HP Surestore 64 FW 09.0200 HP StorageWorks Director and Edge Switch Release No - Page 7
Password Expiration, Login Banner, Advanced Fabric Diagnostics
View all HP Surestore 64 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 7 highlights
Password Expiration HAFM Basic and CLI can now be configured to force expiration of user account passwords. This capability is completely configurable, and retains a history of the previous three passwords to prevent a user from re-using the same password repeatedly. Customer environments deploying best practice security procedures require users to establish new passwords periodically to ensure the integrity of their networks. In addition to the requirement to change passwords from default settings, this enhancement allows administrators to ensure that all users with access to the switch are meeting security access requirements. Login Banner A login banner is available to be displayed when users login to the HAFM Basic or CLI interfaces. This allows customers with stringent security requirements to notify users accessing equipment that certain regulations and restrictions are in place. The login banner is enabled by default. Customers can use the CLI to disable or configure the login banner text. Advanced Fabric Diagnostics This section describes the advanced fabric diagnostics features that have been introduced or enhanced in firmware 09.02.00. FC Ping CLI command Similar to an IP ping on Ethernet-based networks, FC Ping allows users to verify whether a particular device is logged in and responsive to requests from the fabric. This allows users facing device connectivity problems to verify whether a device is active and a valid route is available to reach that device. It can also be used to examine latency and timing in reaching devices. Hot Device Detection (HDD) CLI command The Hot Device Detection feature enables alerts to be generated when a pre-defined limit of the following incidents occur: • Embedded port unroutable frames: When it is detected that 50 of these frames reach the embedded port. Typically, these frames are sent in error conditions with invalid values in one or more fields within the frame header. This can assist in identifying conditions that can affect the performance of the switch, specifically the ability of the switch to respond to frames arriving at the embedded port (e.g., logins) and other tasks like firmware migration and zone updates. • Embedded port good frames: When 200 of these frames reach the embedded port. This number has been selected to detect continuous and unusual traffic to the name server in the form of queries or registrations. This can assist in identifying conditions that can affect the performance of the switch, specifically the ability of the switch to respond to frames arriving at the embedded port (e.g., logins) and other tasks like firmware migration and zone updates. • Invalid transmission words: When even a single invalid transmission word is detected on any port on the switch (this does not apply to the embedded port). This can assist in identifying problems with links that could lead to loss of buffer credits on the switches in the fabric or other problematic events. Notification can be configured to be sent through events, call home, or email. Nameserver Snaphot Tools CLI commands Nameserver snapshot CLI commands have been added under config.NSTools branch to allow users to take a snapshot of the local nameserver database, and then compare this to the database at a later time. The output provides a list of any changes discovered in the database, which will include missing or new devices anywhere in the fabric. Users can now save a snapshot of the nameserver database prior to performing major configuration changes like activating a new zone set or installing new firmware. Following completion of such an operation, the user can readily determine if any changes occurred, and specifically, if any devices were lost as a result of the change. Director and Edge Switch release notes 7