Monitoring User Logins, Zoning Anonymous Access | APC 15000 RAID

Controller Management

3.4.1Monitoring User Logins

The AUDIT function continuously monitors logins to the controller and provides alerts in the event of unauthorized login attempts (Figure 3–47).

Host Int 15:04:07 User Logout Client1, port:4 S_ID:000004

Host Int 15:04:47 Authenticated Login Client10, port:3 S_ID:000002

Figure 3–47User Login Messages

USER AUDIT=ONOFF enables/disables the user auditing function. When enabled, the system will display a message when a user logs in or out. Default is OFF.

USER CONNECTIONS displays a list of all the currently connected users and the host port to which the user is connected (Figure 3–48).

Figure 3–48User Connections Screen

3.4.2Zoning (Anonymous Access)

This type of configuration provides the first-level protection. The LUN identification scheme can be customized for each host port. Any unauthorized user accessing the controller will be considered “anonymous” and granted the zoning rights for the host port to which they are connected.

The ZONING command will display the current settings for the host ports. The LUN Zoning chart indicates which internal LUNs the users will be able to access (with Read-only and Read/Write privileges) and where the internal LUN will appear to the users. In Figure 3–49,only internal LUN 1 can be accessed and it is read-only. It will appear as LUN 0 to the users.

Figure 3–49Current Zoning Configuration Screen

ZONING EDIT lets you change the settings for the host ports. You will be asked to select a host port to change and enter the mapping for each LUN (Figure 3–50).The default configuration is to deny access to all the LUNs.

ZONING DEFAULT restores the zoning of a host port back to its default settings.

007-5510-002

73

Image 87

APC 15000 RAID manual Monitoring User Logins, Zoning Anonymous Access

Contents

SGI InfiniteStorage 15000 RAID User’s Guide Copyright Introduction Controller Remote Management and Troubleshooting Drive Enclosure Operation 115 Replacing the DEM 127 Potential for Radio Frequency Interference What is in this guidePreface International Standards European Regulations Qualified PersonnelSafe Handling Chassis Warning Label Weight Hazard Safety PCM Warning Label Power Hazards Recycling of Waste Electrical and Electronic Equipment Weee Rack System Precautions Cover Label ESD Precautions Data Security Preface Page Infiniband or Fibre Channel FC-8 Connectivity Throughput Controller FeaturesIntroduction Simplifies Deployment of Complex SANs Controller Hardware 1SGI InfiniteStorage 15000 IB Front and Rear Views 2Fan Module front panel Power Supply and Fan Modules Host IB LEDs Ethernet 2 I/O Connectors and Status LED Indicators 4Host Port LEDs Ctrl Temp FAN Status System Disk Status Indicator Led Activity Explanation Uninterruptible Power Supply UPS Page Setting Up the Controller Controller Installation Connecting the Controller in Dual Mode Unpacking the SystemRack-Mounting the Controller Chassis Disk ports Host port 1 Host port Connecting the Controller Basic Key Operations Connecting the RS-232 Terminal Basic Key Assignments Powering On the Controller Planning Your Setup and Configuration Configuring the Controller Configuration Interface Login as AdministratorSetting System Time & Date 4Tier Changemap Screen Setting Tier Mapping Mode 5Tier Status Screen Checking Tier Status and Configuration Heading Definitions Cache Coherency and Labeling in Dual Mode 7Dual Controller Configuration Configuring the Storage Arrays Enter the block size in Bytes 512Enter To create the LUN 1, type Setting Security Levels User Authentication Recommended for SAN EnvironmentAuthorized user Host port zoning To add a user Check to ensure that the LUN Zoning chart is empty Figure 12shows a finished sample Host Port Zoning Anonymous Access Page Controller Management Managing the ControllerManagement Interface Available Commands Administrator and User LoginsLogin Password LogoutWho Am Configure and Monitor Status of Host Ports Configuration Management Host Status Host ID Configure and Monitor Status of Storage Assets Host IB UsersHost Port Speed Disk STATUSCLEAR=tierchannel resets the channel error counts 11Disk Defect List Screen Sata Aamux PHY Errors 12Disk PLS Tier 1 Status Screen Tier View Tier Configuration LUN View 14Tier Configuration ALL Screen LUN Configuration LUN ReservationsAdding/Removing Storage Assets Tier Mapping for Enclosures Telnet System Network Configuration API Server Connections Snmp & Syslog Restarting the Controller Displaying and Editing the Routing TableSystem Restart Setting the System’s Date and Time System ShutdownSystem Date Saving the Controller’s Configuration Restoring the System’s Default ConfigurationSystem Time Configuring the Storage Array LUN ManagementCreating a LUN Formatting a LUN Interrupting a LUN Format OperationChanging a LUN Label Moving a LUN Dual Mode Only Automatic Drive RebuildDeleting a LUN Manual Drive Replace Smart CommandManual Drive Rebuild Drive Rebuild Verify Smart Enable Cache Coherent Couplet Controller Configuration Cache/Non-Cache Coherent Labeling the Controller Units Fail / Restore the Other Controller Unit in the Couplet Pair Performance Management Optimizing I/O Request PatternsSinglet Writeback Cache Settings Prefetch SettingsCache Segment Size Disk Configuration Settings Cache Settings Reset 31Current Audio/Visual Settings Audio/Visual Settings of the System Initial Cache Locking LUN in Cache System Performance Statistics Locking / Unlocking a LUN 33System Performance Statistics Screen 34Command Delay Statistics Screen 35Host Delay Statistics Screen 37Host Command Offsets Screen 38Dual Message Statistics Screen Background Format/Rebuild Operations Resources Allocation Background Tier Verify Operations Background LUN Verify Operations 42Tier Verify on Screen Rebuild Journaling CLI commands Tier PAUSE, Tier RESUME, Tier Stop 007-5510-002 SES Device Monitoring Rate 44Sample Tier Journal Command Screen Host Command Timeout Security Administration Zoning Anonymous Access Monitoring User Logins 50Edit Zoning Configuration Screen User Authentication Firmware Update Management Firmware Update ProcedureDisplaying Current Firmware Version 53Downloading Controller Firmware Remote Login Management 54Telnet Statistics When a Telnet Session is Active 56Telnet Session Information System and Drive Enclosure Faults System LogsMessage Log Saving a Comment to the Log Displaying System Uptime Changing Baud Rate for the CLI Interface Other UtilitiesAPC UPS Snmp Trap Monitor API Server Connections Disk Diagnostics 4 CLI/Telnet Session Control Settings Spare Commands Disk Reassignment and Miscellaneous Disk Commands Unique Network Connection Controller Remote Management and TroubleshootingNetwork Interface Set Up Remote Management of the Controller Network trapip=computer’s IP address 3Current Controller Routing Table Login Names and Passwords Snmp Set Up on Host Computer Controller Implementation of SnmpSdd.mib Sddtrap.mib Traps Troubleshooting the ControllerComponent Failure Recovery Power Supply Failure Fan Failure Recovering from Drive Failures Single Drive Failures Manually Replacing a Failed Disk with Spare Disk Returning the System to a Fault-Tolerant State Changing the Rate of Rebuild Interrupting the Rebuild OperationMultiple Drive and Channel Failures 7Example of SES Message Component Failure on Enclosures SGI InfiniteStorage 15000 Drive Enclosure Drive Enclosure System 3Drive Enclosure Module Locations Enclosure Core Product Power Cooling Module PCM Plug-in ModulesEnclosure Chassis Input/Output I/O Module Amber Definition Enclosure Audible AlarmColor Green Drive Carrier Module and Status Indicator DEM CardBlue Front Panel Drive Activity Indicators Indicators Shelf Identify System FaultSystem Power DEM Fault Drive Fault Individually HDDsNumbered Rear of Enclosure Activity Indicators Internal Indicators Visible and Audible Alarms Drive Enclosure Technical SpecificationDimensions Input Parameter Value Weight PCM Safety and EMC Compliance Power CordEnvironment Page Introduction Planning Your Installation Drive Enclosure Installation Enclosure Bay Numbering Convention Bay B Bay a 21X60 Drive Numbering Table Enclosure Installation Procedures I/O Module ConfigurationsController Options Sata Interposer Features Drive Enclosure Device AddressingGrounding Checks Page PCM LEDs Power On / Power DownDrive Enclosure Operation Before You Begin Definition 2 I/O Panel LEDs Drive Enclosure Troubleshooting Initial Start-up ProblemsOverview DEM Drive Expander Module PCM Power Cooling ModuleLEDs HDD Hard Disk Drive Blue 4 I/O Module Definition Normal Behavior Top Cover Open Audible AlarmTroubleshooting SES Command Symptom Cause Action Dealing with Hardware Faults Thermal AlarmThermal Shutdown Module Continuous Operation During ReplacementPower Cooling Modules Replacing a Module To install an AC PCM Handle Model To install an AC PCM Thumbscrew ModelTo remove an AC PCM Thumb Screw Model To remove the I/O Module To installing the I/O Module2 I/O Module Replacing the Drive Carrier Module To Insert the Drive Carrier Module Replacing the DEMPage Reliability Configuration, Performance, & Capacity Physical, Power & Environmental Drive Addressing 007-5510-002 133 Page Cabling Controllers and Drive Enclosures 136 137 138