Fibre Channel (SAN)

Reply
New Contributor
Posts: 3
Registered: ‎07-21-2008

RBAC Errors on Switch Report for new Brocade 200E

Below is the output of the Switch Information report from my new Brocade 200E switch with v6.0.0b FOS. Notice the two "RBAC permission denied."

messages. I've never seen this before and don't know why I'm getting the message instead of the usual output.

The attached text file is the output of the supportshow command from the

switch.

Switch Information Report for brocadeF

List of Switches

Switch ID Worldwide Name Enet IP Addr FC IP Addr

Name

-


-

1: fffc01 10:00:00:05:1e:0b:76:a7 10.1.50.205 0.0.0.0

>"brocadeF"

Current Switch Information

Ethernet IP Address: 10.1.50.205

Ethernet Subnetmask: 255.255.255.0

Fibre Channel IP Address: 0.0.0.0

Fibre Channel Subnetmask: 0.0.0.0

Gateway Address: 10.1.50.254

Ethernet IPv6 Addresses:

Kernel: 2.6.14.2

Fabric OS: v6.0.0b

Made on: Fri Jan 18 21:32:13 2008

Flash: Wed May 21 04:04:12 2008

BootProm: 4.6.6

List of Inter-Switch Links

Local Domain ID: 1

Local Port Domain Remote Port State

-


List of Ports

RBAC permission denied.

Name Server

{

010100 0103cc 0105cb 0107ca 0109c9 010ac7 010bc6 010dc5

010ec3

9 Nx_Ports in the Fabric }

{

Type Pid COS PortName NodeName

TTL(sec)

N 010100; 2,3;10:00:00:00:c9:4c:ba:79;20:00:00:00:c9:4c:ba:79; na

Fabric Port Name: 20:01:00:05:1e:0b:76:a7

Permanent Port Name: 10:00:00:00:c9:4c:ba:79

Port Index: 1

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 0103cc; 3;50:05:07:63:00:49:8c:01;50:05:07:63:00:09:8c:01; na

FC4s: FCP

Fabric Port Name: 20:03:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:01

Port Index: 3

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 0105cb; 3;50:05:07:63:00:49:8c:02;50:05:07:63:00:09:8c:02; na

FC4s: FCP

Fabric Port Name: 20:05:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:02

Port Index: 5

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 0107ca; 3;50:05:07:63:00:49:8c:03;50:05:07:63:00:09:8c:03; na

FC4s: FCP

Fabric Port Name: 20:07:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:03

Port Index: 7

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 0109c9; 3;50:05:07:63:00:49:8c:04;50:05:07:63:00:09:8c:04; na

FC4s: FCP

Fabric Port Name: 20:09:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:04

Port Index: 9

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 010ac7; 3;50:05:07:63:00:49:8c:05;50:05:07:63:00:09:8c:05; na

FC4s: FCP

Fabric Port Name: 20:0a:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:05

Port Index: 10

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 010bc6; 3;50:05:07:63:00:49:8c:06;50:05:07:63:00:09:8c:06; na

FC4s: FCP

Fabric Port Name: 20:0b:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:06

Port Index: 11

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 010dc5; 3;50:05:07:63:00:49:8c:07;50:05:07:63:00:09:8c:07; na

FC4s: FCP

Fabric Port Name: 20:0d:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:07

Port Index: 13

Share Area: No

Device Shared in Other AD: No

Redirect: No

NL 010ec3; 3;50:05:07:63:00:49:8c:08;50:05:07:63:00:09:8c:08; na

FC4s: FCP

Fabric Port Name: 20:0e:00:05:1e:0b:76:a7

Permanent Port Name: 50:05:07:63:00:49:8c:08

Port Index: 14

Share Area: No

Device Shared in Other AD: No

Redirect: No

The Local Name Server has 9 entries }

Zoning Information

Defined configuration:

cfg: brocadeF_default_zone

LTO3_Tapes_TSM_F1

zone: LTO3_Tapes_TSM_F1

LTO3_Tape01; LTO3_Tape02; LTO3_Tape03; LTO3_Tape04;

LTO3_Tape05; LTO3_Tape06; LTO3_Tape07; LTO3_Tape08;

TSMServ_F1

alias: LTO3_Tape01

50:05:07:63:00:09:8c:01

alias: LTO3_Tape02

50:05:07:63:00:09:8c:02

alias: LTO3_Tape03

50:05:07:63:00:09:8c:03

alias: LTO3_Tape04

50:05:07:63:00:09:8c:04

alias: LTO3_Tape05

50:05:07:63:00:09:8c:05

alias: LTO3_Tape06

50:05:07:63:00:49:8c:06

alias: LTO3_Tape07

50:05:07:63:00:49:8c:07

alias: LTO3_Tape08

50:05:07:63:00:49:8c:08

alias: TSMServ_F1

20:00:00:00:c9:4c:ba:79

Effective configuration:

cfg: brocadeF_default_zone

zone: LTO3_Tapes_TSM_F1

50:05:07:63:00:09:8c:01

50:05:07:63:00:09:8c:02

50:05:07:63:00:09:8c:03

50:05:07:63:00:09:8c:04

50:05:07:63:00:09:8c:05

50:05:07:63:00:49:8c:06

50:05:07:63:00:49:8c:07

50:05:07:63:00:49:8c:08

20:00:00:00:c9:4c:ba:79

SFP Serial ID Information

RBAC permission denied.

New Contributor
Posts: 4
Registered: ‎03-07-2006

Re: RBAC Errors on Switch Report for new Brocade 200E

Hi

I am seeing the same problem. Did you figure out what was causing it?

Basically, I was running v5.0.5b which would get the problem of

List of Ports

RBAC permission denied.

when running switchinfo (http://switchipaddress/switchinfo.html)

We found a work around by running webtools (switchexplorer)
and then that would fix what ever was wrong and switchinfo would
then show us information in the list of ports.

Last weekend I upgraded to 5.3.1, and since then, the RBAC issue
has occured on all the upgraded switches. Out work around is only temporary and
lasts maybe 10 minutes, before giving the RBAC error again.

We don't use Radius. The switches are Silkworm 3016 modules in an IBM blade chassis.
There are a few other switches in the fabric, all Brocade, the rest are 48K, 12K and a
few 4900's

any help would be good and no upgrading isn't probably on the horizon.

cheers

antony
New Contributor
Posts: 4
Registered: ‎03-07-2006

Re: RBAC Errors on Switch Report for new Brocade 200E

Fixed!

What I did to fix this was to disable the USER account

Our IBM brocade switches have extra accounts and

it seems that the lowest privileged one is hte one that

gets used Disabling the USER account seems to get the

switch to use the next one up the food chain which

has the necessary privs to show you the port information.

I haven't seen this issue on any of our grown up switches

(48K, DCX), just the rebadged 3016's. The problem was

more frequent in 5.3.1 so if you can't disable the account then

move back to 5.3.0, and use the work around I documented

before.

I'm currently throwing out all out old stuff so that I'll

only be left with the big switches.

hope that this helps.

cheers

antony

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.