HP StorageWorks MSA 2/8 HP StorageWorks Secure Fabric OS V1.0 User Guide (AA-R - Page 64

Creating Secure Fabric OS Policies HTTP Policy You can create the HTTP policy to specify which workstations can use HTTP to access the fabric. This is useful for applications that use internet browsers, such as Web Tools. The policy is named HTTP_POLICY and contains a list of IP addresses for devices and workstations that are allowed to establish HTTP connections to the switches in the fabric. The possible HTTP policy states are shown in Table 6. Table 6: HTTP Policy States Policy State No policy Policy with no entries Policy with entries Characteristics All hosts can establish an HTTP connection to any switch in the fabric. No host can establish an HTTP connection to any switch in the fabric. Only specified hosts can establish an HTTP connection to any switch in the fabric. To create an HTTP policy: 1. From a sectelnet or SSH session, log into the Primary FCS switch as Admin. 2. Enter the following: secpolicycreate policy_name, "member;...;member" Where: ■ policy_name is HTTP_POLICY. ■ member is one or more IP addresses in dot-decimal notation. You can enter "0" in an octet to indicate that any number can be matched in that octet. 3. To save or activate the new policy, enter the secpolicysave or the secpolicyactivate command. If neither of these commands are entered, the changes are lost when you log out. For more information about these commands, see "Saving Changes to Secure Fabric OS Policies" on page 77 and "Activating Changes to Secure Fabric OS Policies" on page 77. 64 Secure Fabric OS Version 1.0 User Guide