Port Binding | Q-Logic 5000 specs

3 – Planning Fabric Security

S

Authentication of the user account and password can be performed locally using the switch’s user account database or it can be done remotely using a RADIUS server such as Microsoft® RADIUS. Authenticating user logins on a RADIUS server requires a secure management connection to the switch. Refer to “Connection Security” on page 3-17for information about securing the management connection. A RADIUS server can also be used to authenticate devices and other switches as described in “Device Security” on page 3-19.

Consider your management needs and determine the number of user accounts, their authority needs, and expiration dates. Also consider the advantages of centralizing user administration and authentication on a RADIUS server.

NOTE: If the same user account exists on a switch and its RADIUS server, that user can login with either password, but the authority and account expiration will always come from the switch database.

3.7.3

Port Binding

Port binding provides authorization for a list of up to 32 switch and device WWNs that are permitted to log in to a particular switch port. Switches or devices that are not among the 32 are refused access to the port. Consider what ports to secure and the set of switches and devices that are permitted to log in to those ports.

3-18	59096-04 A

Image 58

Q-Logic 5000 manual Port Binding

Contents

SANbox 5000 Series Fibre Channel Switch Installation Guide Document Revision History Table of Contents Section Planning Section Installation Section Removal/Replacement List of Figures Page Introduction Intended Audience Related Materials New in this Release Safety Notices Sicherheitshinweise Communications Statements Federal Communications Commission FCC Class a Statement CE Statement Vcci Class a Statement MIC Class a Statement model 5200 only Laser Safety Information Electrostatic Discharge Sensitivity Esds Precautions Pièces Accessibles Accessible PartsZugängliche Teile General Public License Preamble 13.2 Introduction General Public License Introduction General Public License Introduction General Public License Introduction General Public License How to Apply These Terms to Your New Programs Copyright C yyyy name of author Availability Technical SupportTraining Contact Information Support Headquarters General Description Resetting a Switch Maintenance ButtonChassis Controls and LEDs Placing the Switch in Maintenance Mode Chassis LEDs System Fault LED Amber Input Power LED GreenHeartbeat LED Green Fibre Channel Ports Fibre Channel Ports Port Logged-In LED Green Port LEDsPort Activity LED Green Transceivers Port Types Ethernet Port Ethernet Port Serial Port Serial Port Pin Identification Power Supplies and Fans Model 5202/5602 Switch Power Supplies Switch Management QuickTools Web Applet Enterprise Fabric Suite Command Line InterfaceApplication Programming Interface Simple Network Management Protocol Storage Management Initiative-Specification SMI-SFile Transfer Protocols General Description Switch Management 59096-04 a Planning Devices Device Access Performance Zoning Database Limits Distance Extended Credit Distances and Cable Lengths Bandwidth Latency Feature Licensing Multiple Chassis Fabrics Optimizing Device Performance Domain ID, Principal Priority, and Domain ID Lock Two-Switch Stack Stacking Four-Switch Stack Six Switch Stack Common Topologies Cascade Topology Cascade-with-a-Loop Topology Mesh Topology Mesh Topology MultiStage Topology Multistage Topology Switch Services Fabric Security Connection Security User Account Security Port Binding Device Security Security Example Switches and HBAs with Authentication Security Example Switches and HBAs HBA1 ISL Group on Switch1 GroupISL1 Security Example Radius Server 10. Security Example Radius Server Radius1 Configuration on Switch1 and Switch2 HBA1 Save and activate SecuritySet2 on Switch2 Security Example Host Authentication 11. Security Example Management Server MS Group Group1 Fabric Management Planning Fabric Management 59096-04 a Installation Site Requirements Fabric Management Workstation Switch Power RequirementsEnvironmental Conditions Installing a Switch Mount the Switch Avertissement Mounting the Model 5200/5600 Switch in a Rack without Rails Install Transceivers Removing 10-Gbps Port Covers Configure the Workstation Choose Make New Connection Configuring the Workstation Serial Port Connect the Workstation to the Switch Workstation Cable Connections Connect the Switch to AC Power Installation Installing a Switch Installation Installing a Switch Configure the Switch Configuration Wizard Prompts Telnet 10.0.0.1 Switch Login admin Password Cable Devices to the Switch Installing Firmware Installation Installing Firmware Using the CLI to Install Firmware Using QuickTools to Install FirmwareOne-Step Firmware Installation Enter the password for your account name FTP only Custom Firmware Installation Adding a Switch to an Existing Fabric Installing Feature License Keys Installation Installing Feature License Keys 59096-04 a Diagnostics/Troubleshooting Chassis Diagnostics Input Power LED Is Extinguished System Fault LED Is Illuminated Power-On Self Test Diagnostics Heartbeat LED Blink Patterns Fatal Post Error Blink Pattern Internal Firmware Failure Blink Pattern Configuration File System Error Blink Pattern Over Temperature Blink Pattern Logged-In LED Indications Logged-In LED EPort Isolation Excessive Port Errors Diagnostics/Troubleshooting Power-On Self Test Diagnostics Transceiver Diagnostics Power Supply Diagnostics Model 5202/5602 Switch Power Supply LEDs Recovering a Switch Using Maintenance Mode Exiting the Maintenance Menu Unpacking a Firmware Image File in Maintenance Mode Copying Log Files in Maintenance Mode Resetting the Network Configuration in Maintenance ModeResetting User Accounts in Maintenance Mode Removing the Switch Configuration in Maintenance Mode Resetting the Switch in Maintenance Mode Remaking the File System in Maintenance ModeUpdating the Boot Loader in Maintenance Mode Removal/Replacement SFP Transceiver Removal and Replacement Power Supply Removal and Replacement Power Supply Removal Power Supply Installation Page Specifications Fabric Specifications Specifications Fabric Specifications Maintainability Dimensions Snmp FTP Tftp Electrical Environmental Regulatory Certifications Glossary Fdmi FRU MIB WWN Page Index Index-2 59096-04 a LED Index-4 59096-04 a 59096-04 a Index-5