HP Surestore 64 FW 05.01.00 and SW 07.01.00 HP StorageWorks SAN High Availabil - Page 33
Security Features, SNMP workstation restrictions
View all HP Surestore 64 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 33 highlights
Introduction to HP Fibre Channel Products ■ State change notification - Directors and switches support a state change notification function that allows attached N_Ports to request notification when other N_Ports change operational state. ■ Port binding - Directors and switches support a feature that binds an attached Fibre Channel device to a specified port through the device's World Wide Name (WWN). Security Features The HAFM and Product Manager applications offer the following security features: ■ Password protection - Users must provide a user name and password to log in to the HAFM server and access managed directors and switches. Administrators can configure user names and passwords for up to 16 users, and can authorize or prohibit specific management permissions for each user. ■ Remote user restrictions - Remote user access to directors and switches is either disabled or restricted to configured IP addresses. ■ SNMP workstation restrictions - SNMP workstations can only access management information base (MIB) variables managed by a director or switch SNMP agent. SNMP workstations must belong to SNMP communities configured through the HAFM application or EWS interface. If configured, the agent can send authorization failure traps when unauthorized SNMP workstations attempt to access a director or switch. ■ Audit log tracking - Configuration changes to a director or switch are recorded in an audit log stored on the HAFM server, where they are accessible to users for display. Log entries include the date and time of the configuration change, a description of the change, and the source of the change. ■ Port blocking - System administrators can block or unblock any port to restrict device access to a director or switch. ■ Zoning - System administrators can create zones that provide director or switch access control to increase network security, differentiate between operating systems, and prevent data loss or corruption. Zoning can be implemented in conjunction with server-level access control and storage device access control. SAN High Availability Planning Guide 33