HP SAN manual

Page 74

Use caution when disabling the Embedded GUI, GUI Mgmt, Telnet, SSL, and SSH, as it is possible to disable all access to the switch except through a serial connection.

IMPORTANT: The SSL and SSH services can be managed only with Element Manager, which requires the Element Manager PFE key, and the CLI. See ”Installing Product Feature Enablement keys” on page 82 for more information about installing a PFE key. To obtain the McDATA 4Gb SAN Switch serial number and PFE key, follow the step-by-step instructions on the firmware feature entitlement request certificate for the PFE key. You can obtain a PFE key from the web at: www.webkey.external.hp.com.

Embedded GUI—McDATA Web Server and Element Manager. Allows users to point a browser at the switch and run the McDATA Web Server application; or run Element Manager from HAFM.

GUI Mgmt—Allows out-of-band management of the switch from the switch management application (GUI). If disabled, the switch can not be specified as the entry switch for a fabric in the GUI, but can still be managed through an in-band connection.

SSL—Secure Sockets Layer. Provides secure encrypted communications between the switch management application (GUI) and the switch. SSL must be enabled before you can configure device security and RADIUS servers. SSL certificates are generated on the switch with the switch date/time and validated with the workstation’s date/time. If the Switch and workstation date/time are not synchronized, invalid certificates will be generated and prevent an SSL connection from being established between the switch and the management application. To disable SSL when using a user authentication RADIUS server, the RADIUS authentication order must first be set to Local.

Telnet—CLI. Allows users to manage the switch through a Telnet CLI session. Disabling Telnet access to the switch is not recommended.

SSH—Secure SHell. Provides secure encrypted Telnet CLI sessions with the switch. Note that you will have to have an SSH client running on your workstation in order to manage your switch with Telnet CLI when SSH is enabled.

SNMP—Simple Network Management Protocol. Allows management of the switch through third-party applications that use SNMP.

NTP—Network Time Protocol. Allows the switch to obtain its time and date settings from an NTP server. Configuring all of your switches and your workstations to utilize NTP will keep their date/time settings in sync and will prevent difficulties with SSL certificates and event logs.

CIM—Common Information Model. Allows management of the switch through third-party applications that use CIM.

FTP—File Transfer Protocol. Allows file transfers to the switch via FTP. FTP is required for out-of-band firmware uploads that will complete faster than in-band firmware uploads.

Management Server—Allows management of the switch through third-party applications that use GS-3 Management Server.

74

Image 74
Contents McDATA 4Gb SAN Switch Page Contents Managing switches Managing ports Glossary IndexTables Related documentation Intended audiencePrerequisites Document conventions and symbols Jdom licenseHP technical support HP-authorized resellerHelpful web sites Using McDATA Web Server/Element Manager Workstation requirements Starting McDATA Web ServerStarting Element Manager in Hafm Exiting McDATA Web Server or Element ManagerSetting preferences Enabling call home Using online helpViewing software version and copyright information Enabling e-mail supportUser interface McDATA Web Server interfaceMenu bar Popup menus Shortcut keysMcDATA Web Server Fabric tree Graphic windowSelecting ports Selecting switchesData windows and tabs Security consistency checklist Securing a fabricUser account security Remote authenticationConnection security Device security Edit Security dialog Create Security Set dialog Create Security Group dialogCreate Security Group Member dialog McDATA 4Gb SAN Switch for HP p-Class BladeSystem user guide Editing the security configuration on a switch Viewing properties of a security set, group, or memberActivating a security set Security Config dialogArchiving a security configuration to a file Fabric services Rediscovering a fabricDisplaying the event browser Events browserSorting the event browser Filtering the event browser Saving the event browser to a fileWorking with device information and nicknames Devices data windowDisplaying detailed device information Managing device port nicknamesDeleting a nickname Creating a nicknameEditing a nickname Exporting nicknames to a fileZones Zoning a fabricZoning concepts Zone sets Zoning databaseZoning limits and properties Managing the zoning database Editing the zoning databaseMcDATA 4Gb SAN Switch for HP p-Class BladeSystem user guide Restoring the zoning database from a file Configuring the zoning databaseSaving the zoning database to a file Removing all zoning definitions Restoring the default zoning databaseManaging the active zone set Displaying the configured and active zone sets Active zone set data windowRemoving a zone from a zone set Creating a zone setActivating and deactivating a zone set Removing a zone setManaging zones Creating a zone in a zone setRemoving a zone member Adding zone membersRenaming a zone or a zone set Zone merge failure Zone merge failure recoveryMerging fabrics and zoning Managing switches Managing user accountsUser Account Administration dialog Add Account tab Creating user accountsUser Account Administration Dialog Remove Account tab Removing a user accountChanging a user account password User Account Administration dialog Change Password tabUser Account Administration dialog Modify Account tab Modifying a user accountConfiguring Radius servers Adding a Radius server Removing a Radius server Editing Radius server information Modifying Radius server authentication order Device and Host Bus Adapter information Displaying switch informationSwitch event log Switch status and operational information Switch data windowMcDATA 4Gb SAN Switch for HP p-Class BladeSystem user guide With a switch Ratov Port status and operational information McDATA Web Server Configured Zonesets data windowPort performance statistics Configuring port threshold alarms Paging a switch Setting the date/time and enabling NTP clientResetting a switch Configuring a switch Switch propertiesDomain ID and domain ID lock Symbolic name SyslogIn-band management Switch administrative statesBroadcast support Advanced switch properties Fabric Device Management InterfaceInterop mode System servicesTimeout values Page Network properties Snmp properties Snmp configuration Snmp trap configurationArchiving a switch Switch bindingRestoring a switch Restoring the factory default configuration Downloading a support file Installing Product Feature Enablement keys Installing firmware Displaying hardware status Hardware status LEDsManaging ports Port information data windowPersistent and will be lost on a switch reset VIEnable and LCFEnable features based on Port statistics data window LIP ALPD,ALPS Alps Viewing and configuring ports Port symbolic namePort states Port types Device scan Port speedsPort transceiver media status Port binding Resetting a portTesting ports Page Glossary FRU SFP 100 Index 102 System Fault LED 84 system services 104