Security; Network Manageability; Security Features - HP A7990A - StorageWorks SAN Director 4/16 Blade Switch Hardware Reference Manual

Hp storageworks dc san backbone director hardware reference guide (5697-7346, september 2008)

page of 144

/ 144
Contents
Table of Contents
Bookmarks

Table of Contents

•

SMI-S compliant API

•

Syslog auditing

•

Reliable Commit Service (RCS)

•

Network Time Protocol (NTP)

•

Tasks to manage address assignment, routing, link initialization, fabric initialization, link shutdown, DC

Director shutdown, and the user interface.

Security

Table 3

highlights some of the key security features available for the DC Director running Fabric OS 6.0.0b

or later, and for other HP enterprise-class platforms running Fabric OS 5.2.0 or later. For details, contact

HP.

Table 3

Security features

Security Features

DH-CHAP

SSHv2 (using AES, 3DES, RSA)

HTTPS (using AES)

SNPMv3

FC-SP

Secure RPC

Secure file copy (SCP)

Telnet disable

Telnet timeout

IP filters (block listeners)

Secure passwords (centralized control

via RADIUS/CHAP)

Multiple User Accounts (MUAs). Up to

255.

Role-Based Access Controls (RBACs)

Administrative domains/Virtual fabrics

Boot PROM password reset

Password hardening policies

Upfront login in Web Tools

Network manageability

The DC Director has a single domain and is managed as a single element with the optional Fabric

Manager (FM) Graphical User Interface (GUI) application. The DC Director responds to its own IP address

and appears as a separate entity to the Telnet protocol and SNMP.

All management interfaces, such as Telnet, Web Tools, standards compliant SMI-S, and Management

Server, support a "port N within blade M" naming scheme.

The DC Director supports SNMPv1 and SNPMv3. When SNMP devices send SNMP messages to a

management console running SAN management software, the information is stored in a Management

Monitoring of attempted security breaches

(via audit logging)

Monitoring of attempted security breaches

(via Fabric Watch Security Class)

FC security policies: DCC and SCC

Trusted Switch (FCS) for central security

management

Management access controls (SNMPv3,

Telnet, FTP, serial port, front panel)

Hardware-enforced zoning by WWN

and/or domain/port ID

Default zoning

RSCN suppression and aggregation

Configurable RSCN suppression by port

NTPv3 (to synchronize timestamps)

Event auditing

Change tracking

Firmware change alerts in Fabric Manager

Persistent port disable

Persistent domain ID

E_port disable

DC SAN Backbone Director hardware reference guide

Table of Contents

Security; Network Manageability; Security Features - HP A7990A - StorageWorks SAN Director 4/16 Blade Switch Hardware Reference Manual

Security

Security features

Network manageability

Related Manuals for HP A7990A - StorageWorks SAN Director 4/16 Blade Switch

Related Content for HP A7990A - StorageWorks SAN Director 4/16 Blade Switch

Table of Contents