Modifying the Fabric Password


NetVisor OS version 6.0.0 offers support for changing and resetting the fabric password. Use the fabric-local-modify command to change the current fabric password or reset the password forcefully.


CLI (network-admin@switch) > fabric-local-modify


fabric-local-modify

Modify fabric local information.

Specify one or more of the following options:


vlan 0..4095

Specify the VLAN assigned to the fabric.

change-password change-password-string

Use this option to change the fabric password after confirming the current password.

reset-password reset-password-string

Use this option to reset the fabric password forcefully.

Note: Resetting the password requires assistance from Arista support.

fabric-network in-band|mgmt|vmgmt

Specify the type of interface over which the fabric administration network communicates.

control-network in-band|mgmt|vmgmt

Specify the type of interface over which the control plane network communicates.

fabric-advertisement-network inband-mgmt|inband-vmgmt|inband-only|mgmt-only

Specify the interface to send fabric advertisement packets on.


For example, to change the current fabric password, use the command:


CLI (network-admin@switch) > fabric-local-modify change-password

Please note this will disrupt fabric communications affecting user traffic till the password is changed on ALL nodes.

Please confirm y/n (Default: n):<y>

current password: <current-password>

fabric password: <fabric-password>

confirm fabric password: <fabric-password>

Password changed. Please ensure that the password is changed on all nodes of the fabric.


You can leave the <current-password> field empty, if the fabric does not have a pre-existing password. Enter the new password in the <fabric-password> field.


If you forget the fabric password, you can reset the same with assistance from Arista support. For example:


CLI (network-admin@switch) > fabric-local-modify reset-password

Please note this will disrupt fabric communications affecting user traffic till the password is changed on ALL nodes.

Please confirm y/n (Default: n):<y>

fabric password: <fabric-password>

confirm fabric password: <fabric-password>

fabric-local-modify: Contact Pluribus Networks to reset password


Note: Changing or resetting the fabric password on one of the nodes disrupts fabric communication and can affect the user traffic as well. You must change or reset the password individually on all fabric nodes to re-establish the communication.


If you modify the password on one of the nodes in a fabric, the fabric-node-show output displays the state of other nodes in the fabric as 'offline'.


For example, if you change the password on switch1, while switch2 and switch3 are other nodes in the fabric, the fabric-node-show output is:


CLI (network-admin@switch1) > fabric-node-show layout vertical

name:                  switch1

fab-name:              fabric10

mgmt-ip:               10.10.10.29/23

in-band-ip:            192.168.0.33/24

in-band-vlan-type:     public

version:               6.0.0-6000016140

state:                 online

firmware-upgrade:      not-required

device-state:          ok

name:                  switch2

fab-name:              fabric10

mgmt-ip:               10.10.10.14/23

in-band-ip:            192.168.0.227/24

in-band-vlan-type:     public

version:               6.0.0-6000016140

state:                 offline

firmware-upgrade:      not-required

device-state:          ok

name:                  switch3

fab-name:              fabric10

mgmt-ip:               10.10.10.16/23

in-band-ip:            192.168.0.223/24

in-band-vlan-type:     public

version:               6.0.0-6000016140

state:                 offline

firmware-upgrade:      not-required

device-state:          ok


To add a switch to a fabric, you must authenticate the fabric-join operation by using the fabric password. For example:


CLI (network-admin@switch1) > fabric-join name fabric1 password

fabric password: <fabric-password>

confirm fabric password: <fabric-password>

Joined fabric fabric1. Restarting nvOS...


If a cluster node exits a fabric, and the fabric password changes thereafter, you must authenticate the cluster re-peer process by using the new password. For example, to re-peer node1 with node2, use the command:


CLI (network-admin@node1) > fabric-join repeer-to-cluster-node node2 password

fabric password: <fabric-password>

confirm fabric password: <fabric-password>

Joined fabric fabric1. Restarting nvOS...

north
    keyboard_arrow_up
    keyboard_arrow_down
    description
    print
    feedback
    support
    business
    rss_feed
    south