HP AA-RW20A-TE User Manual

McDATA® 4Gb SAN Switch

for HP p-Class BladeSystem user guide

Part number: AA-RW20A-TE First edition: June 2005

Legal and notice information

Hewlett-Packard Company makes no warranty of any kind with regard to this material, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, performance, or use of this material.

This document contains proprietary information, which is protected by copyright. No part of this document may be photocopied, reproduced, or translated into another language without the prior written consent of Hewlett-Packard. The information is provided “as is” without warranty of any kind and is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

Java is a registered trademark of Sun Microsystems, Inc.

Linux is a registered trademark of Linus Torvalds.

McDATA is a registered trademark of McDATA Corporation.

Microsoft, Windows, Windows 2000/2003, and Windows XP are U.S. registered trademarks of Microsoft Corporation.

Motorola is a registered trademark of Motorola, Inc.

Netscape Navigator and Mozilla are trademarks or registered trademarks of Netscape Communications Corporation.

PowerPC is registered trademark of International Business Machines Corporation.

Red Hat is a registered trademark of Red Hat Software Inc.Adobe® and Acrobat® are trademarks of Adobe Systems Incorporated.

SANtegrity Enhanced is a trademark of McDATA Corporation.

McDATA Web Server is a trademark of McDATA Corporation.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide

Contents

About this guide. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Intended audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Prerequisites. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Related documentation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Document conventions and symbols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

JDOM license. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

HP technical support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

HP-authorized reseller. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Helpful web sites . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

1 Using McDATA Web Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

Workstation requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

Starting McDATA Web Server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14

Exiting McDATA Web Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Setting McDATA Web Server preferences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Using online help. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

Viewing software version and copyright information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

McDATA Web Server user interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

Menu bars . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

Topology display menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Faceplate display menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Shortcut keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Tool bar . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Fabric tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

Graphic window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

Data window and tabs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

Working status Indicator. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Using the topology display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Switch and link status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Working with switches and links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

Selecting switches and links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Arranging switches in the display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Opening the faceplate and topology display popup menus . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Topology data windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Using the faceplate display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Port views and status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Working with ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Selecting ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Opening the faceplate popup menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Faceplate data windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

2 Managing fabrics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25

RADIUS servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25

Adding a RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Removing a RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Editing RADIUS server information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28

Modifying authentication order RADIUS server information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Securing a fabric . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

Connection security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

User account security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

Security consistency checklist. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

Device security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

Edit Security dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32

Create Security Set dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 3

Create Security Group dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

Create Security Group Member dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

Editing the security configuration on a switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Viewing properties of a security set, group, or member . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Security Config dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Archiving a security configuration to a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Activating a security set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Deactivating a security set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Configured Security data window. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Active Security data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Fabric services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Enabling SNMP configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Enabling in-band management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Tracking fabric firmware and software versions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

Saving a version snapshot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Viewing and comparing version snapshots . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Exporting version snapshots to a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Managing the fabric database. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Adding a fabric. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Removing a fabric . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40

Opening a fabric view file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40

Rediscovering a fabric . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40

Deleting switches and links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40

Adding a new switch to a fabric . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

Replacing a failed switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

Displaying fabric information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42

Fabric status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42

Displaying the Event Browser . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

Sorting the Event Browser . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

Filtering the Event Browser . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

Saving the Event Browser to a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46

Devices data window. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46

Active Zone Set data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

Link data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

Working with device information and nicknames . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

Displaying detailed device information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

Exporting device information to a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

Managing device port nicknames . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

Creating a nickname. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Editing a nickname . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Deleting a nickname . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Exporting nicknames to a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Importing a nicknames file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Zoning a fabric . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50

Zoning concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50

Zones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50

Aliases . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50

Zone sets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

Zoning database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

Viewing zoning limits and properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

Managing the zoning database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52

Editing the zoning database. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. 52

Configuring the zoning database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54

Interop Auto Save . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54

Default Visibility. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Default Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Discard Inactive. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Saving the zoning database to a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Restoring the zoning database from a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Restoring the default zoning database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Removing all zoning definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

Managing zone sets. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

Creating a zone set. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

Activating and deactivating a zone set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

Copying a zone to a zone set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

Removing a zone from a zone set or from all zone sets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

Removing a zone set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

Managing zones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58

Creating a zone in a zone set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58

Adding zone members . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58

Renaming a zone or a zone set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

Removing a zone member . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

Removing a zone from a zone Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

Removing a zone from all zone sets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

Managing aliases . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60

Creating an alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60

Adding a member to an alias . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60

Removing an alias from all zones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60

Merging fabrics and zoning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61

Zone merge failure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61

Zone merge failure recovery. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61

3 Managing switches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63

Managing user accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63

Creating user accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64

Removing a user account . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65

Changing a user account password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66

Modifying a user account . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67

Displaying switch information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

Devices data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

Switch data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

Port Statistics data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71

Port Information data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71

Configured Zonesets data windows . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72

Configuring port threshold alarms. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73

Paging a switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74

Setting the date/time and enabling NTP client . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74

Resetting a switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75

Configuring a switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Using the configuration wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Switch properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Symbolic name. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Switch administrative states . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

Domain ID and domain ID lock. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

Fabric Device Management Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78

Broadcast support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

In-band management. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

Advanced switch properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

Timeout values . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80

Interop mode for zoning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80

System Services dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80

Security Consistency Checklist dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81

Network properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

IP configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

Remote logging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83

NTP client . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83

SNMP properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83

SNMP configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 5

SNMP trap configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85

Archiving a switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85

Restoring a switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86

Restoring the factory default configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87

Downloading a support file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88

Installing Product Feature Enablement (PFE) keys. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88

Installing firmware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

Using McDATA Web Server to install firmware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

Using the CLI to install firmware. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90

Displaying hardware status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91

4 Managing ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93

Displaying port information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93

Monitoring port status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

Displaying port types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

Displaying port operational states . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

Displaying port speeds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95

Displaying transceiver media status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95

Port Statistics data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96

Port Information data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98

Configuring ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100

Changing port administrative states . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100

Changing port speeds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

Changing port types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

Device scan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

Changing port symbolic name. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102

Resetting a port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102

Testing ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102

5 Command Line Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105

Logging on to a 4Gb SAN Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105

User accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105

Working with switch configurations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

Modifying a configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

Backing up and restoring switch configurations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107

Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108

Admin command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 110

Alias command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111

CIM command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

CIMListener command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114

CIMSubscription command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116

Config command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 118

Create command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121

Date command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124

Feature command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125

Firmware Install command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126

Group command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127

Hardreset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132

Help command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133

History command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134

Hotreset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 135

Image command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136

Lip command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139

Passwd command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140

Ping command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141

Ps command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142

Quit command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143

Reset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

Security command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 149

Securityset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 152

Set command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154

Set Config command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 156

Set Log command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166

Set Port command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169

Set Setup command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170

Show command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 178

Show Config command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 188

Show Log command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191

Show Perf command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194

Show Setup command. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 196

Shutdown command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 199

Test command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 200

Uptime command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 202

User command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 203

Whoami command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 205

Zone command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206

Zoneset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 209

Zoning command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 211

Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221

Figures

1 Initial Startup Dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14

2 McDATA Web Server window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

3 Preferences dialog – McDATA Web Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

4 McDATA Web Server display elements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

5 Topology display menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

6 Faceplate display menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

7 Fabric tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

8 Topology display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

9 Faceplate display. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

10 RADIUS Server Information dialog — Add Server tab page. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

11 RADIUS Server Information dialog — Remove Server tab page . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

12 RADIUS Server Information dialog — Edit Server tab page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28

13 RADIUS Server Information dialog — Modify Authentication Order tab page . . . . . . . . . . . . . . . . . . 29

14 Edit Security dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32

15 Create Security Set dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

16 Create Security Group dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

17 Create a Security Group Member dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

18 Security Config dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

19 Fabric Snapshot Analysis dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

20 Add a New Fabric dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

21 Event Browser . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

22 Filter Events dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

23 Active Zone Set data window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

24 Detailed Device Display dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48

25 Edit Zoning dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52

26 Zoning Config dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54

27 User Account Administration dialog — Add Account tab page . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64

28 User Account Administration dialog — Remove Account tab page . . . . . . . . . . . . . . . . . . . . . . . . . . 65

29 User Account Administration dialog — Change Password tab page. . . . . . . . . . . . . . . . . . . . . . . . . 66

30 User Account Administration dialog — Modify Account tab page . . . . . . . . . . . . . . . . . . . . . . . . . . 67

31 Faceplate display — switch information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

32 Configured Zonesets data window. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72

33 Port Threshold Alarm Configuration dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73

34 Port threshold alarm example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74

35 Switch Properties dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 7

36 Advanced Switch Properties dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

37 System Services dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80

38 Network Properties dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

39 SNMP Properties dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83

40 Restore dialogs – Full Restore and Selective Restore tab pages . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86

41 Features Licenses dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

42 Add License Key dialog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

43 Hardware status LEDs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91

44 Faceplate display – port information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93

45 Port Properties dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100

46 Port Loopback Test dialog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102

Tables

1 Document conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

2 Workstation requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

3 Tool bar buttons . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

4 Topology display switch and status icons . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

5 Severity levels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

6 Devices data window entries. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46

7 Edit Zoning dialog tool bar buttons and icons . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .53

8 Factory user accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63

9 Switch data window entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69

10 Switch resets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75

11 Switch administrative states. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

12 Corresponding domain ID values by interop mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78

13 Timeout values . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80

14 IP configuration parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

15 SNMP configuration parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84

16 SNMP trap configuration parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85

17 Factory default configuration settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87

18 Port types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

19 Port operational states . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

20 Port speeds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95

21 Port transceiver media view . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95

22 Port Statistics data window entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96

23 Port Information data window entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98

24 Port administrative states . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100

25 Port speeds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

26 Port types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

About this guide

This manual describes the McDATA® Web Server™ application switch management tool for the McDATA 4Gb SAN Switch. The McDATA 4Gb SAN Switch is a 10-port non-blocking Fibre Channel (FC) switch. This manual defines the features, components, and performance characteristics of the McDATA 4Gb SAN Switch.

The embedded McDATA Web Server application is the primary focus of this manual which is organized as follows:

• ”Using McDATA Web Server” on page 13 describes how to use McDATA Web Server, its menus, and

its displays.

• ”Managing fabrics” on page 25 describes fabric management tasks.

• ”Managing switches” on page 63 describes switch management tasks.

• ”Managing ports” on page 93 describes port management tasks.

• ”Command Line Interface” on page 105 describes the Command Line Interface (CLI).

A glossary of terms and an index are also provided.

Intended audience

This manual introduces the switch management products and explains their installation and use. It is intended for users responsible for installing and using switch management tools.

Prerequisites

Prerequisites for using this product include:

• Knowledge of operation systems

• Knowledge of related hardware/software

Related documentation

In addition to this guide, please refer to other documents for this product:

• McDATA 4Gb SAN Switch for HP p-Class BladeSystem release notes AA-RW1ZA-TE

•

McDATA 4Gb SAN Switch for HP p-Class BladeSystem quick setup instructions A8001-90001

•

McDATA 4Gb SAN Switch for HP p-Class BladeSystem installation guide AA-RW1XA-TE

These and other HP documents can be found on the HP documents web site:

http://www.hp.com/support/.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 9

Document conventions and symbols

Table 1 Document conventions

Convention Element

Medium blue text: Figure 1 Cross-reference links and e-mail addresses

Medium blue, underlined text (

http://www.hp.com)

Bold font

Web site addresses

• Key names

• Text typed into a GUI element, such as into a box

• GUI elements that are clicked or selected, such as menu and list

items, buttons, and check boxes

Italics font Text emphasis

Monospace font

Monospace, italic font

• File and directory names

• System output

• Code

• Text typed at the command-line

• Code variables

• Command-line variables

Monospace, bold font Emphasis of file and directory names, system output, code, and text

typed at the command line

WARNING! Indicates that failure to follow directions could result in bodily harm or death.

CAUTION: Indicates that failure to follow directions could result in damage to equipment or data.

IMPORTANT: Provides clarifying information or specific instructions.

NOTE: Provides additional information.

TIP: Provides helpful hints and shortcuts.

JDOM license

Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

1. Redistributions of source code must retain the above copyright notice, this list of conditions, and the

following disclaimer.

2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions, and the

disclaimer that follows these conditions in the documentation and/or other materials provided with the distribution.

3. The name "JDOM" must not be used to endorse or promote products derived from this software without

prior written permission. For written permission, please contact license@jdom.org.

4. Products derived from this software may not be called "JDOM", nor may "JDOM" appear in their

name, without prior written permission from the JDOM Project Management (pm@jdom.org).

In addition, we request (but do not require) that you include in the end-user documentation provided with the redistribution and/or in the software itself an acknowledgement equivalent to the following: "This product includes software developed by the JDOM Project (http://www.jdom.org/)."

Alternatively, the acknowledgment may be graphical using the logos available at http://www.jdom.org/images/logos.

THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE JDOM AUTHORS OR THE PROJECT CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

This software consists of voluntary contributions made by many individuals on behalf of the JDOM Project and was originally created by Brett McLaughlin <brett@jdom.org> and Jason Hunter <jhunter@jdom.org>. For more information on the JDOM Project, please see <http://www.jdom.org/>.

HP technical support

Telephone numbers for worldwide technical support are listed on the HP support web site:

http://www.hp.com/support/

Collect the following information before calling:

• Technical support registration number (if applicable)

• Product serial numbers

• Product model names and numbers

• Applicable error messages

• Operating system type and revision level

• Detailed, specific questions

For continuous quality improvement, calls may be recorded or monitored.

HP strongly recommends that customers sign up online using the Subscriber's choice web site:

http://www.hp.com/go/e-updates

• Subscribing to this service provides you with e-mail updates on the latest product enhancements, newest

versions of drivers, and firmware documentation updates as well as instant access to numerous other product resources.

• After signing up, you can quickly locate your products by selecting Business support and then Storage

under Product Category.

HP-authorized reseller

For the name of your nearest HP-authorized reseller:

• In the United States, call 1-800-282-6672.

• Elsewhere, visit the HP web site: http://www.hp.com

telephone numbers.

. Then click Contact HP to find locations and

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 11

Helpful web sites

For other product information, see the following HP web sites:

• http://www.hp.com

• http://www.hp.com/go/storage

• http://www.hp.com/support/

• http://www.docs.hp.com

• http://h71028.www7.hp.com/enterprise/cache/80316-0-0-0-121.htm

1Using McDATA Web Server

This section describes how to use the McDATA Web Server application and its menus. The following topics are covered:

• Workstation requirements, page 13

• Starting McDATA Web Server, page 14

• Exiting McDATA Web Server, page 15

• Setting McDATA Web Server preferences, page 15

• Using online help, page 16

• Viewing software version and copyright information, page 16

• McDATA Web Server user interface, page 17

• Using the topology display, page 21

• Using the faceplate display, page 23

Workstation requirements

The requirements for fabric management workstations running McDATA Web Server are described in

Table 2.

Table 2 Workstation requirements

Operating System Windows

Linux

2000, 2003

Red Hat® EL 3.x, 4.x

Memory 256 MB or more

Disk Space 150 MB per installation

Processor 500 MHz or faster

Hardware

Internet Browser Microsoft

RJ-45 Ethernet port

Internet Explorer® 5.0 or later Netscape Mozilla™ 1.02 or later

Java 2 Run Time Environment installed to support the Web Server. Refer to Starting McDATA Web Server, page 14 for more information.

Navigator® 4.72 or later

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 13

Starting McDATA Web Server

To start McDATA Web Server after the switch is operational, enter the switch IP address in an internet browser. The workstation used to manage the switch must be able to connect to the default switch IP address 10.0.0.1.

1. At the workstation, enter the default switch IP address (10.0.0.1) in an internet browser. If your

workstation does not have the Java 2 Run Time Environment program, you will be prompted to download it.

2. Click Proceed in the Initial Start Dialog of the McDATA Web Server window.

3. Enter the default switch IP address, login name (default is “admin”), and password (default is

“password”) in the Add a New Fabric window.

4. Click Add Fabric.

5. Select the switch in the graphic window of the topology display.

6. Select Switch > Network Properties.

7. Change the IP Address, Subnet Mask, and Gateway settings to reflect your desired network

configuration in the Network Properties dialog.

8. Click OK.

9. Select File > Exit to close the McDATA Web Server application. The switch is now ready to be

managed through your network.

10.Repeat steps 1—4 using the switch's newly configured IP address to launch the McDATA Web Server

application once your configured switch is connected to the network.

The application opens with the Initial Start Dialog shown in Figure 1. Select Don’t show this dialog again if you prefer not to see this dialog again. This has the same effect as disabling the Display Initial Startup Dialog preference. Refer to ”Setting McDATA Web Server preferences” on page 15 for information about setting preferences.

Figure 1 Initial Startup Dialog

Perform one of the following procedures to access and begin managing the switch:

• Select Open Existing Fabric to open the Add a New Fabric dialog, which prompts you for a fabric

name, IP address, account name, and password. Refer to ”Adding a fabric” on page 39.

14 Using McDATA Web Server

• Select Start Application Without Specifying a Fabric to open the McDATA Web Server window shown

in Figure 2. Click Add to open the Add a New Fabric dialog, which prompts you for a fabric name, IP address, account name, and password. Refer to ”Adding a fabric” on page 39.

Figure 2 McDATA Web Server window

Exiting McDATA Web Server

Select File > Exit to exit a McDATA Web Server application session. Enter the password and click OK, if the fabric view file was saved with a password.

Setting McDATA Web Server preferences

Using the preferences settings, you can:

• Change the location of the working directory in which to save files.

• Change the location of the browser used to view the online help.

• Enable (default) or disable the use of the Initial Start Dialog at the beginning of a McDATA Web Server

session. Refer to ”Starting McDATA Web Server” on page 14 for information about the Initial Start Dialog. After a default fabric view file is created, this setting has no effect.

• Enable (default) or disable the Event Browser. Refer to ”Displaying the Event Browser” on page 43. If

the Event Browser is enabled using the Preferences dialog as shown in Figure 3, the next time McDATA Web Server is started, all events will be displayed. If the Event Browser is disabled when McDATA Web Server is started and later enabled, only those events from the time the Event Browser was enabled and forward will be displayed.

• Choose the default port view when opening the faceplate display. You can set the faceplate to reflect

the current port type (default), port speed, port operational state, or port transceiver media. Regardless of the default port view you choose, you can change the port view in the faceplate display by opening the View menu and selecting a different port view option. Refer to the corresponding subsection for more information:

• Displaying port types, page 94

• Displaying port operational states, page 94

• Displaying port speeds, page 95

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 15

• Displaying transceiver media status, page 95

Figure 3 Preferences dialog – McDATA Web Server

To set preferences for your McDATA Web Server sessions, perform the following procedure:

1. Select File > Preferences to open the Preferences dialog.

2. Enter or browse for paths to the working directory and browser.

3. Choose the preferences you want in the Application-wide Options area.

4. Click OK to save the changes.

Using online help

Online help is available for the McDATA Web Server application and its functions. To open online help, choose one of the following:

• Select Help > Help Topics.

• Click Help in the tool bar.

• Click Help in McDATA Web Server dialogs to display context-sensitive help in dialogs.

Viewing software version and copyright information

Select Help > View to view McDATA Web Server software version and copyright information.

16 Using McDATA Web Server

McDATA Web Server user interface

The McDATA Web Server application uses two basic displays to manage the fabric and individual switches: the topology display and the faceplate display. The topology display shows all switches that are able to communicate and all connections between switches. The faceplate display shows the front of a single switch and its ports. Both displays share some common elements as shown in Figure 4.

Fabric

tree

Topology display

Faceplate display

bar

Data window tabs

Tool bar

Graphic window

Data

window

Working status indicator

Figure 4 McDATA Web Server display elements

Menu bars

The menus and the options offered in them vary depending on the display. For example, the Port menu and many of the Switch menu selections are available only in the faceplate display.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 17

Topology display menu

The menu options available in the topology display are shown in Figure 5.

Figure 5 Topology display menu

Faceplate display menu

The menu options available in the faceplate display are shown in Figure 6.

Figure 6 Faceplate display menu

NOTE: The Security menu is only displayed if Secure Sockets Layer (SSL) is enabled. Select Switch >

Services > SSL to enable SSL. Refer to ”System Services dialog” on page 80 for more information.

The keyboard shortcut keys vary by display type: topology display and faceplate display. In addition to the menu bar, both the topology and faceplate displays have context-sensitive menus that pop up when you right-click in the graphic window. Refer to ”Opening the faceplate and topology display popup menus” on page 22 for more information about these popup menus.

18 Using McDATA Web Server

Shortcut keys

Shortcut key combinations, available in both the topology and faceplate displays, provide an alternative method of accessing menu options. The shortcut key combinations are not case-sensitive. For example, to exit the application, press Alt+F > X.

Tool bar

The tool bar consists of a row of graphical buttons that you can use to access McDATA Web Server functions as shown in Table 3. The tool bar buttons are an alternative method to using the menu bar. The tool bar can be relocated in the display by clicking and dragging the handle at the left edge of the tool bar.

Table 3 Tool bar buttons

Tool bar button Description

Add Fabric button — adds a new fabric to the fabric view

Refresh button — updates the topology or faceplate display with current information

Event Browser button — opens the events browser

Edit Zoning button — opens the Edit Zoning dialog (available only in faceplate display)

Edit Security button — opens the Edit Security dialog (faceplate display only)

Help Topics button — opens the online help file

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 19

Fabric tree

The fabric tree lists the managed fabrics and their switches as shown in Figure 7. The window width can be adjusted by clicking and dragging the moveable window border. An entry handle located to the left of an entry in the tree indicates that the entry can be expanded or collapsed. Click this handle or double-click the entry to expand or collapse a fabric tree entry. A fabric entry expands to show its member switches.

Fabric entry

Entry handle

Switch entries

Figure 7 Fabric tree

Each fabric tree entry has a small icon next to it that uses color to indicate operational status.

• A green icon indicates normal operation.

• A yellow icon indicates that a switch is operational, but may require attention to maintain maximum

performance.

• A red icon indicates a potential failure or non-operational state as when the switch is offline.

• A blue icon indicates that a switch is unknown, unreachable, or unmanageable.

• If the status of the fabric is not normal, the fabric icon in the fabric tree will indicate the reason for the abnormal status. The same message is provided when you rest the mouse over the fabric icon in the fabric tree.

• The fabric tree provides access to the topology and faceplate displays for any fabric or switch.

• Click a fabric entry in the fabric tree to open the topology display.

• Click a switch entry in the fabric tree to open the faceplate display.

Moveable

window border

Graphic window

The graphic window, shown in Figure 4, presents graphic information about fabrics and switches such as the fabric topology and the switch faceplate. The window height can be adjusted by clicking and dragging the window border that it shares with the data window.

Data window and tabs

The data window presents a table of data and statistics associated with the selected tab. Use the scroll bar to browse through the data. The window length can be adjusted by clicking and dragging the border that it shares with the graphic window.

Adjust the column width by moving the pointer over the column heading border shared by two columns until a right/left arrow graphic is displayed. Click and drag the arrow to the desired width.

The data window tabs present options for the type of information to display in the data window. These options vary depending on the display.

20 Using McDATA Web Server

Working status Indicator

The working status indicator, located in the lower right corner of the McDATA Web Server window, shows when the management workstation is exchanging information with the fabric. As conditions change, the fabric forwards this information to the management workstation where it is reflected in the various displays.

Using the topology display

The topology display shown in Figure 8 receives information from the selected fabric and displays its topology. Switches and inter-switch links (ISLs) appear in the graphic window and use color to indicate status. Consider the following topology display features:

• Switch and link status, page 21

• Working with switches and links, page 21

• Topology data windows, page 22

Figure 8 Topology display

Switch and link status

Switch icon shape and color provide information about the switch and its operational state. Lines represent links between switches. The topology display uses green to indicate normal operation, yellow to indicate operational with errors, red to indicate a potential failure or non-operational state, and blue to indicate unknown, unreachable, or unmanageable. Refer to ”Fabric status” on page 42 for more information about topology display icons.

Working with switches and links

Switch and link icons are selectable and moveable, and serve as access points for other displays and menus. You select switches and links to display information about them, modify their configuration, or delete them from the display. Context-sensitive popup menus are displayed when you right-click on a switch or link icon, or in the background of the topology display graphic window.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 21

Selecting switches and links

Selected switch icons are highlighted in light blue. Selected ISLs are displayed as a heavier line. You can select switches and links in the following ways:

• Click the icon or link to select a switch or a link.

• Press and hold Control, and select multiple switches or links.

• Right-click anywhere in the graphic window background to select all switches or links. Select Select >

All Switches, or select Select > Select All Links from the popup menu.

• Press and hold Control, and select the item again to cancel a selection. Click in the graphic window

background to cancel all selections.

Arranging switches in the display

You can arrange individual switch icons in the topology display or allow McDATA Web Server to arrange all switch icons for you:

• Click and drag the icon to another location in the graphic window to move an individual switch icon.

Links stretch or contract to remain connected.

• Select View > Layout Topology to arrange all switch icons in the topology display automatically.

By default, the Toggle Auto Layout box in the View menu is checked which causes McDATA Web Server to arrange the icons when you select Layout Topology.

You can save a custom arrangement, or layout, and restore that layout during a McDATA Web Server session. Begin by arranging the icons, then select View > Remember Layout. Un-select Toggle Auto Layout > Layout Topology to restore the saved layout.

Opening the faceplate and topology display popup menus

The topology display shows all switches that are able to communicate and all connections between switches. The faceplate display shows the front of a single switch and its ports. Menu options vary with each type of popup menu.

• Right-click the graphic window background to open the fabric popup menu in the topology display.

• Right-click the switch icon in the graphic window to open the switch popup menu in the topology

display.

• Right-click the link to open the link popup menu in the topology display.

• Right-click the faceplate in the graphic window to open the switch popup menu in the faceplate display.

Topology data windows

The topology display provides the following data windows corresponding to the data window tabs:

• Devices – displays information about devices (hosts and storage targets) connected to the switch. Refer

to ”Devices data window” on page 68 for more information.

• Active Zoneset – displays the active zone set for the fabric including zones and their member ports.

Refer to ”Active Zone Set data window” on page 47 for more information about this data window. Refer to ”Zoning a fabric” on page 50 for information about zone sets and zones.

• Switch – displays current network and switch configuration data for the selected switches. Refer to

”Switch data window” on page 68 for more information.

• Link – displays information about the inter-switch links. Refer to ”Link data window” on page 47 to for

more information.

22 Using McDATA Web Server

Using the faceplate display

The faceplate display shown in Figure 9 displays the switch name and operational state, and port status. The external ports numbered 0 and 9. Internal ports are numbered 1–8. The port numbers 1–8 correspond to server blades slots 1–8.

Figure 9 Faceplate display

Consider the following functional elements of the faceplate display:

• Port views and status, page 23

• Working with ports, page 23

• Faceplate data windows, page 24

Port views and status

Port color and text provide information about the port and its operational state. Green indicates active; gray indicates inactive. The faceplate display provides the following views of port status corresponding to the View menu options in the faceplate display. Refer to ”Monitoring port status” on page 94 for more information about these displays.

• Port t ype

• Port state

• Port speed

• Port media

Right-click the faceplate image or a port icon in the faceplate to display context-sensitive popup menus.

Working with ports

Ports are selectable and serve as access points for other displays and menus. You select ports to display information about them in the data window or to modify them. Right-click the faceplate image or on a port icon in the faceplate to display context-sensitive popup menus.

Selecting ports

You can select ports in the following ways. Selected ports are outlined in white.

• Click the port in the faceplate display to select a port.

• Select a port, then press and hold Shift, and select another port to select a range of consecutive ports.

The application selects both end ports and all ports in between in port number sequence.

• Press and hold Control while selecting ports to select several non-consecutive ports.

• Press and hold Control, and click a selected port to cancel that selection.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 23

Opening the faceplate popup menu

To open the popup menu, right-click on the faceplate image to present the following tasks.

• Refresh the switch

• Select all ports

• Manage switch properties

• Manage network properties

• Manage SNMP properties

• Manage port properties

• Change the port symbolic name

• Run the port loopback tests

• Services

• Security Consistency Checklist

If no ports are selected, the port-related tasks will be unavailable in the menu. Right-click a port to open the Port popup menu. Press and hold Shift or Control to select more than one port. Right-click one of the selected ports to unselect multiple ports.

Faceplate data windows

The faceplate display provides the following data windows corresponding to the data window tabs:

• Devices — displays information about devices (hosts and storage targets) connected to the switch.

• Switch — displays current switch configuration data.

• Port Statistics — displays performance data for the selected ports.

• Port Information — displays information for the selected ports.

• Configured Zonesets — displays all zone sets, zones, and zone membership in the zoning database.

• Configured Security — displays all security definitions currently saved in the database.

• Active Security — displays the active security set.

24 Using McDATA Web Server

2 Managing fabrics

This section describes the following tasks that manage fabrics:

• RADIUS servers, page 25

• Securing a fabric, page 30

• Tracking fabric firmware and software versions, page 38

• Managing the fabric database, page 39

• Displaying fabric information, page 42

• Working with device information and nicknames, page 47

• Zoning a fabric, page 50

RADIUS servers

Remote Authentication Dial In User Service (RADIUS) provides a method to centralize the management of authentication passwords in larger networks. It has a client/server model, where the server is the password repository and third party authentication point and the clients are all of the managed devices. RADIUS can be configured for devices and/or user accounts. The RADIUS server dialogs are available only on a secure (SSL) fabric and on the entry switch (out of band switch). Refer to ”Connection security” on page 30 and ”System Services dialog” on page 80 for more information.

RADIUS is designed to authenticate users and devices using a challenge/response protocol. Basic implementations consist of a central RADIUS server containing a database of authorized users as well as authentication information. A RADIUS client wishing to verify the authenticity of a user issues a challenge to the user and collects the response to the challenge. This information is forwarded to the RADIUS server for authentication and the server responds with the results, either an accept or reject. The RADIUS client does not need to be configured with any user authentication information, this all resides on the RADIUS server and can be managed centrally and separately from the clients. In addition, no passwords are exchanged between the RADIUS server and its clients. Authentication of requests from a RADIUS client to the server and responses from the server to a client can also be authenticated. This requires sharing a secret between the server and client. The accounting RADIUS supports the auditing of the users and switch services such as Telnet, FTP, and switch management applications. The RADIUS Accounting Server enables (True) or disables (False) the auditing of activity during a user session. The default is False. When enabled, user activity is audited whether UserAuthServer is enabled or not. The accounting server UDP port number is the ServerUDPPort value plus 1 (default 1813).

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 25

Adding a RADIUS server

When you add a RADIUS server, you provide a method to centralize the management of authentication passwords over a network.

Figure 10 RADIUS Server Information dialog — Add Server tab page

To add a RADIUS server, perform the following procedure:

1. Select Switch > Radius Servers in the faceplate display.

2. Click the Add Server tab in the Radius Server Information dialog shown in Figure 10.

3. Select Device, User, or Account for the server type.

4. Enter the remote IP address of the server in the IP Address field.

5. Enter the remote UDP port number of the Authentication RADIUS Server in the UDP Port field.

The RADIUS Accounting Server UDP port will always be the value of Device/User Authentication Server UDP Port + 1. When enabled, the RADIUS Accounting Server audits user activity whether UserAuthServer is enabled or not. The RADIUS Accounting Server default is False.

6. Enter the timeout value in seconds (minimum of 1 second, maximum of 30 seconds) in the Timeout

field. This is the number of seconds the RADIUS client will wait for a response from the RADIUS server before retrying, or giving up on a request.

7. Enter the number of retries in the Retries field. This is the maximum number of times the RADIUS client

will retry a request sent to the primary RADIUS server.

8. Select Sign Packet to enable the switch to include a digital signature (Message-Authenticator) in all

RADIUS access request packets sent to the RADIUS server. A valid Message-Authenticator attribute will be required in all RADIUS server responses.

9. Enter the server secret in the Secret field. A secret is required for all RADIUS servers. The secret is used

when generating and checking the Message-Authenticator attribute.

10.Click Add Server to add the server.

11.Click Modify Authentication Order tab, and verify that Device Authentication Order and User

Authentication Order options are set to either Radius or Radius Local for RADIUS Authentication to be

implemented. Refer to ”Modifying authentication order RADIUS server information” on page 29 for more information.

a. RADIUS — only attempts to authenticate using the RADIUS server (another computer that provides

authentication).

26 Managing fabrics

b. RADIUS Local — attempts to authenticate using the RADIUS server. If the switch can not contact the

RADIUS server due to a network or some other problem, the switch will authenticate using the local password database.

12.Click Close to close the Radius Server Information dialog.

Removing a RADIUS server

When you remove a RADIUS server, you disable the management of authentication usernames and passwords over the network for that server.

Figure 11 RADIUS Server Information dialog — Remove Server tab page

To remove a RADIUS server, perform the following procedure:

1. Select Switch > Radius Servers in the faceplate display.

2. Click the Remove Server tab in the Radius Server Information dialog shown in Figure 11.

3. Select the server to be removed in server list at the top of the dialog.

4. Click Remove Server to remove the server.

5. Click Close to close the Radius Server Information dialog.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 27

Editing RADIUS server information

Editing information of a RADIUS server involves changing the configuration of a RADIUS server.

Figure 12 RADIUS Server Information dialog — Edit Server tab page

To edit information of a RADIUS server, perform the following procedure:

1. Select Switch > Radius Servers in the faceplate display.

2. Click the Edit Server tab in the Radius Server Information dialog shown in Figure 12.

3. Select the server to be edited in server list at the top of the dialog.

4. Make changes to the IP Address, UDP Port, Timeout, Retries, and Secret fields.

5. Select the server type (Device, User, Account) and Sign Packet options.

6. Click Edit Server to save the changes.

7. Click Close to close the Radius Server Information dialog.

28 Managing fabrics

Modifying authentication order RADIUS server information

Editing information of a RADIUS server involves changing the configuration of a RADIUS server.

Figure 13 RADIUS Server Information dialog — Modify Authentication Order tab page

To modify the authentication order information of a RADIUS server, perform the following procedure:

1. Select Switch > Radius Servers in the faceplate display.

2. Click the Modify Authentication Order tab in the Radius Server Information dialog shown in Figure 13.

3. Select the server to be modified in server list at the top of the dialog.

4. Make changes to the Device Authentication Order or User Authentication Order drop-down lists. Select

one of the following:

a. Local — only attempts to authenticate using local switch password database. b. RADIUS — only attempts to authenticate using the RADIUS server (another computer that provides

authentication).

c. RADIUS Local — attempts to authenticate using the RADIUS server. If the switch can not contact the

RADIUS server due to a network or some other problem, the switch will authenticate using the local password database.

5. Click Modify Order to save the changes.

6. Click Close to close the Radius Server Information dialog.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 29

Securing a fabric

Fabric security consists of the following:

• Connection security, page 30

• User account security, page 30

• Security consistency checklist, page 30

• Device security, page 31

• Fabric services, page 37

Connection security

Connection security provides an encrypted data path for switch management methods. The switch supports the Secure Shell (SSH) protocol for the CLI and the Secure Socket Layer (SSL) protocol for management applications such as McDATA Web Server and Common Information Module (CIM).

The SSL handshake process between the workstation and the switch involves the exchanging of certificates. These certificates contain the public and private keys that define the encryption. The switch certificate is valid for one year beginning with its creation date and time. The workstation validates the switch certificate by comparing the workstation date and time to the switch certificate creation date and time. For this reason, it is important to synchronize the workstation and switch with the same date, time, and time zone. If a certificate has not been created by the user, the switch will automatically create one.

Consider your requirements for connection security: for the CLI (SSH), management applications such as McDATA Web Server (SSL), or both. If SSL connection security is required, also consider using the Network Time Protocol (NTP) to synchronize date/time between workstations and switches.

User account security

User account security is the process by which your user account and password are authenticated with the list of valid user accounts and passwords. The switch validates your account and password when you attempt to add a fabric using McDATA Web Server or log in to a switch through Telnet. Your system administrator defines accounts, passwords, and authority levels that are stored on the switch. Refer to ”Managing user accounts” on page 63 for more information.

The Admin account possesses Admin authority which grants full access to all tasks of the McDATA Web Server menu system. The switch validates your user account and McDATA Web Server grants access to its menus according to your authority level. If you do not have Admin authority, you are limited to monitoring tasks.

NOTE: If a user is logged into a switch using McDATA Web Server or CLI, and an administrator changes

user access rights and passwords, existing login sessions will not be affected by the new settings. Login access and privileges are only checked for a new login request.

Security consistency checklist

The Security Consistency Checklist dialog enables you to compare security-related features on switches to check for inconsistencies. Any changes must be made through the appropriate dialog, such as Network Properties dialog, Switch Properties dialog, or SNMP Properties dialog. Select Switch > Security Consistency Checklist to open the Security Consistency Checklist dialog.

30 Managing fabrics

+ 196 hidden pages

HP AA-RW20A-TE User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual