HP StorageWorks Fabric OS 3.X Document Addendum (AA-RW24A-TE, January 2005)
Fabric OS reference guide
160 Fabric OS 3.x Document Addendum
Operands
The operands are:
Examples
To display authentication configuration on the switch:
To set DH-CHAP as the authentication protocol:
To set both protocols, in order of FCAP and then DH-CHAP:
--show Displays local authentication configuration.
--set value Modifies authentication configuration. Values are:
— -a value, which sets authentication protocol. Specify
fcap to set FCAP authentication only, dhchap to set
DH-CHAP authentication only, and all to set FCAP and
DH-CHAP (default). When authentication is set to all,
implicit order is FCAP and then DH-CHAP; for instance,
authentication negotiation FCAP is given priority over
DH-CHAP on the local switch, but you can still select
DH-CHAP.
— -g value, which sets Diffie-Hellman group (DH group).
Values 0 through 4 and * are valid. DH group 0 is called
NULL DH. Each DH group specifies a key size and
associated parameters implicitly. A higher group value
provides stronger cryptography and a higher level of security
with the authentication protocol. When the DH group is set
to a specified value, only that DH group is enabled in
authentication. Specifying * as a group enables all DH
groups (0, 1, 2, 3, and 4, in that order: default). For instance,
authentication negotiation NULL DH is given priority over
other groups, but you can still select other DH groups.
switch:admin> authutil "--show"
AUTH TYPE HASH TYPE GROUP TYPE
-----------------------------------------
fcap,dhchap sha1,md5 0,1,2,3,4
switch:admin> authutil "--set -a dhchap"
Committing configuration...done.
Authentication is set to dhchap.
switch:admin> authutil "--set -a all"
Committing configuration...done.
Authentication is set to fcap,dhchap.