HP StorageWorks Secure Fabric OS 5.0.0 User Guide (AA-RW1UA-TE, May 2005)
11Secure Fabric OS 5.0.0 user guide
1 Introducing Secure Fabric OS
Secure Fabric OS is an optionally licensed product that provides customizable security
restrictions through local and remote management channels on a fabric. Secure Fabric OS
provides the ability to:
• Create policies to customize fabric management access.
• Specify which switches and devices can join the fabric.
• View statistics related to attempted policy violations.
• Manage the fabric-wide Secure Fabric OS parameters through a single switch.
• Create temporary passwords specific to a login account and switch.
• Enable and disable Secure Fabric OS as desired.
Secure Fabric OS uses digital certificates based on PKI or Diffie-Hellman with
Challenge-Handshake Authentication Protocol (DH-CHAP) shared secrets to provide
switch-to-switch authentication.
This chapter contains the following sections:
• Changes to this guide for OS v5.0.0, page 11
• Management channel Security, page 11
• Switch-to-Switch authentication, page 13
• Fabric configuration server switches, page 14
• Fabric management policy set, page 15
Changes to this guide for OS v5.0.0
Documentation for Fabric OS v4.x is valid for v5.0.0 unless otherwise noted.
Management channel Security
Secure Fabric OS is used to provide policy-based access control of local and remote
management channels, including the
optional
Fabric Manager, Advanced Web Tools,
standard SNMP applications, and management server.