:admin> secauthsecret --set
This command is used to set up secret keys for the DH-CHAP authentication.
The minimum length of a secret key is 8 characters and maximum 40
characters. Setting up secret keys does not initiate DH-CHAP
authentication. If switch is configured to do DH-CHAP, it is performed
whenever a port or a switch is enabled.
Warning: Please use a secure channel for setting secrets. Using
an insecure channel is not safe and may compromise secrets.
Following inputs should be specified for each entry.
1. WWN for which secret is being set up.
2. Peer secret: The secret of the peer that authenticates to peer.
3. Local secret: The local secret that authenticates peer.
Press enter to start setting up secrets >
Enter WWN, Domain, or switch name (Leave blank when done): 10:00:00:60:69:80:05:14
Enter peer secret:
Re-enter peer secret:
Enter local secret:
Re-enter local secret:
Enter WWN, Domain, or switch name (Leave blank when done):
Are you done? (yes, y, no, n): [no] y
Saving data to key store... Done.
To view a DH-CHAP secret word database:
1. Log in as admin to the 400 MP Router, or 4/256 SAN Director or DC Director with an FR4-18i blade.
At the Telnet prompt, enter the secAuthSecret command as shown:
switch:admin> secauthsecret --show
WWN DId Name
------------------------------------------------------------
10:00:00:60:69:80:05:14 1 switch
For details about the setAuthSecret command, see the Fabric OS Command Reference.
Configuring an interfabric link
Before configuring an IFL, be aware that you cannot configure both IFLs (EX_Ports, VEX_Ports) and ISLs
(E_Ports) from a backbone fabric consisting of a single 400 MP Router or 4/256 SAN Director or DC
Director with an FR4-18i blade to the same edge fabric.
Configuring an interfabric link involves disabling ports and cabling them to other fabrics, configuring those
ports for their intended use, and then enabling the ports.
When it is in strict mode, ACL cannot support Fibre Channel routing in the fabric. Before connecting an
edge fabric to an FC router and before setting up the FC router in the BB, verify that the Fabric Wide
Consistency Policy is not in āstrictā mode by issuing the fddCfg
--showall command.
If the Fabric Wide Consistency Policy has the āSā letter in it in the edge fabric or the BB fabric, do not
connect the edge fabric or the BB to the FC router.
NOTE: To ensure that fabrics remain isolated, disable the port prior to inserting the cable. If you are
configuring an EX_Port, disable the port prior to making the connection.