FW 05.01.00 and SW 07.01.00 HP StorageWorks SAN High Availability Planning Guide (AA-RS2DC-TE, June 2003)
Physical Planning Considerations
131SAN High Availability Planning Guide
Security Provisions
Security provisions are available to restrict unauthorized access to a director,
switch, or attached Fibre Channel devices. Access to the director or switch
(through the HAFM application, Product Manager application, and Web server
interface) is restricted by implementing password protection. Access to attached
computing resources (including applications and data) is restricted by
implementing name server zoning.
Password Protection
Access to the HAFM and Product Manager applications requires configuration of
a user name and password. Up to 16 user names and associated passwords can be
configured, although only 9 users can log in concurrently (8 remote and 1 local).
Each user is assigned rights that allow access to specific sets of product
management operations.
Table 3 explains the types of user rights available. A user may have more than one
set of user rights granted.
Table 3: Types of User Rights
User Right Operator Access Allowed
View Only The user may view product configurations and status, but
may not make changes. These rights are the default if no
other user rights are assigned.
Operator The operator may view status and configuration
information through the
Product Manager
application, and
perform operational control changes, such as blocking
ports and placing the product online or offline.
Product Administrator The product administrator can make control and
configuration changes through the
Product Manager
application.
System Administrator The system administrator can make control and
configuration changes, define users and passwords, and
add or remove products through the
HAFM
application.
Maintenance The maintenance operator can perform product control
and configuration changes through the
Product Manager
application, and perform diagnostics, maintenance
functions, firmware loads, and data collection.