HP StorageWorks 2/24 FW 07.00.00/HAFM SW 08.06.00 McDATA Products in a SAN Env - Page 221
Security Provisions, Password Protection
View all HP StorageWorks 2/24 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 221 highlights
Physical Planning Considerations 5 Security Provisions Security provisions are available to restrict unauthorized access to a director, switch, or attached Fibre Channel devices. Access to the director or switch (through the SAN management application, Element Manager application, or SANpilot interface) is restricted by implementing password protection. Access to attached computing resources (including applications and data) is restricted by implementing one or more of the following security provisions: - SANtegrity Authentication. - SANtegrity Binding. - Prohibit dynamic connectivity mask (PDCM) arrays. - Preferred path. - Zoning. - Server and storage-level access control. Password Protection Access to the SAN management and Element Manager applications requires configuration of a user name and password. Up to 16 user names and associated passwords can be configured. Each user is assigned rights that allow access to specific sets of product management operations. Table 5-2 explains the types of user rights available. A user may have more than one set of user rights granted. Table 5-2 Types of User Rights User Right View Only Operator Product Administrator System Administrator Maintenance Operator Access Allowed The user may view product configurations and status but may not make changes. These rights are the default if no other user rights are assigned. The operator may view status and configuration information through the Element Manager application and perform operational control changes such as blocking ports and placing the product online or offline. The product administrator can make control and configuration changes through the Element Manager application. The system administrator can make control and configuration changes, define users and passwords, and add or remove products through the SAN management application. The maintenance operator can perform product control and configuration changes through the Element Manager application and perform diagnostics, maintenance functions, firmware loads, and data collection. Physical Planning Considerations 5-15