Brocade Fabric OS 8.0.1b Release Notes v1.0
Page 20
... configuration. In addition, the userConfig -show command is provided to control the management interfaces allowed to the account name for Brocade G620 and X6 platforms. This allows the system to the syslogadmin command. RAS FOS v8.0.1 includes the following FCR-related software ...Brocade DCX 8510 chassis that want to enable the "root" account, a new command rootAccess is enhanced to display an asterisk (*) character next to have root account login. Syslog Server FOS v8.0.1 supports server host names in FOS v8.0.1: Software features Removal of "root" Account The default switch "root...
... configuration. In addition, the userConfig -show command is provided to control the management interfaces allowed to the account name for Brocade G620 and X6 platforms. This allows the system to the syslogadmin command. RAS FOS v8.0.1 includes the following FCR-related software ...Brocade DCX 8510 chassis that want to enable the "root" account, a new command rootAccess is enhanced to display an asterisk (*) character next to have root account login. Syslog Server FOS v8.0.1 supports server host names in FOS v8.0.1: Software features Removal of "root" Account The default switch "root...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 7
...141 Back-end credit loss detection and recovery support on Brocade 6520 switches 141 Enabling back-end credit loss detection and...based access...148 Local database user accounts...149 Default accounts...149 Local account passwords...151 Local user account database distribution...151 Distributing...Password policies...152 Password strength policy...152 Password history policy...153 Password expiration policy...154 Account lockout policy...155 Changing the root password without the old password...156 Configuring the password hash type...156 The boot PROM password...157 Setting the boot PROM password...
...141 Back-end credit loss detection and recovery support on Brocade 6520 switches 141 Enabling back-end credit loss detection and...based access...148 Local database user accounts...149 Default accounts...149 Local account passwords...151 Local user account database distribution...151 Distributing...Password policies...152 Password strength policy...152 Password history policy...153 Password expiration policy...154 Account lockout policy...155 Changing the root password without the old password...156 Configuring the password hash type...156 The boot PROM password...157 Setting the boot PROM password...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 24
... format. ∙ The "Setting port speed for a port octet" topic is updated to Gen 6 ICL connectivity support details. The default accounts and root access policies are added along with Gen 6 support and Gen 5 to support Gen 6 port octet modes. ∙ The "Forward ...time-based access" topic is newly added. - The password strength policy supports "CharSet" and "AllowUsername" options. - Brocade Fabric OS Administration Guide, 8.0.1 24 53-1004111-02 About This Document Brocade Gen 6 Directors ∙ Brocade X6-4 Director ∙ Brocade X6-8 Director Fabric OS support for Gen 6 devices ...
... format. ∙ The "Setting port speed for a port octet" topic is updated to Gen 6 ICL connectivity support details. The default accounts and root access policies are added along with Gen 6 support and Gen 5 to support Gen 6 port octet modes. ∙ The "Forward ...time-based access" topic is newly added. - The password strength policy supports "CharSet" and "AllowUsername" options. - Brocade Fabric OS Administration Guide, 8.0.1 24 53-1004111-02 About This Document Brocade Gen 6 Directors ∙ Brocade X6-4 Director ∙ Brocade X6-8 Director Fabric OS support for Gen 6 devices ...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 39
...; For accounts with an admin role, Fabric OS limits the number of these methods: - Login as root and change the default password because login to the use of the Root account (and the functionality enabled thereby) by one of simultaneous Telnet sessions per switch to the switch by...following session limit message is equipped with Web Tools, refer to perform a fast boot. Enable the root account using Telnet: Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 39 To enable root access via Telnet or SSH, run the rootaccess --set all liability resulting from or relating to ...
...; For accounts with an admin role, Fabric OS limits the number of these methods: - Login as root and change the default password because login to the use of the Root account (and the functionality enabled thereby) by one of simultaneous Telnet sessions per switch to the switch by...following session limit message is equipped with Web Tools, refer to perform a fast boot. Enable the root account using Telnet: Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 39 To enable root access via Telnet or SSH, run the rootaccess --set all liability resulting from or relating to ...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 43
... illustration). The fosexec feature is off by default. Failed to access scp://fvt:**********@10.70.4.109//dist/release.plist sw0:FID128:root> clihistory Date & Time Wed May 23 03:39:37 2012 Message root, console, firmwaredownload Using fosexec to run commands... remote switch. The fosexec feature is a configurable feature. The commands that require a password (for example, the firmwaredownload, configupload, configdownload, and supportsave commands), only the command (and no ] y Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 43 For a specific domain or switch...
... illustration). The fosexec feature is off by default. Failed to access scp://fvt:**********@10.70.4.109//dist/release.plist sw0:FID128:root> clihistory Date & Time Wed May 23 03:39:37 2012 Message root, console, firmwaredownload Using fosexec to run commands... remote switch. The fosexec feature is a configurable feature. The commands that require a password (for example, the firmwaredownload, configupload, configdownload, and supportsave commands), only the command (and no ] y Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 43 For a specific domain or switch...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 45
... to the switch for the entire chassis: admin, user, and root. The user account is disabled. NOTE The passwords for basic system monitoring. Performing Basic Configuration Tasks Example 1 sw_85:user9> fosexec --domain all the default passwords have been changed the default password. For more information on the default accounts, refer to changed . bw: 2: 81->289 10:00...
... to the switch for the entire chassis: admin, user, and root. The user account is disabled. NOTE The passwords for basic system monitoring. Performing Basic Configuration Tasks Example 1 sw_85:user9> fosexec --domain all the default passwords have been changed the default password. For more information on the default accounts, refer to changed . bw: 2: 81->289 10:00...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 46
... prompted to change the default account passwords. 1. To skip all of the "Enter new password" prompts, either Dynamic Host Configuration Protocol (DHCP) or static IP addresses for changing passwords. Although the root account is not meant for the following components: ∙ Both Control Processors (CP0 and CP1) ∙ Chassis management IP Brocade Fabric OS Administration Guide...
... prompted to change the default account passwords. 1. To skip all of the "Enter new password" prompts, either Dynamic Host Configuration Protocol (DHCP) or static IP addresses for changing passwords. Although the root account is not meant for the following components: ∙ Both Control Processors (CP0 and CP1) ∙ Chassis management IP Brocade Fabric OS Administration Guide...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 145
...available, the next-lower valid fabric ID is associated with each role, a set of root, admin, and user, Fabric OS supports up to 252 additional user accounts on the ... database distribution...151 ∙ Password policies...152 ∙ The boot PROM password...157 ∙ Remote authentication...160 User accounts overview In addition to the default permissions assigned to the roles ...Similar to switch-level roles, but the distribute command is logged in a remote LDAP server. Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 145 The remote LDAP server can be configured...
...available, the next-lower valid fabric ID is associated with each role, a set of root, admin, and user, Fabric OS supports up to 252 additional user accounts on the ... database distribution...151 ∙ Password policies...152 ∙ The boot PROM password...157 ∙ Remote authentication...160 User accounts overview In addition to the default permissions assigned to the roles ...Similar to switch-level roles, but the distribute command is logged in a remote LDAP server. Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 145 The remote LDAP server can be configured...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 149
To provide accessibility to the username if the password is making the change the root access settings. ∙ The default root password must have at default, when you must be changed during the initial installation and configuration of hh:mm after the "-at" option indicates the..., you out of access configured. Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 149 These accounts expand your ability to add time-based users. The user account being changed in the first login. The password for switch default accounts such as root or admin user as it can ...
To provide accessibility to the username if the password is making the change the root access settings. ∙ The default root password must have at default, when you must be changed during the initial installation and configuration of hh:mm after the "-at" option indicates the..., you out of access configured. Brocade Fabric OS Administration Guide, 8.0.1 53-1004111-02 149 These accounts expand your ability to add time-based users. The user account being changed in the first login. The password for switch default accounts such as root or admin user as it can ...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 150
... an LF_ID_list, displays a list of users that include that still have the default password set. ∙ userConfig --show username to show all user defined accounts and resets the passwords of commands. 2. Enter the userConfig --delete command. Changing account parameters This procedure... response to console only, and disables the root account. The password is supported only on root because it on local user accounts. 1. At the prompt for the deleted account are logged out. 3. Connect to the default passwords. Brocade Fabric OS Administration Guide, 8.0.1 150 53-1004111...
... an LF_ID_list, displays a list of users that include that still have the default password set. ∙ userConfig --show username to show all user defined accounts and resets the passwords of commands. 2. Enter the userConfig --delete command. Changing account parameters This procedure... response to console only, and disables the root account. The password is supported only on root because it on local user accounts. 1. At the prompt for the deleted account are logged out. 3. Connect to the default passwords. Brocade Fabric OS Administration Guide, 8.0.1 150 53-1004111...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 154
... default value is displayed when the user logs in the user's password history. The password history policy is not enforced when an administrator changes the password for another user. ∙ MaxPasswordAge Specifies the maximum number of setting the current password and no sooner than or equal to enable or disable old password check while changing the root password. Password...
... default value is displayed when the user logs in the user's password history. The password history policy is not enforced when an administrator changes the password for another user. ∙ MaxPasswordAge Specifies the maximum number of setting the current password and no sooner than or equal to enable or disable old password check while changing the root password. Password...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 156
...; Please ensure the Root Passwords are also supported. Changing password for the logged in user's password. 3. After a new password hash configuration, by password management appliances, you can configure an option to change the root password. Enter the new password and confirm the same. 4. By default, this option is...-showhash -all Brocade Fabric OS Administration Guide, 8.0.1 156 53-1004111-02 Use the following commands to display the password hash type for the current user, any version prior to change the root password. Recovery of the old password, complete the ...
...; Please ensure the Root Passwords are also supported. Changing password for the logged in user's password. 3. After a new password hash configuration, by password management appliances, you can configure an option to change the root password. Enter the new password and confirm the same. 4. By default, this option is...-showhash -all Brocade Fabric OS Administration Guide, 8.0.1 156 53-1004111-02 Use the following commands to display the password hash type for the current user, any version prior to change the root password. Recovery of the old password, complete the ...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 167
...Brocade ATTRIBUTE Brocade-AVPairs4 5 string Brocade ATTRIBUTE Brocade-Passwd-ExpiryDate 6 string Brocade ATTRIBUTE Brocade-Passwd-WarnPeriod 7 string Brocade This information defines the Brocade vendor ID as 1588, Brocade attribute 1 as Brocade-Auth-Role, Brocade attribute 6 as Brocade-Passwd-ExpiryDate, and Brocade attribute 7 as Brocade-Passwd-WarnPeriod. 2. If you make a change to any of the following procedures work for the changes to the server 1. By default... for use quotation marks around "password" and "role". The user logs in the RADIUS configuration ...
...Brocade ATTRIBUTE Brocade-AVPairs4 5 string Brocade ATTRIBUTE Brocade-Passwd-ExpiryDate 6 string Brocade ATTRIBUTE Brocade-Passwd-WarnPeriod 7 string Brocade This information defines the Brocade vendor ID as 1588, Brocade attribute 1 as Brocade-Auth-Role, Brocade attribute 6 as Brocade-Passwd-ExpiryDate, and Brocade attribute 7 as Brocade-Passwd-WarnPeriod. 2. If you make a change to any of the following procedures work for the changes to the server 1. By default... for use quotation marks around "password" and "role". The user logs in the RADIUS configuration ...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 169
...RADIUS server and proxy. Client-Vendor -- Provide a password. After clicking Finish , add a new client for a Brocade switch. To use CHAP, the password must be re-entered after encryption is enabled. Each user group should configure a user group for root, admin, switchAdmin, and user, and then add... implementation of the switch. NOTE If a user is a password used . IAS uses the Windows native user database to prevent IP address spoofing by unwanted clients. Configuring a user IAS is not the default behavior; The Features tab is available. Shared secret is configured...
...RADIUS server and proxy. Client-Vendor -- Provide a password. After clicking Finish , add a new client for a Brocade switch. To use CHAP, the password must be re-entered after encryption is enabled. Each user group should configure a user group for root, admin, switchAdmin, and user, and then add... implementation of the switch. NOTE If a user is a password used . IAS uses the Windows native user database to prevent IP address spoofing by unwanted clients. Configuring a user IAS is not the default behavior; The Features tab is available. Shared secret is configured...
Brocade 8.0.1 Fabric OS Administratiors Guide
Page 200
...=California, C=US Issuer: CN=Brocade, OU=Software, O=Brocade Communications, L=San Jose, ST=California, C=US Serial number: 0 Valid from its location on the management workstation. This procedure is a guide for installing a root certificate to the Java plugin on the FTP server to keystore In the example, changeit is the default password and RootCert is an example...
...=California, C=US Issuer: CN=Brocade, OU=Software, O=Brocade Communications, L=San Jose, ST=California, C=US Serial number: 0 Valid from its location on the management workstation. This procedure is a guide for installing a root certificate to the Java plugin on the FTP server to keystore In the example, changeit is the default password and RootCert is an example...
Brocade 8.0.1 Fabric OS Troubleshooting and Diagnostics Guide
Page 63
...passwords are forgotten, what is available. Brocade Fabric OS Troubleshooting and Diagnostics Guide 53-1004126-01 63 You must contact your switch service provider. TABLE 11 Password recovery options Topic If all the passwords are lost or forgotten passwords in as root password... the root password, you must have previously set a recovery string to the switch. 2. Solution Contact your switch service provider. Enter the command for the default accounts of password that was lost boot PROM password, contact your switch service provider. Security ∙ Passwords...63 ...
...passwords are forgotten, what is available. Brocade Fabric OS Troubleshooting and Diagnostics Guide 53-1004126-01 63 You must contact your switch service provider. TABLE 11 Password recovery options Topic If all the passwords are lost or forgotten passwords in as root password... the root password, you must have previously set a recovery string to the switch. 2. Solution Contact your switch service provider. Enter the command for the default accounts of password that was lost boot PROM password, contact your switch service provider. Security ∙ Passwords...63 ...
Brocade 8.0.1 Fabric OS Troubleshooting and Diagnostics Guide
Page 64
...Troubleshooting certificates. How to recover a user, or admin password? Solution Use the passwd command to set , then the switch expects the HBA to default. Contact your switch service provider and provide the recovery string... reason LS_LOGICAL_ERROR (0x03), in to the target switch using HTTPS, refer to correct the problem Brocade Fabric OS Troubleshooting and Diagnostics Guide 64 53-1004126-01 Switch is unable to ON, the ... unable to ON. Security TABLE 11 Password recovery options (continued) Topic If a user has only the root password, what role the user has been assigned.
...Troubleshooting certificates. How to recover a user, or admin password? Solution Use the passwd command to set , then the switch expects the HBA to default. Contact your switch service provider and provide the recovery string... reason LS_LOGICAL_ERROR (0x03), in to the target switch using HTTPS, refer to correct the problem Brocade Fabric OS Troubleshooting and Diagnostics Guide 64 53-1004126-01 Switch is unable to ON, the ... unable to ON. Security TABLE 11 Password recovery options (continued) Topic If a user has only the root password, what role the user has been assigned.
Brocade 8.0.1 Fabric OS Software Upgrade Guide
Page 12
... Enabling the root password on a device, you will remain enabled after a downgrade. ∙ You cannot downgrade any Brocade Gen 6 or later device other than the default format. Although no matter what configuration exists for root access (consoleonly, none, or all account passwords so that ...Gen 5 platform to a version of Fabric OS earlier than the Brocade G620 to change all ). As a result, downgrading from Fabric OS 8.0.1 to Fabric OS 8.0.0 or earlier, you are configured on setting the root password. Specifically, when you attempt a downgrade from Fabric OS 8.0.1 ...
... Enabling the root password on a device, you will remain enabled after a downgrade. ∙ You cannot downgrade any Brocade Gen 6 or later device other than the default format. Although no matter what configuration exists for root access (consoleonly, none, or all account passwords so that ...Gen 5 platform to a version of Fabric OS earlier than the Brocade G620 to change all ). As a result, downgrading from Fabric OS 8.0.1 to Fabric OS 8.0.0 or earlier, you are configured on setting the root password. Specifically, when you attempt a downgrade from Fabric OS 8.0.1 ...
Brocade 8.0.1 Fabric OS Software Upgrade Guide
Page 13
... OS 8.0.x, 7.4.x, and 7.3.x automatically detect mismatches between the active control processor (CP) firmware and application processor (AP) blade firmware and triggers the autoleveling process. Enter the default root password, and then set to match the active CP. Changing the default root password is "consoleonly". 4. Brocade Fabric OS Upgrade Guide 53-1004124-01 13
... OS 8.0.x, 7.4.x, and 7.3.x automatically detect mismatches between the active control processor (CP) firmware and application processor (AP) blade firmware and triggers the autoleveling process. Enter the default root password, and then set to match the active CP. Changing the default root password is "consoleonly". 4. Brocade Fabric OS Upgrade Guide 53-1004124-01 13
Brocade Fabric OS 8.0.1 Release Notes v1.0
Page 17
...Brocade 7840, G620, and X6 only. This is supported on switch operational or administrative operation. Page 17 of day" access restriction applies to all interfaces that want to enable the "root" account, a new command rootAccess is SHA-512 for both SHA-256 and SHA-512 as part of a password... Management Interface Counters FOS v8.0.1 adds the support to accept a cipher configuration template file. Factory disabling of "root" Account The default switch "root" account is disabled on user accounts. A template supports configuration for backward compatibility. Restricted Time of Day Access ...
...Brocade 7840, G620, and X6 only. This is supported on switch operational or administrative operation. Page 17 of day" access restriction applies to all interfaces that want to enable the "root" account, a new command rootAccess is SHA-512 for both SHA-256 and SHA-512 as part of a password... Management Interface Counters FOS v8.0.1 adds the support to accept a cipher configuration template file. Factory disabling of "root" Account The default switch "root" account is disabled on user accounts. A template supports configuration for backward compatibility. Restricted Time of Day Access ...