Manuals / Q-Logic / Computer Equipment / Switch

Q-Logic SANBOX2-8C/16 manual Fabric Security, User Account Security

Models: SANBOX2-8C/16

1 266

Download 266 pages 59.06 Kb

Page 49

Section 3

Managing Fabrics

This section describes the following tasks that manage fabrics:

Fabric Security

Fabric Tracker

Managing the Fabric Database

Working with Device Information and Nicknames

Displaying Fabric Information

Zoning a Fabric

3.1

Fabric Security

The components of Fibre Channel fabric security are:

User Account Security

Fabric Services

3.1.1

User Account Security

User account security is the process by which your user account and password are authenticated with the list of valid user accounts and passwords. The switch validates your account and password when you attempt to add a fabric using SANsurfer Switch Manager or log in to a switch through Telnet. Your system administrator defines accounts, passwords, and authority levels that are stored on the switch. Refer to ”Managing User Accounts” on page 4-2for more information.

The Admin account possesses Admin authority which grants full access to all tasks of the SANsurfer Switch Manager menu system. The switch validates your user account and SANsurfer Switch Manager grants access to its menus according to your authority level. If you do not have Admin authority, you are limited to monitoring tasks.

Note: If a user is logged into a switch using SANsurfer Switch Manager or CLI, and an administrator changes user access rights and passwords, existing logins will not be affected by the new settings. Login access and privileges are only checked for a new login request.

59022-10 A

3-1

Image 49

Q-Logic SANBOX2-8C/16 manual Fabric Security, User Account Security, Components of Fibre Channel fabric security are

Contents

SANbox2-8c/16 Switch Management User’s Guide Document Revision History SANbox2-8c/16 Switch Management User’s GuideTable of Contents Section Managing Fabrics SANbox2-8c/16 Switch Management Section Managing Switches Changing the Default Performance View File Encryption Key 4.1 Snmp Configuration 4.2 Snmp Trap ConfigurationSection Managing Ports 3.3 NTP Client7.3 Appendix a Command Line InterfaceFigures Glossary IndexTables Switch Operational Parameters SANbox2-8c/16 Switch Management User’s Guide 59022-10 a Related Materials Intended AudienceJdom License Availability Technical SupportTraining Contact InformationIntroduction Technical Support 59022-10 a Installing the Management Application Using SANsurfer Switch ManagerFor a Windows workstation SANsurfer Switch ManagerFor a Linux workstation For a Solaris workstationSANsurfer Management Suite SMS Installation for WindowsChglax.bat SMS Installation for Linux SMS Installation for Solaris Change directories to the package location Install the new SANsurfer Switch Manager packageLocate and execute the file sbmoversms.sh Starting SANsurfer Switch Manager Initial Startup Dialog ‰ For Linux or Solaris enter the SANsurfer commandSANsurfer Switch Manager Window Exiting SANsurfer Management Suite Save Default Fabric View File DialogSMS Uninstall Uninstalling SANsurfer Switch ManagerPkgrm QLGCsol Standalone UninstallSaving and Opening Fabric View Files Setting SANsurfer Switch Manager PreferencesPreferences Dialog SANsurfer Switch Manager Viewing Software Version and Copyright Information Using Online HelpTopology Display SANsurfer Switch Manager User InterfaceFaceplate Display Topology Display Menu Menu BarMenu options in the topology display are shown in Figure Menu options in the faceplate display are shown in Figure Faceplate Display MenuTopology Display Menu Shortcut Keys Topology Display Shortcut KeysFaceplate Display Menu Shortcut Keys Faceplate Display Shortcut KeysReset Hot reset Hard Reset 59022-10 a Tool Bar Buttons Tool BarFabric Tree Fabric TreeGraphic Window Working Status IndicatorData Window and Tabs Switch and Link Status Using the Topology DisplaySelecting Switches and Links Working with Switches and LinksArranging Switches in the Display Topology Data Windows Opening the Faceplate Display and Topology Popup MenusPort Views and Status Using the Faceplate DisplaySelecting Ports Working with PortsOpening the Faceplate Popup Menu Faceplate Data Windows Page User Account Security Fabric SecurityComponents of Fibre Channel fabric security are Enabling Snmp Configuration Fabric ServicesClick the In-band Management Enable button Enabling In-band ManagementSaving a Version Snapshot Fabric TrackerViewing and Comparing Version Snapshots Managing the Fabric Database Exporting Version Snapshots to a FileAdd a New Fabric Dialog Adding a FabricOpening a Fabric View File Removing a FabricSaving a Fabric View File Rediscovering a FabricAdding a New Switch to a Fabric Replacing a Failed Switch Displaying Fabric Information Deleting Switches and LinksFabric Status Switch Icon Description Topology Display Switch and Status IconsEvents Browser Displaying the Event BrowserDescription Icon Severity LevelsFilter Events Dialog Filtering the Event BrowserSaving the Event Browser to a File Sorting the Event BrowserDevices Data Window Entries Devices Data WindowActive Zone Set Data Window Active Zone Set Data WindowLink Data Window SANsurfer Switch Manager enables you to do the followingWorking with Device Information and Nicknames Displaying Detailed Device InformationManaging Device Port Nicknames Exporting Device Information to a FileCreating a Nickname Deleting a Nickname Editing a NicknameExporting Nicknames to a File Zoning a Fabric Importing a Nicknames FileZoning Concepts Soft Zones ZonesAliases Access Control List Hard ZonesZone Sets Zoning Database Managing the Zoning Database Using the Zoning WizardManaging the zoning database consists of the following Edit Zoning Dialog Editing the Zoning DatabaseManaging Fabrics Zoning a Fabric Edit Zoning Dialog Tool Bar Buttons and Icons Interop Auto Save Configuring the Zoning DatabaseSaving the Zoning Database to a File Default VisibilityRestoring the Zoning Database from a File Removing All Zoning Definitions Restoring the Default Zoning DatabaseManaging Zone Sets Creating a Zone Set Copying a Zone to a Zone Set Activating and Deactivating a Zone SetRemoving a Zone from a Zone Set or from All Zone Sets Managing Zones Removing a Zone SetManaging zones involves the following Creating a Zone in a Zone Set Adding Zone Members Removing a Zone Member Renaming a Zone or a Zone SetRemoving a Zone from a Zone Set Removing a Zone from All Zone SetsManaging Aliases Changing Zone TypesCreating an Alias Removing an Alias from All Zones Adding a Member to an AliasZone Merge Failure Merging Fabrics and ZoningZone Merge Failure Recovery Managing Switches Factory User Accounts Managing User AccountsCreating User Accounts User Account Administration Dialog Add AccountRemoving a User Account User Account Administration Dialog Remove AccountUser Account Administration Dialog- Change Password Changing a User Account PasswordModifying a User Account User Account Administration Dialog Modify AccountFaceplate Display Displaying Switch InformationManaging Switches Displaying Switch Information Switch Data Window Entries Switch Data WindowRatov Displaying Detailed Device Information on page 3-17for Port Information Data Window Port Statistics Data WindowConfigured Zonesets Data Window Configured and Active Zonesets Data WindowPort Threshold Alarm Configuration Dialog Configuring Port Threshold AlarmsEvent Paging a SwitchCount Sample WindowResetting a Switch Setting the Date/Time and Enabling NTP ClientType Description Switch ResetsUsing the Configuration Wizard Configuring a Switch10. Switch Properties Dialog Switch PropertiesSwitch Administrative States Symbolic NameSwitch Administrative States Fabric Device Management Interface Domain ID and Domain ID LockIn-band Management Broadcast SupportLegacy Port Address Format Interop Mode for ZoningTimeout Values Timeout Values11. Network Properties Dialog Network PropertiesIP Configuration Parameters IP ConfigurationNTP Client Remote Logging12. Snmp Properties Dialog Snmp PropertiesSnmp Configuration Parameters Snmp ConfigurationSnmp Trap Configuration Parameters Snmp Trap ConfigurationRestoring a Switch Archiving a Switch13. Restore Dialogs Full and Selective Factory Default Configuration Settings Restoring the Factory Default ConfigurationFactory Default Configuration Settings Downloading a Support File Installing FirmwareManaging Switches Installing Firmware 14. Hardware Status LEDs Displaying Hardware StatusManaging Switches Displaying Hardware Status 59022-10 a Displaying Port Information Managing PortsDisplaying Port Types Monitoring Port StatusPort Types Displaying Port Speeds Displaying Port Operational StatesPort Operational States Port SpeedsTransceiver Media View Displaying Transceiver Media StatusPort Statistics Data Window Entries LIP ALPD,ALPS Port Information Data Window Entries Port Information Data Window Entries Port Information Data Window Entries Port Properties Dialog Configuring PortsPort Administrative States Changing Port Administrative StatesChanging Port Speeds Changing Port Types Stream Guard Changing Port Symbolic NameScan Device Designate Donor Ports Using the Extended Credits WizardTesting Ports Resetting a PortTesting Ports Fabric View Graphs Graphing Port PerformanceStarting SANsurfer Performance Viewer Exiting SANsurfer Performance Viewer Save Default Performance View File DialogDisplayed Saving and Opening Performance View FilesSetting SANsurfer Performance Viewer Preferences Changing the Default Performance View File Encryption KeySetting the Polling Frequency Arranging Graphs in the Display Displaying GraphsCustomizing Graphs Default Graph Options Dialog„ Total frames transmitted and received Total Frames Errors check box„ Total frames transmitted Total Tx Frames „ Total frames received Total Rx FramesPrinting Graphs Rescaling a Selected GraphSaving Graph Statistics to a File Logging On to a Switch Command Line InterfaceUser Accounts Working with Switch ConfigurationsModifying a Configuration Backing up and Restoring Switch Configurations Date, configswitch16910112003, for example Command as shownTable A-1. Command-Line Completion CommandsAdmin Session Commands Table A-2. Commands Listed by Authority LevelAuthority Admin CommandSyntax KeywordsSyntax alias Alias CommandRemove alias memberlist Members aliasRename aliasold aliasnew Syntax config Config CommandKeywords activate configname Edit confignameManager Archive function are not compatible with the Config RestoreRestore command Save confignameDownload the file to the workstation # ftp symbolicname or ipaddressAdmin session Create Support CommandFollowing is an example of the Create Support command Create supportYou have transferred 43430 bytes in 1 files Syntax date Date CommandKeywords MMDDhhmmCCYY Authority Admin Firmware Install CommandSyntax firmware install Syntax Hardreset CommandKeywords command Help CommandSyntax help command keyword Authority NoneAuthority None Syntax history History CommandHotreset Hotreset CommandCleanup Image CommandInstall ImageFtp Ftp switchname Wait for the unpack to complete Following is an example of the Lip command Lip CommandReinitializes the specified loop port Lip portnumberSyntax passwd accountname Keywords accountname Passwd CommandSyntax ping ipaddress Ping CommandKeywords ipaddress Following is an example of the Ps command Ps CommandSyntax Examples Displays current system process informationCloses the Telnet session Quit CommandSyntax quit, exit, or logout Config configname Reset CommandSystem Table A-3. Switch Configuration DefaultsZoning Arbff Table A-4. Port Configuration DefaultsTable A-6. Zoning Configuration Defaults Table A-5. Port Threshold Alarm Configuration DefaultsTable A-7. Snmp Configuration Defaults Table A-8. System Configuration Defaults Syntax set Set CommandSwitch state Setup optionPort option Set config Set Config CommandTable A-9. Set Config Port Parameters Port portnumberSend Arbff True instead of IDLEs False on Table A-9. Set Config Port Parameters Table A-10. Set Config Switch Parameters Table A-10. Set Config Switch Parameters Threshold Table A-11. Set Config Threshold ParametersTable A-12. Set Config Zoning Parameters Arbff Following is an example of the Set Config Switch commandFollowing is an example of the Set Config Threshold command Attributes Following is an example of the Set Config Zoning commandSet log Set Log CommandArchive ClearLevel filter Display filterSave Port portlistStart StopSet Port Command Command Line Interface Set Port Command Set setup Set Setup CommandTable A-13. Snmp Configuration Settings Snmp SystemTable A-14. System Configuration Settings Table A-14. System Configuration Settings If you wish SANbox2 admin # set setup system Following is an example of the Set Setup System commandAlarm option Show CommandKeywords about BroadcastLog option Fdmi portwwnNs option Perf option PagebreakTable A-15. Show Port Parameters Lipalpdalps Steering domainid Post logSupport Table A-16. Switch Operational ParametersDisplays all connected devices TopologyUsers Following is an example of the Show Fabric command Following is an example of the Show Domains commandVersion Following is an example of the Show Fdmi WWN command Following is an example of the Show Fdmi commandFollowing is an example of the Show NS domainID command Following is an example of the Show NS local domain commandFollowing is an example of the Show NS portID command Collisions0 txqueuelen100 Following is an example of the Show Interface commandPL-XPL-VC-SG3-22 Following is an example of the Show Port commandFollowing is an example of the Show Topology command Following is an example of the Show Switch commandCommand Line Interface Following is an example of the Show Version command Show config Show Config CommandFollowing is an example of the Show Config Threshold command Following is an example of the Show Config Switch commandFollowing is an example of the Show Config Zoning command Show log Show Log CommandNumber of events ComponentLevel SettingsOptions PortFollowing is an example of the Show Log Options command Following is an example of the Show Log Level commandFollowing is an example of the Show Log command Show Perf Command Following is an example of the Show Perf Byte command Show setup Show Setup CommandMfg Command Line Interface Show Setup Command Following is an example of the Show Setup System commandPower from the switch Shutdown CommandShutdown Test Test CommandPort portnumber testtype StatusTest port x internal Command Line Interface Test Command Examples The following is an example of the Uptime command Uptime CommandAuthority None Syntax uptime User Command Following is an example of the User Edit command Following is an example of the User Add commandFollowing is an example of the User List command Following is an example of the User Delete commandFollowing is an example of the Whoami command Whoami CommandWhoami Syntax zone Zone CommandRemove zone memberlist Members zoneRename zoneold zonenew Type zone zonetypeFollowing is an example of the Zone Members command Following is an example of the Zone Zonesets command Syntax zoneset Zoneset CommandRename zonesetold zonesetnew Remove zoneset zonelistZones zoneset Keywords active Zoning CommandOpens a Zoning Edit session HistoryTable A-17. Zoning Database Limits LimitsE1JBOD1 E2JBOD2 Following is an example of the Zoning Limits commandFollowing is an example of the Zoning List command 102 59022-10 a Administrative State Access Control List ZoneAlarm BootPConfigured Zone Sets Class 3 ServiceDefault Visibility Fabric Management SwitchInter-Switch Link Input Power LEDMaintenance Button Maintenance ModePrincipal Switch Power On Self Test PostSANsurfer Switch Manager Small Form-Factor PluggableIndex Index-2 59022-10 a 59022-10 a Index-3 Index-4 59022-10 a 59022-10 a Index-5 Index-6 59022-10 a 59022-10 a Index-7