HP StorageWorks MSA 2/8 HP StorageWorks Secure Fabric OS V1.0 User Guide (AA-R - Page 67

Creating Secure Fabric OS Policies 3. To save or activate the new policy, enter the secpolicysave or the secpolicyactivate command. If neither of these commands are entered, the changes are lost when you log out. For more information about these commands, see "Saving Changes to Secure Fabric OS Policies" on page 77 and "Activating Changes to Secure Fabric OS Policies" on page 77. Example, creating an MS_POLICY that allows access through a device that has a WWN of 12:24:45:10:0a:67:00:40: primaryfcs:admin> secPolicyCreate "MS_POLICY", "12:24:45:10:0a:67:00:40" MS_POLICY has been created. primaryfcs:admin> Serial Port Policy You can create the Serial Port policy to restrict serial port access to switches that are physically secure. The policy is named SERIAL_POLICY and contains a list of switch WWNs, Domain IDs, or switch names for which serial port access is enabled. The Serial Port policy is checked before the account login is allowed. If the Serial Port policy exists and the switch is not included in the policy, the session is terminated. The possible Serial Port policy states are shown in Table 9. Table 9: Serial Port Policy States Policy State No policy Policy with no entries Policy with entries Characteristics All serial ports of the switches in the fabric are enabled. All serial ports of the switches in the fabric are disabled. Only specified switches can be accessed through the serial ports. Secure Fabric OS Version 1.0 User Guide 67