HP XP24000 manual 11

Figure 2 Security Example 2

If no ports are registered in a host group, hosts in the host group can access volumes via ports to which the hosts are connected.

This manual uses the term port-level security, which is a security policy for enabling hosts to access volumes only via ports registered in host groups and thus prohibiting hosts to access the volumes via other ports.

CAUTION:

Before you apply security, you should confirm what hosts are performing I/O operations on volumes in access groups. If any hosts perform I/O operations on volumes in access groups that the hosts do not belong to, you will need to stop the I/O operations before you apply security. For example, if you attempt to apply security settings illustrated in Figure 2, an error occurs and the attempt fails if host4 and host5 are performing I/O operations on ldev1. To apply the security settings, you will need to ensure that host4 and host5 are not performing I/O operations on ldev1.

Prohibiting All Hosts from Accessing Volumes

To prevent all the mainframe hosts from accessing volumes, you must register the volumes in a pool group (Note that you do not need to register hosts in pool groups). For example, if you register two