CAUTION: Use caution when disabling the Embedded GUI (McDATA Web Server), GUI Mgmt, Telnet, SSL, and SSH, as it is possible to disable all access to the switch.

Embedded GUI — McDATA Web Server. Allows users to point a browser at the switch and run the embedded switch management application on that switch as an applet.

GUI Mgmt — allows out-of-band management of the switch from the switch management application (GUI). If disabled, the switch can not be specified as the entry switch for a fabric in the GUI, but can still be managed through an in-band connection.

SSL — Secure Sockets Layer. Provides secure encrypted communications between the switch management application (GUI) and the switch. SSL must be enabled for configuration of security and RADIUS servers with the switch management application (GUI). SSL certificates are generated on the switch with the switch date/time and validated with the workstation’s date/time. If the Switch and workstation date/time are not in sync, invalid certificates will be generated and prevent an SSL connection from being established between the switch and switch management application (GUI). To disable SSL when using a user authentication RADIUS server, the RADIUS authentication order must first be set to Local.

Telnet — CLI. Allows users to manage the switch through a Telnet CLI session. Disabling Telnet access to the switch is not recommended.

SSH — Secure SHell. Provides secure encrypted Telnet CLI sessions with the switch. Note that you will have to have an SSH client running on your workstation in order to manage your switch with Telnet CLI when SSH is enabled.

SNMP — Simple Network Management Protocol. Allows management of the switch through third-party applications that use SNMP.

NTP — Network Time Protocol. Allows the switch to obtain its time and date settings from an NTP server. Configuring all of your switches and your workstations to utilize NTP will keep their date/time settings in sync and will prevent difficulties with SSL certificates and event logs.

CIM — Common Information Model. Allows management of the switch through third-party applications that use CIM.

FTP — File Transfer Protocol. Allows file transfers to the switch via FTP. FTP is required for out-of-band firmware uploads which will complete faster than in-band firmware uploads.

Management Server — allows management of the switch through third-party applications that use GS-3 Management Server.

Security Consistency Checklist dialog

The Security Consistency Checklist dialog enables you to compare security-related features on switches in order to check for inconsistencies. Any changes must be made through the appropriate dialog, such as Network Properties dialog, Switch Properties dialog, or SNMP Properties dialog. Select Switch > Security Consistency Checklist to open the Security Consistency Checklist dialog from the faceplate display.

McDATA® 4Gb SAN Switch for HP p-Class BladeSystem user guide 81

Page 81
Image 81
HP AA-RW20A-TE manual Security Consistency Checklist dialog