FW V06.XX/HAFM SW V08.02.00 HP StorageWorks SAN High Availability Planning Guide (AA-RS2DD-TE, July 2004)
Table Of Contents
- SAN HA Planning Guide
- Contents
- About this Guide
- Introduction to HP Fibre Channel Products
- Product Management
- Planning Considerations for Fibre Channel Topologies
- Fibre Channel Topologies
- Planning for Point-to-Point Connectivity
- Characteristics of Arbitrated Loop Operation
- Planning for Private Arbitrated Loop Connectivity
- Planning for Fabric-Attached Loop Connectivity
- Planning for Multi-Switch Fabric Support
- Fabric Topologies
- Planning a Fibre Channel Fabric Topology
- Fabric Topology Design Considerations
- FICON Cascading
- Physical Planning Considerations
- Port Connectivity and Fiber-Optic Cabling
- HAFM Appliance, LAN, and Remote Access Support
- Inband Management Access (Optional)
- Security Provisions
- Optional Features
- Configuration Planning Tasks
- Task 1: Prepare a Site Plan
- Task 2: Plan Fibre Channel Cable Routing
- Task 3: Consider Interoperability with Fabric Elements and End Devices
- Task 4: Plan Console Management Support
- Task 5: Plan Ethernet Access
- Task 6: Plan Network Addresses
- Task 7: Plan SNMP Support (Optional)
- Task 8: Plan E-Mail Notification (Optional)
- Task 9: Establish Product and HAFM Appliance Security Measures
- Task 10: Plan Phone Connections
- Task 11: Diagram the Planned Configuration
- Task 12: Assign Port Names and Nicknames
- Task 13: Complete the Planning Worksheet
- Task 14: Plan AC Power
- Task 15: Plan a Multi-Switch Fabric (Optional)
- Task 16: Plan Zone Sets for Multiple Products (Optional)
- Index
Physical Planning Considerations
147SAN High Availability Planning Guide
Security Provisions
Security provisions are available to restrict unauthorized access to a director,
switch, or attached Fibre Channel devices. Access to the director or switch
(through the HAFM application, Element Manager application, and Web server
interface) is restricted by implementing password protection. Access to attached
computing resources (including applications and data) is restricted by
implementing one or more of the following security provisions:
■ SANtegrity Binding
■ PDCM Arrays
■ Preferred Path
■ Zoning
■ Server and Storage-Level Access Control
Password Protection
Access to the HAFM and Element Manager applications requires configuration of
a user name and password. Up to 16 user names and associated passwords can be
configured, although only 9 users can log in concurrently (8 remote and 1 local).
Each user is assigned rights that allow access to specific sets of product
management operations.
Table 3 explains the types of user rights available. A user may have more than one
set of user rights granted.
Table 3: Types of User Rights
User Right Operator Access Allowed
View Only The user may view product configurations and status but
may not make changes. These rights are the default if no
other user rights are assigned.
Operator The operator may view status and configuration
information through the
Element Manager
application
and perform operational control changes, such as
blocking ports and placing the product online or offline.