McDATA® 4Gb SAN Switch for HP p-Class BladeSystem Installation Guide (AA-RW1XC-TE, November 2006)
McDATA® 4Gb SAN Switch for HP p-Class BladeSystem installation guide 23
Switch services
You can configure your switch to suit the demands of your environment by enabling or disabling a variety
of switch services. Familiarize yourself with the following switch services and determine which ones you
need.
IMPORTANT: The SSL and SSH services can be managed only with Element Manager, which requires the
Element Manager PFE key, and the CLI. See ”Installing Product Features Enablement keys” on page 35 for
more information about installing a PFE key. To obtain the McDATA 4Gb SAN Switch serial number and
PFE key, follow the step-by-step instructions on the firmware feature entitlement request certificate for the PFE
key. You can obtain a PFE key from the web at: www.webkey.external.hp.com
.
• Telnet—Provides for the management of the switch over a Telnet connection. Disabling this service is not
recommended. The default is enabled.
• Secure Shell (SSH)—Provides for secure remote connections to the switch using SSH. Your workstation
must also use an SSH client. The default is disabled.
• Switch Management—Provides for out-of-band management of the switch with Telnet, McDATA Web
Server, and Common Information Model (CIM). The switch can be managed by SNMP-supported
management programs. SNMP is supported both inband and out-of-band. If this service is disabled,
the switch can only be managed inband. The default is enabled.
• Inband Management—Provides for the management of the switch over Fibre Channel using the
McDATA Web Server, SNMP, or the management server. If you disable inband management and
out-of-band management, you can no longer communicate with that switch. The default is enabled.
Access to an entry switch via ethernet is required.
• Secure Socket Layer (SSL)—This service is available only with the Provides for secure SSL connections
for the McDATA Web Server, Element Manager, and CIM. To enable secure SSL connections, you must
first synchronize the date and time on the switch and workstation. Enabling SSL automatically creates a
security certificate on the switch. The default is disabled. This service is available only after installing
the McDATA SANtegrity Enhanced PFE key.
• Embedded GUI—Provides for access to both McDATA Web Server and Element Manager. McDATA
Web Server enables you to point at a switch with an internet browser and run switch management
application through the browser. Element Manager enables you to manage the switch through HAFM.
The default is enabled.
• Simple Network Management Protocol (SNMP)—Provides for the management of the switch through
third-party applications that use the SNMP. Security consists of a read community string and a write
community string that serve as passwords that control read and write access to the switch. These strings
are set at the factory to these well-known defaults and should be changed if SNMP is to be enabled.
Otherwise, you risk unwanted access to the switch. The default is enabled.
• Network Time Protocol (NTP)—Provides for the synchronizing of switch and workstation dates and times
with an external NTP server. This helps to prevent invalid SSL certificates and timestamp confusion in the
event log. The default is disabled.
• Common Information Module (CIM)—Provides for the management of the switch through third-party
applications that use CIM. The default is enabled.
• File Transfer Protocol (FTP)—Provides for transferring files rapidly between the workstation and the
switch. The default is enabled.
• Management Server (MS)—Enables or disables the management of the switch through third-party
applications that are compliant with the FC GS-3 Management Server Specification. The default is
disabled.