HP Surestore 64 FW 05.01.00 and SW 07.01.00 HP StorageWorks SAN High Availabil - Page 131

Physical Planning Considerations Security Provisions Security provisions are available to restrict unauthorized access to a director, switch, or attached Fibre Channel devices. Access to the director or switch (through the HAFM application, Product Manager application, and Web server interface) is restricted by implementing password protection. Access to attached computing resources (including applications and data) is restricted by implementing name server zoning. Password Protection Access to the HAFM and Product Manager applications requires configuration of a user name and password. Up to 16 user names and associated passwords can be configured, although only 9 users can log in concurrently (8 remote and 1 local). Each user is assigned rights that allow access to specific sets of product management operations. Table 3 explains the types of user rights available. A user may have more than one set of user rights granted. Table 3: Types of User Rights User Right View Only Operator Product Administrator System Administrator Maintenance Operator Access Allowed The user may view product configurations and status, but may not make changes. These rights are the default if no other user rights are assigned. The operator may view status and configuration information through the Product Manager application, and perform operational control changes, such as blocking ports and placing the product online or offline. The product administrator can make control and configuration changes through the Product Manager application. The system administrator can make control and configuration changes, define users and passwords, and add or remove products through the HAFM application. The maintenance operator can perform product control and configuration changes through the Product Manager application, and perform diagnostics, maintenance functions, firmware loads, and data collection. SAN High Availability Planning Guide 131