HP DC SAN Backbone Director Switch Hardware Reference Guide (5697-2158, August 2012)
• Predictive diagnostics analysis through Fabric Watch
• SNMP (including version 3) integration with higher-layer managers
Software features
The Fabric OS allows any FC-compliant device to attach to the switches as long as it conforms to
the device login, name service, and related FC standards. Each operating environment requires
that an FC HBA be available with a standards-compliant driver for correct interface to the fabric.
Fabric OS consists of a set of embedded applications running on top of an embedded Linux
operating system kernel. These applications include:
• Name server
• Alias server
• Zone server
• SNMP agent
• SMI-S compliant API
• Syslog auditing
• RCS
• NTP
• Tasks to manage address assignment, routing, link initialization, fabric initialization, link
shutdown, DC SAN Director shutdown, and the user interface
Security
Table 2 (page 13) highlights some of the key security features available for the DC SAN Director
running Fabric OS 6.0.0b or later, and for other HP enterprise-class platforms running Fabric OS
5.2.0 or later. For more information, contact HP.
Table 2 Security features
DescriptionSecurity Features
Login bannerDH-CHAP
Monitoring of attempted security breaches (via audit logging)SSHv2 (using AES, 3DES, RSA)
Monitoring of attempted security breaches (via Fabric Watch Security
Class)
HTTPS (using AES)
FC security policies: DCC and SCCSNMPv3
Trusted Switch (FCS) for central security managementFC-SP
Management access controls (SNMPv3, Telnet, FTP, serial port, front
panel)
Secure RPC
Hardware-enforced zoning by WWN and/or domain/port IDSecure file copy (SCP)
Default zoningTelnet disable
RSCN suppression and aggregationTelnet timeout
Configurable RSCN suppression by portIP filters (block listeners)
NTPv3 (to synchronize timestamps)Secure passwords (centralized control via
RADIUS/CHAP)
Event auditingMUAs (up to 255)
Change trackingRBAC
Software features 13