HP StorageWorks MSA 2/8 HP StorageWorks Secure Fabric OS V1.0 User Guide (AA-R - Page 68

Creating Secure Fabric OS Policies To create a Serial Port policy: 1. From a sectelnet or SSH session, log into the Primary FCS switch as Admin. 2. Enter the following: secpolicycreate policy_name, "member;...;member" Where: ■ policy_name is SERIAL_POLICY. ■ member is a switch WWN, domain ID, or switch name. If a domain ID or switch name is used to specify a switch, the associated switch must be present in the fabric for the command to succeed. 3. To save or activate the new policy, enter the secpolicysave or the secpolicyactivate command. If neither of these commands are entered, the changes are lost when you log out. For more information about these commands, see "Saving Changes to Secure Fabric OS Policies" on page 77 and "Activating Changes to Secure Fabric OS Policies" on page 77. Example, creating a SERIAL_POLICY that allows serial port access to a switch that has a WWN of 12:24:45:10:0a:67:00:40: primaryfcs:admin> secPolicyCreate "SERIAL_POLICY", "12:24:45:10:0a:67:00:40" SERIAL_POLICY has been created. primaryfcs:admin> Front Panel Policy You can create the Front Panel policy to restrict front panel access to switches that are physically secure. This policy applies only to SAN Switch 2/16, since no other switches contain front panels. The policy is named FRONTPANEL_POLICY and contains a list of switch WWNs, Domain IDs, or switch names for which front panel access is enabled. The possible Front Panel policy states are shown in Table 10. 68 Secure Fabric OS Version 1.0 User Guide