Home » HP Manuals » Storage Devices » HP 3PAR StoreServ 7400 2-node » Manual Viewer

HP 3PAR StoreServ 7400 2-node HP 3PAR Management Console 4.3.0 Software User&a - Page 78

The LDAP Authorization Screen

View all HP 3PAR StoreServ 7400 2-node manuals

Add to My Manuals
Save this manual to your list of manuals

Page 78 highlights

Group Authentication Parameters Field Binding Use SSL SASL Mechanism LDAP Server Name Kerberos Realm Kerberos Server IP Accounts DN Account Object Class Account Name Attribute Member Attribute Group Object Class Certificate Version (shown if the value of the Use Certificate field Issued to is Yes.) Issued by Valid from Description Indicates the type of binding: Simple or SASL. Indicates whether binding with SSL is used. Indicates the binding mechanism used. PLAIN - Similar to simple binding where the username and password are sent directly to the LDAP server for authentication (default). DIGEST-MD5 - The LDAP server sends the LDAP client one-time data that is encrypted by the client and returned to the server using a method that proves the client knows the user's password without actually having to send the password. GSSAPI - Obtains a ticket from the Kerberos server that validates the user's identity. The ticket is then sent to the LDAP server for authentication. The name of the host LDAP server. Indicates the numeric IP Address of the Kerberos server if different from the LDAP server. The IP address of the Kerberos server, if different than the LDAP server. Indicates the base of the subtree in the DIT to search for objects that hold account information. It is mutually exclusive with Group DN. The objectClass attribute of an account object. (The default is user.) The attribute of an account object that holds the user's username. (The default is sAMAccountName.) The attribute that holds the name of a group of which the user is a member.(The default is memberOf.) Indicates the objectClass attribute of a group object. (The default is group.) The version number of the certificate. Who the certificate is issued to. Who the certificate is issued by. Dates the certificate is valid. The LDAP Authorization Screen The Authorization screen displays the Authorization Group and Group Distinguished Name of all authorized LDAP users. NOTE: This screen must be displayed in order to enable the Test LDAP Connection button on the toolbar. 78 Managing LDAP with Security Manager

Section	Page
HP 3PAR Management Console	1
Part I Connecting to the System	17
1 Connecting to Systems	18
The System Dashboard	18
2 Managing Ports	20
Configuring Ports	20
Configuring CNA Ports	20
General	21
iSCSI	21
iSNS Settings	22
Summary	22
Configuring Fibre Channel Ports	22
Configuring iSCSI Ports	22
General	22
iSNS Settings	23
Summary	23
Configuring a Remote Copy over Fibre Channel Port	23
Configuring a Remote Copy over IP Port	23
Clearing Port Parameters	24
Editing a Port Label	24
Resetting a Port	24
Setting a Port Offline	24
Initializing a Port	25
Synchronizing a Port with the Name Server	25
Issuing an LIP Command	25
Enabling a Remote Copy Interface	25
Disabling a Remote Copy Interface	25
Pinging a Port	26
Viewing System Ports	26
Viewing Port Summary Information	26
List Pane	27
Detail Pane	28
Viewing the Port Details Summary	28
Physical Disks	33
SFP	33
Sessions	35
Hosts	35
Viewing CNA Ports	35
List Pane	36
Detail Pane	36
Viewing System Fibre Channel Ports	37
List Pane	37
Detail Pane	38
Fibre Channel Summary	38
Physical Disks	40
SFP	40
Hosts	41
Viewing System RCFC Ports	41
List Pane	42
Detail Pane	42
RCFC Port Summary	43
SFP	44
Viewing System iSCSI Ports	45
List Pane	45
Detail Pane	46
iSCSI Port Summary	46
Sessions Tab	47
Hosts Tab	47
Viewing System RCIP Ports	47
Viewing SAS Details	49
Summary Information	50
Summary Tab	51
Physical Disks Tab	51
Settings Information	52
Viewing System Port Alerts	52
Part II Managing Security	54
3 Managing Users with Security Manager	55
Creating Users	55
Authentication	55
Authorization	55
Summary	55
Viewing Users	55
Editing Users	56
Authentication	56
Authorization	57
Summary	57
Removing Users	57
Managing User Connections	57
Viewing User Connections	57
Removing User Connections	58
4 Managing Domains with Security Manager	59
Creating Domains	59
Viewing Domains	60
Viewing Domains for All Storage Systems	60
Viewing Domains for a Single Server	60
Viewing the Domains Summary Tab	61
Viewing the Domains Tab	62
Summary Information	62
Raw Capacity Information	64
Editing Domains	65
Adding a Domain to a Domain Set	65
Removing Domains	65
Creating Domain Sets	65
General	66
Domains	66
Summary	66
Viewing Domain Sets	66
List Pane	66
Detail Pane	67
Summary Tab	67
Domains Tab	67
Viewing Summary Information	68
Viewing Raw Capacity Information	68
Editing Domain Sets	69
General	69
Domains	69
Summary	69
Removing Domain Sets	69
Moving Objects from One Domain to Another Domain	70
General	70
Associated Objects	70
5 Managing LDAP with Security Manager	71
Configuring LDAP	71
Authentication	71
Enter Certificate	74
Authorization	74
Summary	74
Viewing an LDAP Configuration	74
The LDAP Summary Screen	75
The LDAP Authorization Screen	78
Testing an LDAP Connection	79
Removing an LDAP Configuration	79
Adding Authorizations	79
Removing Authorizations	80
6 The Security Manager	81
Viewing the Security System Summary Screen	81
Part III Creating Storage	83
7 Managing Hosts	84
Creating Hosts	84
Host Settings	84
Fibre Channel	85
iSCSI	85
Summary	85
Editing Hosts	85
Host Settings	86
Fibre Channel	86
iSCSI	86
Summary	87
Removing Hosts	87
Viewing Hosts	87
Overview of All Hosts	87
Overview of a System's Hosts	88
Viewing Host Information	90
List Pane	90
Hosts Tab	90
Host Explorer Tab	91
Detail Pane	92
Host Summary Details	92
Host Explorer Details	93
VLUN Details	94
VLUN Templates	95
Active VLUNs	95
Path Summary	96
Virtual Volumes Details	96
Link Errors Details	97
Viewing Paths	98
List Pane	98
Detail Pane	98
VLUN Templates Tab	99
Active VLUNs Tab	99
Path Summary Tab	100
Viewing Unassigned Paths	100
Using the Host Manager	101
8 Managing Host Sets	102
Creating Host Sets	102
General	102
Hosts	102
Summary	102
Adding Hosts to Host Sets	102
Editing Host Sets	103
General	103
Hosts	103
Summary	103
Removing Host Sets	103
Viewing Host Sets	103
Viewing Host Set Details	104
The Host Set Details Summary Tab	104
The Host Set Details Hosts Tab	105
The Summary Filter	105
The Descriptors Filter	106
The Host Set Details Paths Tab	106
The Host Set Details Host Explorer Tab	106
The Host Set Details Virtual Volumes Tab	106
9 Managing Common Provisioning Groups	107
Creating Common Provisioning Groups	107
General	107
Disk Filter	108
Summary	108
Editing a Common Provisioning Group	108
General	108
Disk Filter	109
Summary	109
Saving a Common Provisioning Group as a Template	109
General	109
Allocation Settings	110
Disk Filter	111
Summary	111
Creating Similar Common Provisioning Groups	111
General	111
Disk Filter	112
Summary	112
Compacting a Common Provisioning Group	112
Removing a Common Provisioning Group	112
Creating Common Provisioning Group Templates	113
General	113
Allocation Settings	114
Disk Filter	115
Summary	115
Editing a Common Provisioning Group Template	115
General	115
Allocation Settings	116
Disk Filter	117
Summary	117
Viewing Common Provisioning Groups	117
Viewing the Common Provisioning Group Summary Tab	117
Viewing the CPGs Tab	118
List Pane	119
Displaying Summary Information	119
Displaying Allocation Information	119
Displaying Usage Information	120
Displaying Capacity Information	121
Displaying Raw Capacity Information	122
Displaying Alert Information	122
Detail Pane	123
Summary Tab	124
Settings Tab	125
Virtual Volumes Tab	126
Logical Disks Tab	127
Layout Tab	128
Alerts Tab	128
Viewing the Common Provisioning Group Alerts Tab	128
10 Virtual Volumes	129
Creating Virtual Volumes	129
Configure Virtual Volume	129
Policies and Geometry	130
Summary	131
Editing Virtual Volumes	131
Configure Virtual Volume	131
Policies and Geometry	131
Summary	132
Creating Similar Virtual Volumes	132
Configure Virtual Volume	132
Policies and Geometry	133
Summary	133
Saving a Virtual Volume as a Template	133
General	134
Policies and Geometry	135
Summary	135
Creating a Remote Copy Group from Virtual Volumes	135
Groups	136
Virtual Volumes	136
Summary	136
Adding a Virtual Volume to a Remote Copy Group	137
Moving a Virtual Volume to Another Domain	137
Repairing Virtual Volumes	137
Removing Virtual Volumes	138
Tuning Virtual Volumes	140
Restarting Tuning a Virtual Volume	140
Rolling Back a Tuned Virtual Volume	140
Managing Virtual Volume Sets	141
Creating Virtual Volume Sets	141
General	141
Volumes	141
Summary	141
Editing a Virtual Volume Set	141
General	141
Volumes	142
Summary	142
Adding a Virtual Volume to a Virtual Volume Set	142
Exporting Virtual Volume Sets	142
Export	142
Summary	143
Removing a Virtual Volume Set	143
Remove Virtual Volume Sets	143
Unexport Virtual Volume	143
Viewing Virtual Volume Sets	143
Viewing a Single Virtual Volume Set	144
Creating Virtual Volume Templates	144
General	144
Policies and Geometry	146
Summary	146
Editing a Virtual Volume Template	146
General	147
Policies and Geometry	148
Summary	149
Exporting Virtual Volumes	149
Export	149
Summary	149
Unexporting Virtual Volumes	150
Converting Virtual Volumes	150
Convert Virtual Volumes	151
11 Viewing Virtual Volumes	152
Viewing the Virtual Volumes Summary Tab	152
Viewing the Virtual Volumes Tab	153
List Pane	153
Displaying Summary Information	153
Displaying Allocation Information	154
Displaying Capacity Information	155
Displaying Raw Capacity Information	156
Displaying History Information	156
Displaying Remote Copy Information	157
Displaying Space History Information	158
Detail Pane	158
Summary Tab	159
Settings Tab	160
Advanced Tab	162
Logical Disks Tab	163
SCSI Reservations Tab	163
SCSI-2 Reservations Tab	163
SCSI-3 Reservations Tab	164
VLUNs Tab	164
VLUN Templates Tab	165
Active LUNs Tab	165
Path Summary Tab	166
Hosts Tab	167
Layout Tab	167
Alerts Tab	168
Viewing the CPG Space Tab	168
Viewing the Virtual Volumes Alerts Tab	168
12 Managing VLUNs	169
Exporting VLUNs	169
Export	169
Summary	169
Removing VLUNs	169
Viewing VLUNs	169
VLUN Templates Tab	170
List Pane	170
Detail Pane	170
Active VLUNs Tab	170
Displaying Summary Information	171
Displaying Remote Copy Information	171
Path Summary Tab	172
Managing AO Configuration	173
Creating an AO Configuration	173
General	173
Schedule AO	174
Summary	174
Editing an AO Configuration	175
Deleting AO Configurations	175
Starting an AO Configuration	175
Viewing an AO Configuration	175
The AO Configurations Tab	175
The Alerts Tab	177
The Tasks Tab	178
Part IV Creating Backup	179
13 Creating Copies	180
Creating Virtual Copies	180
Viewing Virtual Copies	180
Creating a Virtual Copy	181
Editing a Virtual Copy	181
Removing a Virtual Copy	182
Creating a Consistency Group Virtual Copy	182
Select Parent Volumes	182
Configure Virtual Copies	183
Summary	183
Creating a Batch Virtual Copy	183
Promoting a Virtual Copy	184
Creating Physical Copies	184
Viewing Physical Copies	184
Creating a Physical Copy	185
Editing a Physical Copy	185
Removing a Physical Copy	185
Creating a Consistency Group Physical Copy	186
Select Parent Volumes	186
Configure Virtual Copies	186
Summary	186
Stopping a Physical Copy	186
Resynchronizing a Physical Copy	187
Promoting a Physical Copy	187
14 Configuring and Managing Remote Copy	188
Configuring Remote Copy	188
Configuring Remote Copy Ports	188
Configuring 1-to-1 Remote Copy	189
Targets	189
Links	190
Groups	190
Virtual Volumes	191
Summary	191
Configuring 1-to-N Remote Copy	191
Targets	192
Links	192
Groups	192
Virtual Volumes	193
Summary	193
Configuring N-to-1 Remote Copy	194
Targets	194
Links	194
Groups	195
Virtual Volumes	195
Summary	196
Configuring Synchronous Long Distance Remote Copy	196
Targets	196
Links	197
Groups	197
Virtual Volumes	198
Summary	199
Creating and Managing Remote Copy Volume Groups	199
Creating Remote Copy Groups	199
Groups	199
Virtual Volumes	200
Summary	200
Starting Remote Copy Groups	200
Stopping Remote Copy Groups	200
Syncing Remote Copy Groups	200
Editing Remote Copy Groups	201
Groups	201
Virtual Volumes	201
Summary	202
Removing Remote Copy Groups	202
Creating Remote Copy Links	202
Creating Remote Copy Links	202
Removing Remote Copy Links	203
Pinging RCIP Links	203
Configuring and Pinging the Remote Copy Links	203
Pinging the Remote Copy Links	203
Managing Remote Copy Targets	203
Creating Remote Copy Targets	203
Targets	204
Links	204
Groups	205
Virtual Volumes	205
Summary	206
Editing Remote Copy Targets	206
Removing Remote Copy Targets	206
Using Remote Copy for Disaster Recovery	206
Failover Remote Copy Groups	207
Switch Failover Remote Copy Groups	207
Revert Remote Copy Groups	208
Recover Remote Copy Groups	208
Restore Remote Copy Groups	209
Viewing Remote Copy Information	209
Viewing Available Remote Copy Systems	209
Viewing Remote Copy System Ports	210
RC Ports Tab	211
RCIP Tab	212
RCFC Tab	213
Inventory Tab	215
Viewing Configured Remote Copy Systems	216
Summary Tab	216
Remote Copy Link Performance Chart	217
Tasks Tab	218
Alerts Tab	218
Viewing Remote Copy Groups	219
Viewing Remote Copy Virtual Volumes	219
Viewing Remote Copy Links	220
Viewing Remote Copy Targets	221
Part V Migrating Data	223
15 Using the Peer Motion Manager	224
Creating a Peer Motion Configuration	225
Select Systems	225
Set Up Connections	226
Show Port WWNs	227
Port Configuration and Zoning	228
Copying Storage Settings and Configurations	229
Copy Storage Settings and Configurations	230
Summary	230
Migrating Data	231
Create Peer Volumes	231
Import Volumes	232
Online Data Confirmation	234
Minimally Disruptive Data Migration Confirmation	235
Importing Volumes	235
Select Peer Volumes	236
Import Volumes	236
Removing Peer Volumes	237
Post Migration Cleanup	238
Removing a Peer Motion Configuration	238
Viewing a Peer Motion Configuration	241
Summary Tab	242
Tasks Tab	243
Alerts Tab	244
Viewing Port Information	245
The Summary Screen Detail Pane	246
The Hosts Screen Detail Pane	247
Viewing Storage Settings and Configurations	248
Hosts Node	248
Storage Settings and Configuration Hosts Screen	248
Storage Settings and Configurations Host Sets Screen	248
Security & Domains Node	249
Security & Domains Node Summary Tab	249
Security & Domains Node Users Tab	250
Security & Domains Node Domains Tab	251
Security & Domains Node Domain Sets Tab	251
Security & Domains Node LDAP Tab	251
Viewing Migration Data Information	252
Available/Imported Hosts Screen	252
Available/Imported Host Sets Screen	253
Available/Imported Linked Hosts Screen	254
Admitted/Importing Hosts Screen	254
Admitted/Importing Host Sets Screen	255
Admitted/Importing Linked Hosts Screen	256
Available/Imported Volumes Screen	256
Admitted/Importing Volumes Screen	257
Summary Screen	258
Settings Screen	259
Active VLUNs Screen	259
Hosts Screen	260
Viewing Source and Destination Systems	260
Summary Tab	261
Alerts Tab	263

Match case Limit results 1 per page

Description

Field

Group

Indicates the type of binding: Simple or SASL.

Binding

Authentication

Parameters

Indicates whether binding with SSL is used.

Use SSL

Indicates the binding mechanism used.

SASL Mechanism

PLAIN

– Similar to simple binding where the username and

password are sent directly to the LDAP server for authentication

(default).

DIGEST-MD5

– The LDAP server sends the LDAP client one-time

data that is encrypted by the client and returned to the server

using a method that proves the client knows the user's password

without actually having to send the password.

GSSAPI

– Obtains a ticket from the Kerberos server that validates

the user's identity. The ticket is then sent to the LDAP server for

authentication.

The name of the host LDAP server.

LDAP Server Name

Indicates the numeric IP Address of the Kerberos server if

different from the LDAP server.

Kerberos Realm

The IP address of the Kerberos server, if different than the LDAP

server.

Kerberos Server IP

Indicates the base of the subtree in the DIT to search for objects

that hold account information. It is mutually exclusive with Group

DN.

Accounts DN

The objectClass attribute of an account object. (The default is

user.)

Account Object Class

The attribute of an account object that holds the user's username.

(The default is sAMAccountName.)

Account Name Attribute

The attribute that holds the name of a group of which the user

is a member.(The default is memberOf.)

Member Attribute

Indicates the objectClass attribute of a group object. (The default

is group.)

Group Object Class

The version number of the certificate.

Version

Certificate

(shown if the value of

the Use Certificate field

is Yes.)

Who the certificate is issued to.

Issued to

Who the certificate is issued by.

Issued by

Dates the certificate is valid.

Valid from

The LDAP Authorization Screen

The Authorization screen displays the Authorization Group and Group Distinguished Name of all

authorized LDAP users.

NOTE:

This screen must be displayed in order to enable the Test LDAP Connection button on

the toolbar.

Managing LDAP with Security Manager