Device Security Configuration; Displaying Security Database Information; Configured Security Set Information - HP AK241A - StorageWorks 8Gb Simple SAN Connection Cli Manual
Fibre channel switch
Hide thumbs
Also See for AK241A - StorageWorks 8Gb Simple SAN Connection:
- Cli manual (270 pages) ,
- Cli manual (332 pages) ,
- Installation and reference manual (82 pages)
Table of Contents
Advertisement
8
Device security configuration
This section describes the following tasks:
• Displaying security database
• Configuring the security
• Modifying the security
• Resetting the security
• Managing security
• Managing
Device security provides for the authorization and authentication of devices that you attach to a switch. You
can configure a switch with a group of devices against which the switch authorizes new attachments by
devices, other switches, or devices issuing management server commands.
Device security is defined through the use of security sets and groups. A group is a list of device WWNs
that are authorized to attach to a switch. There are three types of groups: one for other switches (ISL),
another for devices (port), and a third for devices that issue management server commands (MS). A
security set is a set of up to three groups with no more than one of each group type. The security database
is made up of all security sets on the switch.
In addition to providing authorization, the switch can be configured to require authentication to validate
the identity of the connecting switch, device, or host. Authentication can be performed locally using the
switch's security database, or remotely using a RADIUS server such as Microsoft RADIUS.
Displaying security database information
You can display the following information about the security database:
• Configured security set
• Active security set
• Security set membership
• Group membership
• Security database modification
• Security database
Configured security set information
The securityset list and the security list commands display information about all security
sets in the security database.
To display a list of the security sets, enter the securityset list command, as shown in the following
example:
8/20q FC Switch #> securityset list
Current list of SecuritySets
----------------------------
alpha
beta
information, page 89
database, page 93
database, page 94
database, page 94
sets, page 94
groups, page 95
information, page 89
information, page 90
information, page 91
information, page 91
history, page 92
limits, page 92
8/20q Fibre Channel Switch command line interface guide
89
Advertisement
Table of Contents
