HP StorageWorks Fabric OS 6.1.1 administrator guide (5697-0235, December 2009)
156 Managing administrative domains
Table 47 lists each Admin Domain user type and describes its administrative access and capabilities.
User-defined Administrative Domains
AD1 through AD254 are user-defined Admin Domains. These user-defined Admin Domains can be created
only by a physical fabric administrator (see ”Admin Domains and login” on page 157 for more
information).
In Figure 6 on page 154, AD1 and AD2 are user-defined Admin Domains.
System-defined Administrative Domains
AD0 and AD255 are special, system-defined Admin Domains. When you install Fabric OS 6.1.0, the
switch enters AD-capable mode with domains AD0 and AD255 automatically created. AD0 and AD255
always exist and cannot be deleted or renamed. They are reserved for use in creation and management of
Admin Domains.
AD0
AD0 is a system-defined Admin Domain that contains all online devices, switch ports, and switches that
have not been assigned to any user-defined Admin Domain. AD0 also contains members that you explicitly
added (similar to user-defined Admin Domains).
Unlike user-defined Admin Domains, AD0 has an implicit and an explicit membership list. User-defined
Admin Domains have only explicit members.
• The implicit membership list contains all devices, switch ports, and switches that have not been
assigned to any other Admin Domain.
Initially, the AD0 implicit membership list contains all devices, switch ports, and switches in the fabric.
This implicit membership list includes all AD-unaware switches and the devices attached to them. When
you explicitly create AD1 through AD254, the devices, switch ports, and switches used to create these
user-defined Admin Domains disappear from the AD0 implicit membership list.
• The explicit membership list contains all devices, switch ports, and switches that you explicitly add to
AD0 and can be used to force device and switch sharing between AD0 and other Admin Domains.
AD0 can be managed like any user-defined Admin Domain. The only difference between AD0 and
user-defined Admin Domains is the implicit membership list.
The implicit members of AD0 change dynamically as the membership of other Admin Domains changes.
The explicit members of AD0 are not deleted unless you explicitly remove them.
For example, if you explicitly add DeviceA to AD0 and it is not a member of any other Admin Domain,
DeviceA is both an implicit and an explicit member of AD0. If you add DeviceA to AD2, DeviceA is
deleted from the AD0 implicit membership list, but is not deleted from the AD0 explicit membership list. If
you then remove DeviceA from AD2, DeviceA is added back to the AD0 implicit membership list (assuming
DeviceA is not in any other Admin Domain).
When a new device is added to the fabric, it automatically becomes an implicit member of AD0 until it is
explicitly added to an Admin Domain.
Table 47 AD user types
User type Description
Physical fabric
administrator
User account with Admin role and with access to all Admin Domains (AD0 through
AD255).
Creates and manages all Admin Domains.
Assigns other administrators or users to each Admin Domain.
Only a physical fabric administrator can create other physical fabric administrators.
Administrative
Domain users
Can be assigned to one or more Admin Domains.
Manages the resources within their Admin Domains.
If their role permits, can create user accounts and assign them to Admin Domains in
their list.
Cannot view other Admin Domain definitions. They can view only members of their
own Admin Domains.