Справочник Пользователя для HP storageworks xp24000
Figure 2 Security Example 2
If no ports are registered in a host group, hosts in the host group can access volumes via ports to
which the hosts are connected.
which the hosts are connected.
This manual uses the term port-level security, which is a security policy for enabling hosts to access
volumes only via ports registered in host groups and thus prohibiting hosts to access the volumes via
other ports.
volumes only via ports registered in host groups and thus prohibiting hosts to access the volumes via
other ports.
CAUTION:
Before you apply security, you should confirm what hosts are performing I/O operations on volumes
in access groups. If any hosts perform I/O operations on volumes in access groups that the hosts do
not belong to, you will need to stop the I/O operations before you apply security. For example, if
you attempt to apply security settings illustrated in
in access groups. If any hosts perform I/O operations on volumes in access groups that the hosts do
not belong to, you will need to stop the I/O operations before you apply security. For example, if
you attempt to apply security settings illustrated in
, an error occurs and the attempt fails if
host4 and host5 are performing I/O operations on ldev1. To apply the security settings, you will need
to ensure that
to ensure that
host4 and host5 are not performing I/O operations on ldev1.
Prohibiting All Hosts from Accessing Volumes
To prevent all the mainframe hosts from accessing volumes, you must register the volumes in a pool
group (Note that you do not need to register hosts in pool groups). For example, if you register two
group (Note that you do not need to register hosts in pool groups). For example, if you register two
XP24000/XP20000 Volume Security User's Guide
11