Professional Documents
Culture Documents
Product Training
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
CFP264
Brocade 4 Gbit/sec Accelerated BCFP
Instructor-Led Module 4
Installation and Setup
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-2
2
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Objectives
Following this module and associated lab, an attendee should be able to
Perform out-of-box initial configuration
Perform initial security configuration
Verify switch status
Identify the importance of fabric parameters
Perform other common administrative tasks
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-3
3
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Out of the box Experience
Items included
Qualified Fabric OS version
Command-Line management
Generally included: Web Tools and Zoning licenses
Power Cables
Serial Cables
Rubber mounting feet
Quick Start Guide
Documentation CD
Optional Items
Rack-mount kit
Additional licensed Fabric OS features
SFPs (may be included, varies by OEM)
Each vendor that ships a Brocade switch will include the version of firmware that the supporting vendor has
qualified.
Due to qualification cycles, switches shipping from the factory may not have the same Fabric OS version that is
currently installed on other switches in your fabric, even if the switches were obtained from the same vendor.
Close attention should be taken to ensure the firmware on the new switch is compatible with other switches in your
environment, per your vendors qualification matrix. Use the version command to determine the installed
firmware version.
You may also check fabric operation parameters to ensure there are no conflicting settings when any new switch
is introduced to a production fabric. Being familiar with the version of Fabric OS currently installed on the SAN and
any customized settings will make troubleshooting easier and adding new switches simpler. The SAN Health utility
can help you audit your current environment.
Cables and documentation will be enclosed with the switch. A switch may be shipped with a rack mounting kit or
enclosed in a 19 rack. Should the switch reside on a table top and not installed in a rack, it is recommended to
attach the four rubber mounting feet, one in each corner to reduce the chance of slipping.
Each switch has a blank IP address label located on the cable side of the switch that can be used to document the
IP address when assigned.
The Quick Start Guide and Brocade Documentation CD should be read prior to installing SFPs and powering on
the switch.
Brocade Partner Network http://partner.brocade.com
For Brocade partners.
Firmware and release notes
Documentation, how-to-guides
Sales presentations and collateral
Sales training courses and sales Webinars
Scripts, MIBs, and RSH Utilities
Technical support bulletins, advisory notices, and the Brocade
Knowledge Base.
Brocade Connect: http://www.brocadeconnect.com
For Brocade end-users.
User-donated scripts
SNMP MIBs
User message boards
Documentation, how-to guides, and release notes
Customers that have purchased Brocade support have
access to firmware, support bulletins, advisory notices, and
the Brocade Knowledge Base.
SAN Health: http://www.brocade.com/sanhealth
For Brocade end-users and partners
Generates a Visio topology diagram.
Generates a detailed "snapshot" report on your SAN
configuration including alerts, performance graphs, and best
practices.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-4
4
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Physical Preparation
Customizing the Switch
Managing Licensed Features
Configuring and Verifying Fabric Parameters
Verifying Switch Function
Attaching Nodes
Saving Switch Configuration
Steps For Configuring a New Switch
Prior to installing the switch, a site survey should be made. Brocade recommends separate
power sources; one for each of the dual power supplies and ample airflow for the back to
front cooling. Details on environmental requirements, including power and cooling, are found
in the Hardware Reference Guide for your switch. This document is found on the
Documentation CD shipped with the switch, and can be downloaded from Brocade Connect.
When customizing the switch for the SAN and Network, it is customary to first assign the
switch an IP address by connecting to the external serial port first. It is also a good idea to
set a timeout value (timeout 10) to ensure you do not end up with hanging administrative
sessions. Once the IP address is assigned, log out of the serial connection and connect over
IP with Web Tools, telnet or SSH for remaining customization such as the domain number
and switch name.
During the login process and after the password submitted has been verified, a message
will appear asking to change default user id and password from its current value.
Responding to this is optional and changing the default password to a new value will make
the switch more secure when performing administration.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-5
5
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Environmental Concerns
Power
Cable dual power switches to dual power circuits
Air
Air flow is from non-cable side (back) to cable side (front)
Cable(s)
Allow for manageable cable slack to minimize stress
Do not mix single (longwave) with multimode (shortwave) in patch panel
Secure with Velcro straps
Be wary of distances total can add up quickly with patch panels
Create a Cable Table
Monitor switch environment
psshow Displays power status
fanshow Displays fan status
tempshow Displays temp readings
sensorshow Displays all sensor readings
Air flow for Brocade switches is from the non-cable side to the cable side because the heat-
generating components of the switch (ASICs and SFPs) are on the port side.
Improper cable planning can cause problems and may impact performance in the SAN.
Although patch panels are helpful in a cable management scenario, attempt to minimize the
number of connections as every fiber optic interconnection generates a few dB of signal
loss. Keep a manageable slack to minimize cable stress. Use different color Velcro straps
for trunk groups.
For more information on power supplies, fans, and temperature readings see the hardware
reference manual for the appropriate switch model.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-6
6
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
SilkWorm Management Interfaces
Command Line Interface
Serial Communication (HyperTerm or tip)
Telnet (Port 23)
SSHv2 (Port 22) - v4.1 and later
Brocade Application Program Interface (API and SMI-S)
Brocade Fabric Manager
Brocade Advanced Web Tools
HTTP
HTTPS requires a Digital Certificate to be installed on the switch
(v4.4 and later)
SNMPv1 (all) and SNMPv3 (Fabric OS v4.4 and later)
Brocade MIBs
Brocade switches can be administered using a command line interface (CLI) or through a
graphical user interface (GUI).
With Fabric OS v4.1 and higher, SSHv2 (Secure Shell version 2) is enabled by default,
allowing the entire telnet session to be encrypted.
The Brocade Fabric Access and Storage Management Initiative Specification (SMI-S) APIs
give developers and customers programmatic access into the switch where organizations
can easily integrate the intelligence of Brocade SAN fabrics into existing management
applications, or quickly develop customized SAN-specific capabilities.
Brocade Fabric Manager is a powerful desktop application that manages multiple Brocade
SilkWorm switches and fabrics in real time. In particular, Fabric Manager provides the
essential functions for efficiently configuring, monitoring, provisioning, and managing
Brocade SAN fabrics on a daily basis.
Brocade Web Tools, an intuitive and easy-to-use interface, enables organizations to monitor
and manage Brocade SilkWorm fabrics. Tasks can be performed by using a Java-capable
Web browser from standard laptops, desktop PCs, or workstations from any location within
the enterprise. Use the httpcfgshow command to determine the java version the switch
expects at the management console.
Brocade offers SNMP MIBs for customers to use to read and set common settings on
SilkWorm switches.
For information regarding Secure Shell, read:
SSH, The Secure Shell: The Definitive Guide
By Daniel J. Barrett, Richard E. Silverman
First Edition February 2001
ISBN: 0-596-00011-1
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-7
7
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Command Line Interface Shortcuts
Recall last command & put CLI into edit mode
ESC + K (pre v5.1.0), or UP Arrow key (v5.1.0 and higher)
Cursor Position - while edit mode active
H, J, K, L or UP, DOWN, LEFT, RIGHT
End of Line - while edit mode active
Shift + A or END key
History of commands
h
Multiple commands issued on one line
command1;command2
Help for commands
help <command>
When administrating Brocade switches using the command line interface certain key strokes
can be helpful administrating the switch.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-8
8
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Log in Through the Serial Port
Cable:
The required serial cable is provided with the switch
A PC with:
HyperTerm
An available COM port
A UNIX
system with:
tip
An available serial port
When a new switch has arrived for installation into a fabric, its suggested to use a
serial cable to configure the switch with an IP address. After the IP address is
configured, the serial connection to the switch may be dropped and an SSH, telnet,
or Web Tools session may be used for further switch configuration because of its
convenience and speed.
To configure the connection in a Microsoft Windows
environment:
Bits per second: 9600 Data bits: 8
Parity: None Stop bits: 1 Flow control: None
To configure the connection in a UNIX environment:
# tip hardwire
Installation steps
1. Insert the serial cable provided to an RS-232 serial port on the workstation
2. Verify the switch has power and is past the POST stage
3. Invoke the ipaddrset command to set the IP address and subnet mask and
default gateway
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-9
9
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Set the IP Address
Default IP Address for switches: 10.77.77.77
Default Netmask: 255.255.255.0
Obtain addressing information for your network
IP Address & netmask
Default gateway
Directors require more than one IP address on the same subnet
One IP Address required per Control Processor
One IP Address required per logical switch
2 logical switches in the SilkWorm 12000
1 or 2 logical switches in the SilkWorm 24000
1 logical switch in the SilkWorm 48000
Default IP Addresses for Directors: 10.77.77.77 (logical switch 0),
.76 (logical switch 1), .75 (cp0), .74 (cp1)
RSL1_ST02_B41:admin> ifmodeshow eth0
Link mode: negotiated 100baseTx-FD, link ok
RSL1_ST02_B41:admin> ifmodeset eth0
Exercise care when using this command. Forcing the link to an operating mode not supported
by the network equipment to which it is attached may result in an inability to communicate
with the system through its Ethernet interface. It is recommended that you only use this
command from the serial console port.
Are you sure you really want to do this? (yes, y, no, n): [no] yes
Proceed with caution.
Auto-negotiate (yes, y, no, n): [no]
Force 100 Mbps / Full Duplex (yes, y, no, n): [no]
Force 100 Mbps / Half Duplex (yes, y, no, n): [no]
Force 10 Mbps / Full Duplex (yes, y, no, n): [no]
Force 10 Mbps / Half Duplex (yes, y, no, n): [no]
You must select at least one link operating mode.
RSL1_ST02_B41:admin> ipaddrset
Ethernet IP Address [10.255.248.35]:
Ethernet Subnetmask [255.255.255.192]:
Fibre Channel IP Address [0.0.0.0]:
Fibre Channel Subnetmask [0.0.0.0]:
Gateway IP Address [10.255.248.62]:
Issuing gratuitous ARP...Done.
IP address is being changed...Done.
Committing configuration...Done.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-10
10
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Log In Through the Ethernet Interface
Multiple concurrent telnet sessions are allowed on Linux-based
switches
Two admin and four user logins simultaneously
Use killtelnet to terminate a telnet connection
Login using a standard telnet or SSHv2 client
Use quietmode to suppress messages to the console
Telnet may be disabled to force administrators to connect through an
encrypted SSHv2 session
RSL1_ST02_B41 login: admin
Password:
Please change your passwords now.
Use Control-C to exit or press 'Enter' key to proceed.
Password was not changed. Will prompt again at next login
until password is changed.
RSL1_ST02_B41:admin> quietmode
[* abbreviated *]
quietMode: Off
RSL1_ST02_B41:admin> quietmode 1
Committing configuration...done
Quiet Mode is now ON
RSL1_ST02_B41:admin> killtelnet
[* abbreviated *]
______________________________________________________________________________
Session No USER TTY IDLE FROM LOGIN@
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
0 admin0 pts/0 1.00s 10.255.248.22 1:47pm
1 admin0 pts/1 9.00s 10.255.248.22 1:52pm
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enter Session Number to terminate (q to quit) 1
Please Ensure (Y/[N]): Y
killing session.... Done!
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-11
11
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Switch Login Accounts
Open telnet or serial connection to switch
Default administrative account: admin
Default password: password
Other accounts: root, factory, switchadmin and user
You will be prompted to change the default passwords at every login
until they are changed
The default user accounts are factory, root, admin and user. The default password for
admin and user is password. Brocade discourages signing on as root/factory except for
conditions when directed by an OEM support team for advanced troubleshooting reasons.
When signing onto a switch and the current password is the Brocade default value, a
password prompt will appear asking to change the password for all accounts. Once this
process completes, you may rename the default accounts to a new name and assign a new
password that meet the password requirements of 8 characters long. New passwords must
be different than the current password. The password value is then written to the local
switch. Subsequently, when signing onto other switches in the fabric, other switches may
have different accounts and passwords. Documenting renamed accounts and their new
password values is strongly encouraged. Having the same password for each account is
discouraged.
Use the switchAdmin level account for administrative use that does not include security,
user management, or zoning configuration.
RSL1_ST02_B41 login: admin
Password:
Please change your passwords now.
Use Control-C to exit or press 'Enter' key to proceed.
Password was not changed. Will prompt again at next login
until password is changed.
While there are four accounts that can be used to sign onto a switch. Fabric OS v3.x and
v2.x, only one person signed at a time can sign on. FOS v4.x allows for two concurrent
admin sessions. For FOS v2.x and v3.x, if an administration session using the RS232
interface is in use and a telnet session using the IP interface is made to the same switch, the
telnet session will disconnect the RS232 session.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-12
12
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Set the Fabric-Wide Clock
The Principal Switch maintains time for an entire fabric
Subordinate switches synchronize time from the Principal
Use the tsclockserver command to instruct the Principal Switch to
synchronize time with an NTP server
Specify an IP address of an NTP server
Specify LOCL to stop NTP synchronization
Use the date command to manually set the switch date and time
date with no arguments displays the current date and time
date "mmddhhmmyy" sets the date and time, where
mm is the month, valid values are 01-12
dd is the date, valid values are 01-31
hh is the hour, valid values are 00-23
mm is minutes, valid values are 00-59
yy is the year, valid values are 00-99
The date command becomes read-only if an NTP server has
been specified
RSL1_ST02_B41:admin> date
Tue May 16 15:00:57 UTC 2006
RSL1_ST02_B41:admin> tsclockserver
LOCL
RSL1_ST02_B41:admin> tsclockserver 128.118.25.3
Updating Clock Server configuration...done.
RSL1_ST02_B41:admin> tsclockserver
128.118.25.3
RSL1_ST02_B41:admin> date "0516073406"
External Time Synchronization in place. Cannot execute this
command.
RSL1_ST02_B41:admin> tsclockserver LOCL
Updating Clock Server configuration...done.
RSL1_ST02_B41:admin> tsclockserver
LOCL
RSL1_ST02_B41:admin> date "0516073406"
Tue May 16 07:34:00 UTC 2006
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-13
13
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Set Switch Time Zone
Set on each switch in the fabric
Individual switches maintain time zone information independently
Use the tstimezone command to set the switch time zone in
relationship to Greenwich Mean Time (GMT)
Example: Eastern Time (United States) is GMT-5
tstimezone -5
RSL1_ST02_B41:admin> tstimezone -5
Updating Time Zone configuration...done.
System Time Zone change will take effect at next reboot.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-14
14
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Set Login Banner
A login banner will appear prior to CLI or Web Tools login
Limited to 1022 characters interactively, 116 as a command line
argument
Viewed from command line or Web Tools
Set using the bannerset command
Remove using bannerset ""
RSL1_ST02_B41:admin> bannerset
Please input content of security banner
(press "." and RETURN at the beginning of a
newline to finish input):
Unauthorized access is prohibited.
Do not log in if you do not have the
authorization to do so.
.
RSL1_ST02_B41:admin> bannerset
Please input content of security banner (press "." and RETURN at the
beginning of a newline to finis
h input):
Unauthorized access is prohibited.
Do not log in if you do not have the authorization to do so.
.
RSL1_ST02_B41:admin> login
Unauthorized access is prohibited.
Do not log in if you do not have the authorization to do so.
RSL1_ST02_B41 login: admin
Password:
RSL1_ST02_B41:admin> bannershow
Unauthorized access is prohibited.
Do not log in if you do not have the authorization to do so.
RSL1_ST02_B41:admin> bannerset ""
RSL1_ST02_B41:admin> bannershow
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-15
15
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Activate Licensed Features
Used to enable Fabric OS features
Based on the switch WWN
licenseidshow
License string is up to 16 mixed-case, case-sensitive characters
A single license key may activate one feature or a bundle of features
License commands
licenseshow
licenseadd
licenseremove
RSL1_ST02_B41:admin> licenseidshow
10:00:00:05:1e:02:ab:21
RSL1_ST02_B41:admin> licenseadd "cbQeQRy9QdsVfRl"
adding license-key "cbQeQRy9QdsVfRl"
RSL1_ST02_B41:admin> licenseshow
bzbzRQQSRQc0c0SQ:
Web license
ezcRecbSef0dSf2:
Zoning license
ReQbbSzdR9SfRcc7:
Fabric license
cbQeQRy9QdsVfRl:
Ports on Demand license - additional 8 port upgrade
Ports on Demand license - additional 8 port upgrade
One feature per
license key
Multiple features
per license key
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-16
16
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Set the Switch Name
Switch names should be unique for easier administration
Naming suggestions
Site or building where switch is located
Floor or room where switch is located
Indicate topology (core switch vs. edge switch)
Rack ID
Switch Type
Fabric ID
Domain ID
Example: RSL1_ST02_B41
Remote SAN Lab #1
Station #2
Brocade 4100
Switch name is assigned using the switchname command
Having a well thought out switch naming convention enables easy identification of physical
switches if a problem arises. Use a switch naming convention that scales across the
organization, keeping in mind that the SAN might start small but can be extended
enterprise-wide over time. Switch names can be duplicated in the fabric. To see a list of the
existing switch names and their IP settings, use the command fabricshow.
Switch Name rules in Fabric OS v4.1 and later
- Up to 15 characters including letters, digits, hyphens, and underscore characters
- Must begin with a letter
- No spaces
switch:admin> switchname "RSL1_ST02_B41"
Committing configuration...
Done.
RSL1_ST02_B41:admin> switchname
RSL1_ST02_B41
RSL1_ST02_B41:admin> fabricshow
Switch ID Worldwide Name Enet IP Addr FC IP Addr Name
-------------------------------------------------------------------------
1: fffc01 10:00:00:05:1e:02:12:a5 10.255.248.32 0.0.0.0 "RSL1_ST02_B20"
2: fffc02 10:00:00:05:1e:02:ab:21 10.255.248.35 0.0.0.0 >"RSL1_ST02_B41"
The Fabric has 2 switches
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-17
17
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Configuration
Set syslog Server
The system logging daemon (syslogd) on hosts can receive system
events and error messages from SilkWorm switches
If all switches and control processors escalate messages to syslogd,
the administrator may view a fabric-wide log of events
Configuration is simple
syslogdipadd
syslogdipremove
syslogdipshow
syslog records are tagged as belonging to a facility
Fabric OS v4.4 and later support UNIX local1 - local7
facilities
The default facility level is 7
Change the facility using the syslogdfacility command
Additional host configuration may be necessary, see server
documentation
RSL1_ST02_B41:admin> syslogdipshow
No addresses configured
RSL1_ST02_B41:admin>
RSL1_ST02_B41:admin> syslogdipadd 10.255.248.2
RSL1_ST02_B41:admin> syslogdipadd 10.255.248.3
RSL1_ST02_B41:admin> syslogdipshow
syslog.IP.address.1 10.255.248.2
syslog.IP.address.2 10.255.248.3
RSL1_ST02_B41:admin> syslogdfacility
Syslog facility: LOG_LOCAL7
RSL1_ST02_B41:admin> syslogdfacility -l 6
Syslog facility changed to LOG_LOCAL6
RSL1_ST02_B41:admin> syslogdipremove 10.255.248.3
RSL1_ST02_B41:admin> syslogdipshow
syslog.IP.address.1 10.255.248.2
RSL1_ST02_B41:admin> syslogdipremove 10.255.248.2
RSL1_ST02_B41:admin> syslogdipshow
No addresses configured
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-18
18
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Security Configuration
Disable Telnet
Use the configure command to disable telnet
May be run on an enabled switch
If telnet is disabled from within a telnet session, all telnet sessions will
be disabled
To avoid losing your session, disable telnet through an alternate
interface
Serial port session
SSHv2 session
Web Tools
RSL1_ST02_B41:admin> configure
Not all options will be available on an enabled switch.
To disable the switch, use the "switchDisable" command.
Configure...
System services (yes, y, no, n): [no] y
rstatd (on, off): [off]
rusersd (on, off): [off]
telnetd (on, off): [on]
ssl attributes (yes, y, no, n): [no]
http attributes (yes, y, no, n): [no]
snmp attributes (yes, y, no, n): [no]
rpcd attributes (yes, y, no, n): [no]
cfgload attributes (yes, y, no, n): [no]
No changes.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-19
19
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Security Configuration
Enable Web Tools Upfront Login
Upfront Login forces administrators to enter an ID and password
before they can access any portion of the Web Tools interface
Enable Upfront Login using the configure command
May be run on an enabled switch
By default Upfront Login is not enabled.
RSL1_ST02_B200E:admin> configure
Not all options will be available on an enabled switch.
To disable the switch, use the "switchDisable" command.
Configure...
System services (yes, y, no, n): [no]
ssl attributes (yes, y, no, n): [no]
http attributes (yes, y, no, n): [no]
snmp attributes (yes, y, no, n): [no]
rpcd attributes (yes, y, no, n): [no]
cfgload attributes (yes, y, no, n): [no]
webtools attributes (yes, y, no, n): [no] yes
Upfront Login Enabled (yes, y, no, n): [no] yes
By default, Upfront Login is not enabled. Anyone with network access to the
management port may enter the initial switchExplorer view without an ID and
password. However, an ID and password are required to change any switch or
fabric parameters. Upfront Login ensures that unauthorized users are not able to
gather even basic information regarding the switch.
Web Tools may be disabled using the configure command.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-20
20
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Security Configuration
Set Command Line Session Timeout
Automatically terminate a telnet or SSH session after a period of
inactivity
Timeout value is specified in minutes
Setting a timeout value of 0 disables automatic session timeout
Valid settings include 0, or a value between 1 and 99,999 minutes
To display the current setting, type timeout with no arguments
RSL1_ST02_B41:admin> timeout
Current IDLE Timeout is 0 minutes
RSL1_ST02_B41:admin> timeout 15
IDLE Timeout Changed to 15 minutes
The modified IDLE Timeout will be in effect after NEXT login
RSL1_ST02_B41:admin> login
RSL1_ST02_B41 login: admin
Password:
RSL1_ST02_B41:admin> timeout
Current IDLE Timeout is 15 minutes
Default timeout on Linux-based switches is 10 minutes.
2006 Brocade Communications Systems, Incorporated.
Revision CFP264 ILT 0806
Page 4-21
21
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
Initial Security Configuration
Change Default Passwords
Open a serial port, telnet, or SSH connection to the switch
Default administrative accounts: admin, user
Default password for both: password
Other default accounts: root, factory
Use of root and factory accounts is not supported
Log in as root or factory only if directed by your support provider
When prompted, change all default passwords
Passwords must be between 8 and 40 characters by default
Use the passwdcfg --showall command to display password
rules in Fabric OS v5.1 and higher only
RSL1_ST02_B41 login: admin
Password:
Please change your passwords now.
Use Control-C to exit or press 'Enter' key to proceed.
Password was not changed. Will prompt again at next login
until password is changed.
RSL1_ST02_B41 login: admin
Password:
Please change your passwords now.
Use Control-C to exit or press 'Enter' key to proceed.
Warning: Access to the Root and Factory accounts may be required for
proper support of the switch. Please ensure the Root and Factory
passwords are documented in a secure location. Recovery of a lost Root
or Factory password will result in fabric downtime.
for user - root
Changing password for root
Enter new password:
Re-type new password:
passwd: all authentication tokens updated successfully
Please change your passwords now.
for user - factory
Product Training
2006 Brocade Communications Systems, Incorporated.
CFP264 ILT 0806
CFP264
Brocade 4 Gbit/sec Accelerated BCFP
End of Instructor-Led Module 4
Installation and Setup