Dell POWEREDGE M1000E Bedienungsanleitung Seite 32
- Seite / 116
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
4 Fabric OS Command Reference
53-1002746-01
Understanding Admin Domain restrictions
1
• Accounts with user or admin permissions can be granted chassis permissions. A user account with
the chassis role can execute chassis-level commands at the user RBAC access level. An admin
account with the chassis role can execute chassis-level commands at the admin RBAC access
level.
Use the classConfig --showcli command to look up the Virtual Fabrics contexqt for a specified
command. Refer to Appendix Appendix A, “Command Availability,” for a complete listing of Virtual Fabric
restrictions that apply to the commands included in this manual.
Understanding Admin Domain restrictions
A subset of Fabric OS commands is subject to Admin Domain (AD) restrictions that may be in place. In
order to execute an AD-restricted command on a switch or device, the switch or device must be part of a
given Admin Domain, and the user must be logged in to that Admin Domain.
Six Admin Domain types are supported, as defined in Ta b le 5.
Refer to Appendix Appendix A, “Command Availability,” for a listing of Admin Domain restrictions that
apply to the commands included in this manual.
Determining RBAC permissions for a specific command
To determine RBAC permission for a specific command, use the classconfig --showcli command.
1. Enter the classconfig --showcli command for a specified command.
The command displays the RBAC class and access permissions for each of the command options.
Note that options for a single command option can belong to different classes.
2. Enter the classconfig --showroles command and specify the RBAC class of the command option
you want to look up.
The command displays the default roles and the permissions they have to access commands in the
specified RBAC class.
The following example shows how you can obtain permission information for the zone command.
Suppose you want to know if a user with the SwitchAdmin role can create a zone. You issue the
classconfig --showcli command for the zone command, which shows that the zone --add command
belongs to the RBAC class “zoning”. You then issue the classconfig --showroles command for the
zoning RBAC class. The output shows that the SwitchAdmin role has ‘Observe” permissions only for any
TABLE 5 AD types
AD Type Definition
Allowed Allowed to execute in all ADs.
PhysFabricOnly Allowed to execute only in AD255 context (and the user should own
access to AD0-AD255 and have admin RBAC privilege).
Disallowed Allowed to execute only in AD0 or AD255 context; not allowed in
AD1-AD254 context.
PortMember All control operations allowed only if the port or the local switch is part
of the current AD. View access allowed if the device attached to the
port is part of current AD.
AD0Disallowed Allowed to execute only in AD255 and AD0 (if no ADs are configured).
AD0Only Allowed to execute only in AD0 when ADs are not configured.
- Fabric OS 1
- Document History 3
- Contents 7
- 53-1002746-01 10
- . . . . . . 1128 18
- About This Document 19
- What is new in this document 21
- CLI usage conventions 23
- Document conventions 24
- Notice to the reader 25
- Additional information 26
- Getting technical help 26
- Document feedback 27
- Using Fabric OS Commands 29
- TABLE 2 Role definitions 30
- TABLE 4 Switch types 31
- TABLE 5 AD types 32
- Fabric OS Command Reference 5 33
- 6 Fabric OS Command Reference 34
- Fabric OS Commands 35
- 8 Fabric OS Command Reference 36
- Fabric OS Command Reference 9 37
- SYNOPSIS ad --activate ad_id 41
- • Creates a new shell 43
- • Exits the shell 43
- EXAMPLES To enable AD5: 46
- To display all ADs: 48
- SYNOPSIS ag --help 51
- EXAMPLES 60
- AG failover policy commands 65
- Port Group commands 66
- Backup mapping commands 71
- SEE ALSO ag, agShow 74
- SYNOPSIS agshow 75
- SEE ALSO portCfgNPIVPort 76
- • A world wide name (WWN) 77
- SYNOPSIS aptpolicy [policy] 84
- • The FC OXID for this frame 85
- SEE ALSO auditDump, rasAdmin 88
- SYNOPSIS authutil 90
- SEE ALSO turboRamTest 123
- To display the changes: 125
- DESCRIPTION See portLedTest 127
- DESCRIPTION See turboRamTest 129
- (yes, y, no, n): [no] y 135
- SYNOPSIS cfgsize [integer] 144
- Chassis beacon success 1 149
- Chassis beacon success 0 149
- Value = 0 150
- (yes, y, no, n): [no]y 151
- SEE ALSO distribute, fddCfg 153
- SYNOPSIS chassisshow 156
- SEE ALSO slotShow 157
- • O = observe 158
- • OM = observe-modify 158
- • N = no access 158
- • Timestamp 162
- • Username 162
- • Options 162
- • Arguments 162
- To create an FCoE VLAN: 165
- SYNOPSIS configdownload 168
- SYNOPSIS configshow 176
- SYNOPSIS configupload 180
- SYNOPSIS configure 184
- • Cfgload attributes 194
- • Custom Attributes 194
- • System settings 194
- • fos attributes 194
- • [-encrypt 241
- Thu Mar 24 17:15:00 UTC 2011 257
- Thu Mar 24 18:20:26 UTC 2011 257
- • defzone --allaccess 260
- • cfgsave 260
- ERROR: DIAG CLEARERR 261
- Err# 0120041 081F 261
- • Switch domain IDs 268
- • Switch names 268
- • Switch WWNs 268
- SEE ALSO fddCfg 269
- DLS is not set 270
- • A local Fx_Port goes down 271
- OPERANDS --enable -lossless 272
- SEE ALSO chassisShow 279
- SYNOPSIS errdump [--all] 282
- SYNOPSIS errshow [-a 288
- DESCRIPTION See logout 290
- SYNOPSIS fabretryshow 291
- SYNOPSIS fabretrystats --show 293
- To clear the fabric name: 300
- SEE ALSO fabricShow 303
- SYNOPSIS fabstatsshow 307
- SEE ALSO fabRetryShow 308
- Fan unit 1 has been disabled 309
- Fan unit 1 has been enabled 310
- SYNOPSIS fcoelogincfg --show 328
- SEE ALSO fcoeLoginGroup 330
- SEE ALSO fcoeLoginCfg 332
- SYNOPSIS fcping 333
- SEE ALSO fcpRlsShow 347
- SYNOPSIS fcredgeshow 353
- SYNOPSIS fcrfabricshow 355
- SYNOPSIS fcrlsan 357
- LSAN Zone Limit: 3000 359
- LSAN Zone Limit: 5000 359
- SYNOPSIS fcrlsanmatrix 360
- SYNOPSIS fcrproxyconfig 367
- SYNOPSIS fcrresourceshow 371
- SYNOPSIS fcrxlateconfig 376
- SYNOPSIS fddcfg --showall 379
- SEE ALSO distribute 380
- SEE ALSO fdmiCacheShow 383
- SEE ALSO ficonCupShow 388
- SYNOPSIS ficoncupshow fmsmode 389
- 082300 1C Oper 391
- 082400 1A Reset 391
- 082400 1B Reset 391
- 612400 1F Reset 391
- • NOS recognized 394
- • Primitive sequence timeout 394
- • Link not operational 396
- SEE ALSO ficonClear 401
- Firmware version history 417
- OPERANDS --create 419
- -action email 422
- • Ethernet switching service 425
- To enable Virtual Fabrics: 427
- To disable Virtual Fabrics: 427
- SYNOPSIS framelog --disable 431
- Log TX RX 433
- SYNOPSIS fspfshow 435
- FW: Alarms are enabled 439
- FW: Alarms are disabled 439
- WWN Alarm State: (0..31) [1] 443
- WWN Alarm Action: (0..17) [1] 443
- SFP Alarm State: (0..19) [0] 443
- SFP Alarm Action: (0..17) [0] 443
- SEE ALSO switchStatusShow 450
- HA is disabled 459
- SYNOPSIS hadump 460
- SEE ALSO haFailover, haShow 461
- SYNOPSIS hashow 464
- • Login user role 468
- • License key 468
- • Hardware platform 468
- Records: 11 470
- History Mode is: Rotating 471
- SEE ALSO historyLastShow 473
- SYNOPSIS i [processID] 474
- SEE ALSO diagHelp, routeHelp 475
- SEE ALSO ifModeShow 479
- SEE ALSO ifModeSet 481
- SYNOPSIS iflshow 482
- IOD is not set 489
- • iodset --show 490
- SEE ALSO ipAddrShow 496
- SYNOPSIS ipaddrshow 497
- - tentative 498
- - preferred 498
- - deprecated 498
- SEE ALSO ipAddrSet 499
- • Display policy parameters 508
- EXAMPLES Example 1 516
- EXAMPLES None 526
- OPERANDS feature 544
- Password: ****** 550
- To display the change: 558
- SEE ALSO lfCfg, setContext 559
- SYNOPSIS lsdbshow [domain] 560
- Current Switch: switch 576
- SEE ALSO interfaceShow 578
- To verify the changes: 580
- • 8 - FCP type device 587
- • 5 - FC-IP type device 587
- SYNOPSIS nscamshow [-t] 588
- SYNOPSIS nsshow [-r][-t] 593
- • FC4s supported 594
- • IP address 594
- Zoned Members: 2 devices 600
- SYNOPSIS nszoneshow -pid pid 601
- To display the RD zone name: 602
- SYNOPSIS passwd 603
- • Password strength policy 606
- • Password history policy 606
- • Password expiration policy 606
- • Account lockout policy 606
- SEE ALSO passwd, userConfig 611
- SYNOPSIS pathinfo 612
- Please wait 625
- • 16 EE monitors per port 626
- (yes, y, no, n): [no] y 631
- Displays the command usage 635
- [slot/]port 637
- 0x01 0 639
- 0x03 0 639
- RxSID Area: on 641
- RxSID ALPA: on 641
- RxDID Domain: on 641
- RxDID Area: on 641
- RxDID ALPA: on 641
- SYNOPSIS perfttmon 642
- of 512 bytes 652
- SEE ALSO portCfgLongDistance 655
- SEE ALSO switchShow 657
- QOS Port AE 690
- Port Auto Disable: OFF 690
- Rate Limit OFF 690
- F_Port Buffers OFF 690
- NPIV PP Limit: 126 690
- Trunk Port ON 700
- SEE ALSO portCfgShow 702
- • Trunk port 712
- • VC link init 712
- SYNOPSIS portcfgshow 735
- RSCN Suppressed OFF 743
- SEE ALSO portCfg, portShow 759
- • A link traffic test 764
- SYNOPSIS porterrshow 772
- SYNOPSIS portfencing --show 774
- SYNOPSIS portledtest 779
- • FCPH, EXCHBAD 781
- • FCPH, EXCHFREE 781
- • NBFSM, DUPEPORTSCN 781
- • UCAST, RELICPDB 781
- PDISC log setting = 1 790
- SYNOPSIS portloopbacktest 803
- SEE ALSO itemList 806
- SYNOPSIS portmirror 807
- SYNOPSIS portname 811
- SYNOPSIS portperfshow 813
- SEE ALSO portStatsShow 815
- portswap done 881
- switch:admin> 881
- SYNOPSIS porttest 885
- All N->N loopback ports 887
- • Locks the port log 890
- SEE ALSO rasMan 912
- SEE ALSO rasAdmin 914
- - O = observe 917
- - OM = observe-modify 917
- - N = none/not available 917
- SEE ALSO classConfig 919
- (Max 1048576 bytes) 922
- SYNOPSIS seccertutil 925
- • Enable secure protocols 926
- • General security parameters 936
- • The latest zone transaction 936
- • The state of the Domain 936
- • wwnDL state 936
- No new data to abort 939
- • DCC_POLICY_nnn 942
- • FCS_POLICY 942
- • SCC_POLICY 942
- SEE ALSO secStatsShow 961
- SEE ALSO secStatsReset 963
- SYNOPSIS serdestunemode --set 965
- SYNOPSIS sfpshow 971
- Disabling flowcontrol 977
- Enabling flowcontrol 978
- Slot 3 is being powered off 979
- Powering on slot 3 980
- SYNOPSIS slotshow [-m] [-p] 981
- • User 5: snmpuser2 989
- • User 6: snmpuser3 989
- To set the security level: 996
- • Fabric OS MIB Reference 998
- SEE ALSO snmpConfig 1001
- SYNOPSIS spinfab 1002
- To test cascading ISLs: 1005
- username 1008
- SEE ALSO None 1010
- SYNOPSIS supportftp [-S] 1014
- SYNOPSIS supportsave 1016
- SYNOPSIS supportshow 1020
- Config update Succeeded 1024
- iswitch enabled 1028
- asic_db enabled 1028
- fcip enabled 1028
- ag enabled 1028
- dce_hsl enabled 1028
- Switch persistent disable set 1031
- Committing configuration 1037
- SYNOPSIS switchshow 1038
- OPERANDS None 1054
- 9:50pm up for 20 mins 1059
- LOG_LOCAL1 1061
- • Send an SNMP message 1066
- • Log a RAS log message 1066
- SEE ALSO haDisable 1073
- • Log a RASlog message 1075
- • Send an E-mail alert 1075
- SYNOPSIS tracedump [-S] 1089
- Cleared Trace Buffer contents 1090
- • Successful login 1092
- • Unsuccessful login 1092
- • Logout 1092
- Track changes status: ON 1093
- SYNOPSIS trunkshow [-perf] 1095
- SEE ALSO date 1099
- Time Zone Minute Offset: 0 1101
- Time Zone Minute Offset: -30 1101
- PASSED 1104
- USB storage enabled 1109
- SYNOPSIS userconfig 1111
- SEE ALSO roleConfig 1118
- SEE ALSO portAddress 1123
- SYNOPSIS zone --help 1124
- • The device is not online 1129
- SEE ALSO ad, zoneHelp 1134
- • Node or port WWN 1135
- • Zone alias name 1135
- alias: jones 7,3; 4,5 1136
- Effective configuration: 1136
- • A world wide name 1146
- • A zone alias name 1146
- 40:00:00:05:1e:a1:cd:04 1147
- Primary FCS Commands 1153
- Primary FCS commands 1154
- Command Availability 1155
Verwandte Produkte und Handbücher für Computerzubehör Dell POWEREDGE M1000E
(31 Seiten)
(2 Seiten)
(116 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 3.000 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern