HP XP24000 manual Prohibiting All Hosts from Accessing Volumes

Page 11

Figure 2 Security Example 2

If no ports are registered in a host group, hosts in the host group can access volumes via ports to which the hosts are connected.

This manual uses the term port-level security, which is a security policy for enabling hosts to access volumes only via ports registered in host groups and thus prohibiting hosts to access the volumes via other ports.

CAUTION:

Before you apply security, you should confirm what hosts are performing I/O operations on volumes in access groups. If any hosts perform I/O operations on volumes in access groups that the hosts do not belong to, you will need to stop the I/O operations before you apply security. For example, if you attempt to apply security settings illustrated in Figure 2, an error occurs and the attempt fails if host4 and host5 are performing I/O operations on ldev1. To apply the security settings, you will need to ensure that host4 and host5 are not performing I/O operations on ldev1.

Prohibiting All Hosts from Accessing Volumes

To prevent all the mainframe hosts from accessing volumes, you must register the volumes in a pool group (Note that you do not need to register hosts in pool groups). For example, if you register two

XP24000/XP20000 Volume Security User's Guide

11

Image 11

Contents HP StorageWorks XP24000/XP20000 Volume Security Users Guide Edition Date Description Contents Acronyms and Abbreviations Index TroubleshootingSupport and Other Resources Figures Tables Terminology Overview of Volume SecurityOverview Overview of Volume Security Enabling Only the Specified Hosts to Access Volumes About Volume Security OperationsOverview of Volume Security Functions Protecting Volumes from I/O Operations at Mainframe HostsPort-Level Security Implementation Port-Level SecurityProhibiting All Hosts from Accessing Volumes Protecting Volumes from Erroneous Copy Operations Registering Volumes in an Ldev Group on Supported Volume Emulation TypesMaximum Possible Number of Groups Maximum Possible Number of Hosts and VolumesVolume Security Window Using the Volume Security GUISecurity Group Tree Volume Security WindowSecurity Group Tree Hosts Table Column Description LDEVs TableCreating a Security Group for Use As a Pool Group on Add/Change Security Group Dialog BoxAdd/Change Security Group Dialog Box VOL/R Add/Change Host Group Dialog Box Add/Change Host Group Dialog Box Item Description Add/Change Ldev Group Dialog BoxAdd/Change Ldev Group Dialog Box Registering Hosts to be Attached to the Storage System on Add/Change Host Dialog BoxNo icon Select Ldev Dialog Box Select Ldev Dialog BoxSelect Port Dialog Box Select Port Dialog Box Specify Security Group Dialog Box Specify Security Group Dialog BoxHost to Security Group Dialog Box Host to Security Group Dialog BoxHost to Ldev Dialog Box Host Third The Logical Partition Number of the host Host Group to Security Group Dialog BoxHost Group Specifies a host group Host Group to Port Dialog BoxHost Group to Port Dialog Box Ldev to Security Group Dialog BoxLdev to Security Group Dialog Box Ldev to Host Dialog BoxLdev to Host Dialog Box Information about the channel extender Ldev Group to Security Group Dialog BoxLdev Group to Security Group Dialog Box Error Detail Dialog BoxError Detail Dialog Box Viewing Security Settings Performing Volume Security OperationsLaunching Volume Security Locating Security Groups that Contain a Specified Host Locating Volumes in a Specified Security GroupLocating Security Groups that Contain a Specified Volume Locating Ports through Which Hosts Can Access VolumesLocating Security Groups that Contain a Specified Host Group Creating a Host Group Limiting Host AccessRegistering Hosts in a Host Group Registering Ports in a Host Group Creating an Ldev Group Registering Volumes in an Ldev Group Creating a Security Group for Use As an Access Group Prohibiting Host Access Registering Volumes in an Ldev Group Creating a Security Group for Use As a Pool Group Registering an Ldev Group in a Security Group Protecting Volumes from Copy Operations TIP Disabling Volume SecurityUnregistering an Ldev Group Editing Security GroupsUnregistering a Host Group Renaming Security Groups Registering Hosts to be Attached to the Storage System Editing Host GroupsDeleting Security Groups =CPU Deleting Hosts from Host GroupsDeleting Ports from Host Groups Renaming Host Groups Deleting Host Groups Deleting Volumes from Ldev GroupsEditing Ldev Groups Renaming Ldev Groups Deleting Ldev Groups Performing Volume Security Operations Calling HP Technical Support TroubleshootingTroubleshooting Volume Security Troubleshooting HP Technical Support Support and Other ResourcesRelated Documentation Conventions for Storage Capacity ValuesDocumentation Feedback Subscription ServiceHP Websites Acronyms and Abbreviations Acronyms and AbbreviationsAcronyms and Abbreviations Index Pool group, 11 port-level security overview

Related manuals

Manual 42 pages 11.22 Kb

Manual 170 pages 46.46 Kb