Professional Documents
Culture Documents
-XO\
0'LUHFWRU
(OHPHQW0DQDJHU8VHU0DQXDO
Copyright © 2007 Brocade Communications Systems, Inc. All Rights Reserved.
Brocade, the Brocade B weave logo, Fabric OS, File Lifecycle Manager, MyView, Secure Fabric OS, SilkWorm, and
StorageX are registered trademarks and the Brocade B wing logo and Tapestry are trademarks of Brocade
Communications Systems, Inc., in the United States and/or in other countries. FICON is a registered trademark of IBM
Corporation in the U.S. and other countries. All other brands, products, or service names are or may be trademarks or
service marks of, and are used to identify, products or services of their respective owners.
Notice: This document is for informational purposes only and does not set forth any warranty, expressed or implied,
concerning any equipment, equipment feature, or service offered or to be offered by Brocade. Brocade reserves the right to
make changes to this document at any time, without notice, and assumes no responsibility for its use. This informational
document describes features that may not be currently available. Contact a Brocade sales office for information on feature
and product availability. Export of technical data contained in this document may require an export license from the United
States government.
The authors and Brocade Communications Systems, Inc. shall have no liability or responsibility to any person or entity with
respect to any loss, cost, liability, or damages arising from the information contained in this book or the computer programs
that accompany it.
The product described by this document may contain “open source” software covered by the GNU General Public License
or other open source license agreements. To find-out which open source software is included in Brocade products, view the
licensing terms applicable to the open source software, and obtain a copy of the programming source code, please visit
http://www.brocade.com/support/oscd.
Intrepid 6140 and 6064 Directors 620-000172-000 Initial Release of Manual to 01 July 2003
Element Manager User Manual support SANavigator 4.0
and EFCM 8.0
Intrepid 6140 and 6064 Directors 620-000172-010 Update to support EFCM 01 October 2003
Element Manager User Manual 8.0
Intrepid 6140 and 6064 Directors 620-000172-020 Update to support EFCM 01 January 2004
Element Manager User Manual 8.1
Intrepid 6140 and 6064 Directors 620-000172-030 Update to support 01 May 2004
Element Manager User Manual SANavigator 4.1
Intrepid 6140 and 6064 Directors 620-000172-040 Update to support EFCM 01 December
Element Manager User Manual 8.5 and SANavigator 4.2 2004
Intrepid 6140 and 6064 Directors 620-000172-050 Update to support EFCM 01 February
Element Manager User Manual 8.6 2005
Intrepid 6140 and 6064 Directors 620-000172-060 Update to support 01 April 2005
Element Manager User Manual SANavigator 4.2.1
Intrepid 6140 and 6064 Directors 620-000172-070 Update to support EFCM 01 June 2005
Element Manager User Manual 8.7
Intrepid 6140 and 6064 Directors 620-000172-080 Update to support EFCM 01 September
Element Manager User Manual 8.7.1 2005
Intrepid 6140 and 6064 Directors 620-000172-090 Update to support EFCM 01 January 2006
Element Manager User Manual 8.9
Intrepid 6140 and 6064 Directors 620-000172-100 Update to support EFCM 01 September
Element Manager User Manual 9.0 2006
Intrepid 6140 and 6064 Directors 620-000172-110 Update to support EFCM 01 November
Element Manager User Manual 9.1 2006
M6140 Director Element Manager User 53-1000661-01 Rev. A Revisions to support 31 July 2007
Manual EFCM 9.5. Revised to
update company
information.
Preface ............................................................................................................................ xv
Contents v
Contents
Authentication .............................................................................5-11
Accessing Authentication ...................................................... 5-11
Users Tab Description ............................................................ 5-15
Setting User Interface Security Options............................... 5-17
Adding a User to a Switch or Director ................................ 5-19
Removing a User from a Switch or Director....................... 5-20
Editing a User Definition ....................................................... 5-21
Accessing the Software Tab................................................... 5-23
Software Tab Description ...................................................... 5-24
Enabling API Authentication ................................................ 5-26
Disabling API Authentication............................................... 5-28
Disabling OSMS Authentication........................................... 5-31
Adding Current Server Access to a Switch or Director .... 5-32
Removing Current Server Access to a Switch or Director 5-33
Adding Software Access to a Switch or Director ............... 5-34
Removing Software Access to a Switch or Director .......... 5-36
Defining a CHAP Secret for a Server ................................... 5-37
Editing a CHAP Secret for the Current Server ................... 5-40
Editing a CHAP Secret for Another API User .................... 5-42
Accessing the Devices Tab..................................................... 5-44
Devices Tab Description ........................................................ 5-45
Defining a CHAP Secret for a Device .................................. 5-49
Editing a CHAP Secret for a Device..................................... 5-50
Setting Default Authentication Values ................................ 5-52
Setting Authentication Methods........................................... 5-53
Enabling Port Authentication ............................................... 5-54
Disabling Port Authentication .............................................. 5-56
Adding Connected Device Access to a Switch or Director5-57
Adding Detached Device Access to a Switch or Director. 5-59
Removing Device Access from a Switch or Director ......... 5-61
Accessing the IP Access Control Tab ................................... 5-62
IP Access Control Tab Description....................................... 5-63
Enabling or Disabling the IP/ACL Feature ........................ 5-64
Adding Permitted IP Addresses........................................... 5-65
Editing Permitted IP Addresses ........................................... 5-67
Removing Permitted IP Addresses ...................................... 5-68
Accessing the Radius Servers Tab ........................................ 5-70
Radius Servers Tab Description............................................ 5-71
Adding a Radius Server......................................................... 5-73
Removing a Radius Server .................................................... 5-75
Editing a RADIUS Server Definition.................................... 5-76
Editing an Entry in the Table ................................................ 5-77
Changing the RADIUS Server Sequence ............................. 5-78
Changing the Dead Time....................................................... 5-79
Accessing Security Authentication from the Element Manager and
from Your SAN Management Application ......................... 5-80
Using the Security Log .................................................................. 5-81
SSL ................................................................................................... 5-82
Encryption....................................................................................... 5-82
Contents vii
Contents
......................................................................................................6-2
Clearing Logs .............................................................................6-2
Refreshing Logs .........................................................................6-2
......................................................................................................6-3
Exporting Logs...........................................................................6-3
Accessing Advanced Logs .......................................................6-3
Audit Log ..........................................................................................6-3
Event Log ......................................................................................6-5
Hardware Log ..................................................................................6-6
Link Incident Log .............................................................................6-6
Port Performance Threshold Alert Log ........................................6-7
Security Log.......................................................................................6-8
Open Trunking Log ........................................................................ 6-11
Embedded Port Log .......................................................................6-12
Change ... Button .....................................................................6-13
Switch Fabric Log ...........................................................................6-15
Syslog Configuration .....................................................................6-16
Glossary ........................................................................................................................g-1
Contents ix
Contents
1-1 Server Platform and Remote Client Computer Configuration .............. 1-3
2-1 Hardware Components ............................................................................... 2-3
4-1 Specifying Preferred Path for Switch 1 .................................................... 4-18
4-2 Specifying Preferred Path for Switch 2 .................................................... 4-19
4-3 Configure Allow/Prohibit Dialog Box .................................................... 4-34
4-4 Prohibited Port Connection Symbol ........................................................ 4-35
4-5 Configure Allow/Prohibit Matrix Configuration Library Dialog Box 4-36
4-6 Address Configuration Library Dialog Box ........................................... 4-39
4-7 Configure FICON Management Server Zoning Dialog Box ................ 4-44
4-8 Configure Threshold Alerts Dialog Box .................................................. 4-49
4-9 Configure Open Trunking Dialog Box .................................................... 4-55
5-1 Switch Binding State Change Dialog Box ................................................. 5-4
5-2 Switch Binding Membership List Dialog Box .......................................... 5-6
5-3 Security Authentication, Users Tab ......................................................... 5-14
5-4 Users Tab ..................................................................................................... 5-15
5-5 Add/Edit User Dialog Box on Users Tab ............................................... 5-19
5-6 Security Authentication, Software Tab ................................................... 5-23
5-7 Software Tab ................................................................................................ 5-24
5-8 Add or Edit Software ID and CHAP Secret Dialog Box ....................... 5-35
5-9 Server Properties Dialog Box .................................................................... 5-38
5-10 Security Authentication, Devices Tab ..................................................... 5-43
5-11 Devices Tab ................................................................................................. 5-45
5-12 Add Device Dialog Box ............................................................................. 5-49
5-13 Change Secret Dialog Box ......................................................................... 5-58
5-14 Security Authentication, IP Access Control Tab .................................... 5-62
5-15 IP Access Control Tab ................................................................................ 5-63
5-16 Add/Edit IP Address or Range Dialog Box ........................................... 5-66
5-17 Security Authentication, Radius Servers Tab ......................................... 5-70
5-18 Radius Servers Tab ..................................................................................... 5-71
5-19 Add/Edit RADIUS Server Dialog Box .................................................... 5-74
6-1 Log Setting Dialog Box - 256 Port Director ............................................. 6-14
6-2 Dialog Box Options - All Products Except 256-Port Director .............. 6-14
7-1 Swap Ports Dialog Box ................................................................................ 7-4
7-2 Swap Ports Dialog Box ................................................................................ 7-5
7-3 Swap Ports Dialog Box -- Step 3 ................................................................. 7-5
Figures xi
Figures
Tables xiii
Tables
This publication provides details for using the 64-Port and 140-Port
Director models Element Manager application to monitor, control,
and configure operation for a specific Director. You access the
Element Manager application for the Director through your SAN
Management application.
Functions and options included in the Element Manager application
for each product are nearly identical. When there are differences, this
manual will contain notes such as 64-Port only or 140-Port only.
NOTE: For your convenience, we have retained the legacy McDATA names
to avoid any confusion. Please refer to Table 1 for the equivalent Brocade
names for the legacy McDATA products.
Preface xv
Preface
Who Should Use this This publication is intended for data center administrators, LAN
Manual administrators, operations personnel, and customer support
personnel who must monitor and manage product operation.
Opening the Online 1. Open the Element Manager for the Director from your SAN
Help Management application’s desktop.
2. Select Help > Contents or press F1.
Opening the User The user manuals and other documentation are provided in PDF
Manual(s) format and are available on the documentation CD-ROM.
If you run the documentation installer from the documentation CD,
you can access the PDF files in the location where you installed them.
The default location is <Install_Home>\docs\.
TIP: On Windows systems, you can also access documentation through the Windows
Start menu. Browse to the application’s submenu and select Documentation.
NOTE: You must have Adobe Reader to view the user documentation. To get
a free copy of Reader, visit http://www.adobe.com.
Brocade Resources
Preface xvii
Preface
)&)DEULFHQWHU(TXLSPHQW&DELQHW,QVWDOODWLRQDQG6HUYLFH
0DQXDO
(2661036XSSRUW0DQXDO
(26&RPPDQG/LQH,QWHUIDFH8VHU0DQXDO
Manual Conventions The following notational conventions are used in this document:
CAUTION
$FDXWLRQFRQWDLQVLQIRUPDWLRQHVVHQWLDOWRDYRLGGDPDJHWRWKH
V\VWHPRUHTXLSPHQW7KHFDXWLRQPD\DSSO\WRKDUGZDUHRU
VRIWZDUH
DANGER
$GDQJHUFRQWDLQVLQIRUPDWLRQHVVHQWLDOWRDYRLGDKD]DUGWKDWFDQ
FDXVHVHYHUHSHUVRQDOLQMXU\GHDWKRUVXEVWDQWLDOSURSHUW\GDPDJH
LI\RXLJQRUHWKHZDUQLQJ
Convention Meaning
Click. As in “click the icon on Click with the left mouse button on the object to activate a
the navigation control panel.” function.
Right-click. As in “right-click Click with the right mouse button on the object to activate
the product icon.” a function.
Select. As in “select the log Click once on the object to highlight it.
entry.”
Where to Get Help Brocade’s “Best in Class” Solution Center provides a single point of
contact for customers seeking help. The Solution Center will research,
explore, and resolve inquiries or service requests regarding Brocade
products and services. The Solution Center is staffed 24 hours a day,
7 days a week, including holidays.
E-mail: documentation@brocade.com
Home Page: www.brocade.com
FAX: Technical Communications Manager
(720) 558-8999
Preface xix
Preface
Using Dialog Boxes Buttons such as OK, Activate and Close or Cancel initiate functions in a
dialog box. Generally, these buttons have the following functions:
• The OK button saves the entered information and closes the
dialog box.
• The Activate button saves the entered information or activates the
indicated changes on the attached Director.
• The Close button closes the dialog box.
• The Cancel button cancels the operation and closes the dialog box
without saving the information you entered.
Keyboard Use standard keyboard navigation in dialog boxes. For example, use
Navigation the Tab, Arrow, and Backspace keys to move through dialog box
fields and the Enter key to perform default button functions.
Title Bar The title bar at the top of the Element Manager window reflects the
product label selected for display through the View > Product Label
option selected in your SAN Management application. The product
name displays to the right of this label.
Menu Bar The menu bar on the Element Manager window displays the
following menus:
• Product
• Configure
• Security
• Logs
• Maintenance
• Help
The Element Manager menu bar enables you to perform the
following tasks.
• Select one of the tabs to display a list of menus.
• Select an option to open a dialog box that allows you to perform
configuration and maintenance tasks and logs.
• If a menu option contains a check box, select the box to add a
check mark and enable a function.
• Select a check box containing a check mark to remove the check
mark and disable the function.
ID and Status Bar
The ID/status bar is located below the Element Manager menu bar at
the top of the Element Manager window. The ID/status bar contains
the following information:
• Product Name and Icon. Displayed in the Physical Map of your
SAN Management application.
Closing the Element To close the Element Manager, do one of the following tasks:
Manager • Select Product > Close.
• Click the X button at the top right corner of the Element Manager
window.
• Double-click the icon at the top left corner of the Element
Manager window, or right-click the icon and select Close from the
shortcut menu that displays.
NOTE: The status bar displays from all views. For more information, refer to
Status Box and Message Area on page 1-10.
Select a tab at the top of the window to see specific information about
the product. For detailed information on using these views, refer to
Chapter 2, Monitoring and Managing the Director.
Hardware Tab The Hardware tab displays the hardware and FRU components
installed in the Director. Colored indicators reflect the status of LEDs
on the FRUs. The symbol in the ID/status bar above the view and in
the status box in the bottom left of the window represent overall
status of the Director. A FRU can have failed, but the Switch might
simply report overall status as degraded. For example, for a port
failure, which is indicated by a blinking red diamond on a port, a
yellow triangle displays to indicate a degraded condition. However,
if a blinking red diamond displays over a FRU, the Status area
displays a red diamond, which indicates a failure requiring
immediate attention.
Columns that appear in the left pane display status and identifying
information about each installed FRU. Columns include Field
Replaceable Units (FRU), Status, Part Number, and Serial Number. All
data is dynamic and updates automatically.
To see a FRU’s properties, do one of the following:
1. Double-click on a FRU’s row.
2. Select the row and select Product > FRU > FRU Properties.
3. Double-click the image of the FRU to view more information.
If the image is on a port card, the Port Card window displays.
Otherwise, the FRU Properties dialog box opens and displays
detailed information on the hardware component.
4. To view information about the Director, double-click the image of
the Director, making sure the cursor is not placed on a FRU
component.
The Director’s Properties dialog box displays.
Port List Tab The Port List tab displays information about the ports installed on the
Director.
1. To display port information, click the Port List tab on the Element
Manager window. All data is dynamic and updates
automatically.
2. To view a port’s properties, double-click a port’s row.
The Port Properties dialog box displays.
For more information about this view, refer to Port List Tab on
page 2-11
.
Node List Tab The Node List tab displays information about all node attachments to
any F_Ports on the Director. If FICON Management style is selected,
the Node List also displays E_Ports.
1. To open this tab, select the Node List tab on the Element Manager
window. All data is dynamic and updates automatically as
devices log in and log out.
2. Double-click a row to display the Node Properties dialog box.
For more information about this view, refer to Node List Tab on
page 2-16.
Performance Tab The Performance tab provides a graphical display of performance for
all ports. The top portion of the window displays bar graphs that
show the level of transmit/receive activity for each port. This
information updates every five seconds. Each bar graph also shows
the percentage link utilization for the port. A red arrow marks the
highest utilization level reached since the Performance tab was
opened. If the system detects activity on a port, it represents minimal
activity with at least one bar.
When an end device (node) is logged in to a port, moving the cursor
over the port’s bar graph highlights the graph and displays a
message with the connected node’s WWN. If the connected node has
more than one port, the WWN of the specific port on the node
displays. When a port is functioning as an expansion port (E_Port),
the message is “E_Port.” When a port is not logged into an
end-device (not functioning as an F_Port) or to another Director (not
functioning as an E_Port), the message is the port’s current online
state.
NOTE: Clearing the counters clears the statistics for all users.
Status Box and The status box located in the bottom left corner of the Element
Message Area Manager window displays a symbol indicating the Director’s
operating status. The same symbol also displays in the Status area of
the ID/status bar at the top of the Element Manager window. Help text
displays in the area next to the status box as you move your cursor
across portions of the Hardware tab.
NOTE: Refer to Operating Status Symbols in the ID/Status Bar and Status Box on
page 2-6 for the meaning of status symbols and Port States and Indicators on
page 2-25 for details on the status table text.
Feature Permissions
The system administrator can allow users to access specific functions
of Element Manager features through the SAN Management
Configure Date/Time X X X
Configure FMS X X
Configure X
Identification/WWN/Nickname
Configure OSMS X
Configure Ports
Blocked X X X
(only available
from right-click
menu)
LIN Alerts X X
Name X X
Port Binding X X
RX BB Credit X X
Speed X X
Type X X
Configure SNMP X
Connection Policy X X
Enable X X
Membership List X X
Domain RSCNs X
Switch/Director Speed X
Zoning RSCNs X
Data Collection X
Enable Date/Time X X X
Synchronization
Enable FMS X
Enable OSMS X
Enable Telnet X X X
Export Configuration X X X
FRU Switchover X
IPL X X X
Port Diagnostics X
Reset Configuration X
Reset Port X X
Event Log X X X X
Hardware Log X X X
LIN Log X X X
Security Log X X
SNMP X
This section describes how to use the features available through the
Element Manager to monitor and manage Director operation. These
features include status indicators, menu options, and dialog boxes
available through the +DUGZDUH tab, 3RUW/LVW tab, 1RGH/LVW tab, and
3HUIRUPDQFH tab.
+DUGZDUH7DE
3RUW/LVW7DE
)58/LVW&ROXPQV
1RGH/LVW7DE
3HUIRUPDQFH7DE
3RUW2SHUDWLRQDO6WDWHV
/LQN,QFLGHQW$OHUWV
&OHDU/LQN,QFLGHQW$OHUWV
&ULWLFDO:DUQLQJ
Hardware Tab
Using this graphical view of the Director, you can view status
symbols and simulated LED indicators, display data, and use mouse
functions to monitor status and obtain vital product information for
the Director and its hardware components.
To display this information, select the Hardware tab on the Element
Manager window.
The following topics describe +DUGZDUH tab functions.
• Identifying FRUs on page 2-2
• Monitoring Director Operation on page 2-4
• Monitoring Hardware Operation on page 2-8
• Using Menus on page 2-10
• Director Menu on page 2-10
Identifying FRUs Figure 2-1 on page 2-3 illustrates the +DUGZDUH tab. Refer to Table 2-1
on page 2-3 for the names of components corresponding to the
numbered callouts in the figure.
Callout Component
1 FRU List
3 Fan
5 CTP Cards
6 Power Supplies
Move the cursor over parts of the graphic in the Hardware tab to
display labels identifying each hardware component and its slot
position in the chassis relative to identical components installed in
the Director.
Status and State Areas The Status and State areas in the ID/status bar at the top of the
window display the Director’s operational status and online or
offline state.
• Status. The status of the Switch. The status icon matches the icon
in the status box in the lower left corner of the window. For
details, refer to Status Indicator.
• State. The State field displays one of the following values:
• OFFLINE. When the Director is Offline, all ports are offline.
The ports cannot accept a login from an attached device or
cannot connect to other devices. An amber attention triangle
displays.
Table 2-2 Operating Status Symbols in the ID/Status Bar and Status Box
Green Circle Fully Operational Indicates that all components and installed
ports are operational; no failures.
For the meanings of status symbols on the status bar, refer to Status
Box and Message Area on page 1-10.
NOTE: For the 64-Port Director only, if a Powered off status displays
for a QPM port module, check to see if this module is installed in slot
0. If so, install this module in another slot since this module is not
supported in slot 0.
NOTE: If the amber LED flashes, this indicates that unit beaconing
has been enabled for the Director. Enable or disable unit beaconing
by right-clicking on the Director graphic, away from a FRU, and
selecting Enable Unit Beaconing from the menu.
Director Menu Right-click on any area of the Director illustration where a hardware
component is not installed to display the following menu options.
Director Properties
$77(17,21%HIRUHVHWWLQJWKH'LUHFWRURIIOLQHZDUQDGPLQLVWUDWRUVDQG
XVHUVFXUUHQWO\RSHUDWLQJDWWDFKHGGHYLFHVWKDWWKH'LUHFWRULVJRLQJRIIOLQH
DQGWKDWWKHUHZLOOEHDGLVUXSWLRQRISRUWRSHUDWLRQ$OVRUHTXHVWWKDWWKH
GHYLFHVDIIHFWHGE\DQLQWHUUXSWLRQRIGDWDIORZEHVHWRIIOLQH
— Not Operational
— Invalid Attachment
— Port Failure
— Segmented E_Port
— Link Incident
— Testing
— Inactive
• Type. The type of port.
— G indicates for G_Port. This displays if nothing is logged into
the port.
— F indicates for F_Port. This displays if a device is logged into
the port.
— E indicates for E_Port. This displays if the port is connected to
another Director’s E_Port through an ISL.
— Unknown. Port type cannot be determined.
If a port is configured to be a specific port, that configured
type displays regardless of whether the port is connected to
anything.
• Operating Speed (Gb/s). This column indicates the speed at
which the port is operating. Possible values are 1, 2, 4 Sustained, 4
Burst, and Not Established. If the port is logged in to a device, the
operating speed displays the actual connected speed. If the port is
not connected, the operating speed displays the configured
speed. If the port is configured for Negotiate, but the port is not
logged in, then Not Established displays.
If a QPM card (Director only) is installed and configured for
sustained 4 Gb/s operation, two of the card's ports are disabled
for general use and support the two sustained ports.
Consequently, this column may display the message Supports port
xx where xx is the port number of the sustained 4 Gb/s port. This
message, combined with a value of Inactive in the State column,
identifies which ports are unavailable for general use.
NOTE: When the FRU List column is minimized, a small column with the
title FRU LIST displays vertically.
The FRU List displays the following on the left side of the window:
• )58 The FRU type and its components. The meanings of FRU
acronyms are:
— BKPLNE. Backplane. (Director only).
— CTP. Control processor card.
— SBAR. SBAR card. (Director only)
— Port card.
For the fiber port card, the following acronyms may display to
indicate the card’s port technology:
• FPM. G_Port, small form factor optics (SFO) pluggable,
FICON port module, 1Gb/s.
• GLSL. G_Port, long wave, single mode LC connector, 1
Gb/s.
• GLSR. G_Port, short wave, single mode, MT-RJ connector,
1 Gb/s.
• GSFM. G_Port, short wave, small form factor, multimode, 1
Gb/s.
• GSML. G_Port, short wave, multimode, LC connector, 1
Gb/s.
• GXXL. G_Port, mixed mode, LC connector, 1 Gb/s.
• GXXL. G_Port, mixed mode, LC connector, 1 Gb/s.
NOTE: For the 64-Port Director only, if a Powered off status displays for a
QPM port module, check to see if this module is installed in slot 0. If so,
install this module in another slot since this module is not supported in slot 0.
— Converter
— Direct access storage
— Gateway
— HBA
— Host
— Hub
— Integrated CTC adapter
— Magnetic tape
— Module
— Other
— Printer
— Proxy-agent
— Software driver
— Stand-alone CTC adapter
— Storage subsystem
— Storage device
— Domain ID displays as absolute domain ID (legacy domain ID).
Either absolute domain ID, legacy domain ID or both may
display.
— Terminal (full screen)
— Terminal (line mode)
— Unit record (input)
— Unit record (output)
— Unknown
— Unspecified
NOTE: The unit type comes directly from the device’s sense ID when the
device attaches to the port during login. If the connection is lost, the type
displays as “unspecified” since the device is no longer logged into the port.
When the device logs back in, the unit type is updated.
Defining Nicknames
You can assign a nickname to an attached node that has more
meaning for your environment than the node’s WWN.
To assign a nickname:
1. Right-click a row in the Node List tab and select Define Nicknames.
2. Enter a name of up to 128 characters in the Nickname field.
3. Click OK.
The nickname displays in the Nickname column.
Performance Tab
Using the Performance tab, you can see performance information for
all ports. To open this window, select the Performance tab on the
Element Manager window.
NOTE: When the check box labeled Port Addresses (hex) is checked, port
numbers in the graphs and the header of the Statistics panel are displayed by
hex addresses instead of port numbers. Hex display format is two-character
upper-case hex bytes.
Port Statistics To select and display more detailed performance information for a
port, click the port’s bar graph. The bar graph for that port highlights
NOTE: There are not thresholds for these values. You may determine that a
problem exists by the rate that the value changes. For example, low
BB_Credit can occur if data is sent to a device faster than it can consume the
frames. This can back up into ISLs and cause degraded performance.
Statistics Description The Statistics Values selections display statistics in the following
groups.To refresh tables with the latest data, click the Refresh button
on the upper right portion of the Statistics Values panel or click the
port’s bar graph. Clear all counters for all users by clicking the Clear
button.
Class 2 Statistics
Class 3 Statistics
Error Statistics
Port errors indicate that a port is not operating correctly. Use this data
to isolate problems with port and link operations. Error statistics
include the following:
• /LQNIDLOXUHV A link failure was recorded in response to a not
operational sequence (NOS), protocol timeout, or port failure. On
the LIM Card window, a yellow triangle appears to indicate a link
incident, or a blinking red diamond appears to indicate a port
failure.
Operational Statistics
Clearing Port Statistics Use these steps to clear statistics counters on the Performance tab for a
selected port or all ports on the Director.
1. Select a port’s bar graph in the Performance tab.
2. Select the Clear button to display the Clear Port Statistics dialog
box.
3. Select one of the following options:
• This port xx only (xx is port number)
• All ports on director (or switch)
4. Click OK.
NOTE: When a port is actively exchanging frames, the port’s LED does not
blink on the Hardware or Line Module views
Active Blinking Off Indicates that the port is actively exchanging frames.
Beaconing Off or On Blink Yellow triangle Indicates that the port is beaconing. The amber port
with Exclamation LED blinks once every two seconds to enable you to
Point find a specific port.
Beaconing Blinking Blinking Yellow triangle Indicates that the port is set to beacon mode using a
and Active with Exclamation management interface request and is actively
Point exchanging frames.
Beaconing or Off Blinking Yellow triangle Indicates that the port is set to beacon mode using a
Diagnostics with Exclamation management interface request or is running
Point diagnostics.
On Blinking Yellow triangle Indicates that the port is set to beacon mode using a
with Exclamation management interface request and is active with the
Point attached node (exchanging idles, but not necessarily
logged into the Director) or is running loop back
diagnostics.
Degraded Off On Yellow Triangle Indicates that the port is operating in a degraded
mode or has failed and requires service.
Inactive Off Off Yellow triangle Indicates that the Director port is inactive. Reasons
with Exclamation for this state appear in the Reason field of the Port
Point Properties dialog box.
Note that if port optics have also failed, the amber
LED illuminates.
Invalid On Off Yellow triangle Indicates that the Director port is in an invalid
Attachment with Exclamation attachment state. The reasons for this state appear
Point in the Reason field of the Port Properties dialog box.
Link Incident On or Off Off Yellow triangle Indicates that a link incident occurred on the port.
with Exclamation The status symbol displays in the Port List tab, Port
Point Card window (if available), and Hardware tab.
The green port indicator can be on or off when there
is a link incident; for example, if the ISL is moved
from one port to another on the Director to which the
port is attached, the green light indicator is On.
Link Reset Off Off Yellow triangle Indicates that the Director and the attached device
with Exclamation are performing a link reset operation to recover the
Point link connection. Ordinarily, this is a transient state
that should not persist.
No Light Off Off None Indicates that no signal is being received on the
Director port. This is a normal condition when there
is no cable plugged into the port or when the
attached device’s power is off.
Not Installed Off Off None Indicates the port optics are not installed or the
feature that provides additional port function is not
enabled.
Not Off Off Yellow triangle Indicates that the Director port is receiving the Fibre
Operational with Exclamation Channel not operational sequence (NOS), indicating
Point that the attached device is not operational.
Online On Off None Indicates that the attached device has successfully
connected to the Director and is ready to
communicate or is in the process of communicating
with other attached devices. As long as the port
remains online, the green port LED remains
illuminated. Note that on the port in the unit, the
green LED blinks when there is active Fibre Channel
traffic through the port.
Offline Off Off None Indicates that the Director port was configured as
“blocked” and is transmitting the Fibre Channel OLS
to the attached device.
Off Off Yellow triangle Indicates that the Director port was configured as
with Exclamation “unblocked” and is receiving the Fibre Channel OLS,
Point indicating that the attached device is offline.
Operational Off Off Indicates that the port is operational, but not
communicating with the attached node (offline, no
cable, no light, loss of sync, and so on).
Port Failure Off On Red Blinking Indicates that the Director port has failed and
Diamond requires service. The amber LED for the port
remains illuminated.
Segmented On Off Yellow triangle Indicates that the E_Port is segmented, preventing
E_Port with Exclamation the two fabrics from joining (this only occurs when a
Point Director is connected to another Director).
Testing Off Blink Yellow triangle Indicates that the port is executing an internal
with Exclamation loopback test.
Point
Off Blink Yellow triangle Indicates that the port is executing an external
with Exclamation loopback test.
Point Note: For any loopback test, the amber LED blinks
(beacons) to help users locate the port under test.
The green port indicator is off because ports must be
blocked in order to run diagnostics.
Not Installed Off Off None Indicates the port optics are not installed or the
feature that provides additional port function is not
enabled.
a. The alert indicator displays on the port in the Hardware tab and Port List tab It indicates that a corrective action is
required to return the port to a normal operating state.
Clear Link Incident Complete the following steps to clear the attention indicator in the
Alerts Hardware and Port List tab and the alert description in the Port
Properties dialog box for link incident alerts.
1. Right-click the port with the attention indicator in the Hardware or
the Port List tab and select Clear Link Incident Alert(s) from the
shortcut menu.
The Clear Link Incident Alert(s) dialog box displays.
2. Select one of the following options:
• This port only.
• All ports on Director.
3. Click OK.
NOTE: These alerts may also be cleared by actions outside of your control,
such as rebooting the server platform.
Threshold Alerts
This section provides general information on threshold alerts, such as
descriptions, types of alerts, how you are notified of alerts, and how
alerts are recorded or logged. For detailed procedures to configure
threshold alerts, refer to Threshold Alerts on page 4-48.
A port threshold alert notifies users when the transmit (Tx) or receive
(Rx) throughput reaches specified values for specific Director ports or
port types, (E_Ports or F_Ports).
Select Configure > Threshold Alerts to display the Configure Threshold
Alerts dialog box. Use this dialog box to view, activate, deactivate,
delete, create new, and modify existing alerts. Select New or Modify to
display a dialog box where you can configure criteria for generating a
threshold alert. One criteria that you must configure is a throughput
value that equals a specific percentage of the total throughput
capacity for a port. You also provide a time interval during which
throughput is measured and a time interval during which that
throughput value must remain constant. When throughput reaches
the threshold value and remains constant for the specified time, an
alert is generated.
You are notified of a threshold alert in the following ways:
• An attention indicator (yellow triangle with exclamation mark)
that displays on the port in the Port Card.
• An attention indicator (yellow triangle with exclamation mark)
that displays on the port card in the Hardware tab.
• An attention indicator (yellow triangle with exclamation mark)
that displays in the Alert column of the Port List tab.
• An attention indicator (yellow triangle with exclamation mark)
that displays by the Threshold Alerts field in the Port Properties
dialog box.
• Detailed threshold alert data recorded in the Threshold Alert Log.
Critical Warning
The critical warning dialog box displays when you perform an
operation that may affect multiple parts of a SAN fabric. For example,
setting a Director offline or activating a new zone set could affect
many parts of the fabric when the fabric re-builds. This dialog box
provides a stopping point so that you can consider the operation
effect and take appropriate action, such as notifying device users.
For example, the unit goes back online only after the reset
operation completes. Note that this check box does not display if
you are setting the unit offline using the 6HW2QOLQH6WDWH option.
2. When the 2. button becomes available, click it to continue and
perform the operation.
3. Select &DQFHO to abort the operation.
This section describes how to use the options that display on the
Product menu.
0DQDJHPHQW6W\OH
1DPH'LVSOD\
3RUW
)58
&OHDU6\VWHP(UURU/LJKW
(QDEOH8QLW%HDFRQLQJ
3URSHUWLHV
&ORVH
Management Style
This option provides a secondary menu with radio buttons for Open
Systems and FICON management styles. These options change some
Element Manager dialog boxes and options to allow management of
the Director in open systems or FICON environments.
Open Systems
Click this button for (non-FICON) Fibre Channel environments.
FICON
Typically, click this button when attaching an IBM S/390 Parallel
Enterprise or zSeries server to the Director and implementing inband
Director management through a Fibre Connection (FICON) channel.
If Director firmware level is below 6.0 and the FICON Management
Server feature is enabled, the default management style is FICON.
The management style can be changed to Open Systems with the
FICON Management Server feature enabled.
If firmware versions below 6.0 are installed on the Director, you need
to take the Director offline before changing the management style.
Name Display
This option provides a secondary menu with buttons for NickName
and World Wide Name.
NickName
Click this button to display the NickName in Element Manager
windows.
Port
This option provides a secondary port menu only when the Hardware
tab, Port List tab, or Performancetab displays in the panel. To use this
menu for a specific port, right-click a port on the Hardwaretab, a port
row in the Port Listtab, or a port bar graph in the Performancetab. The
menu contains the following options which are identical to those that
display when you right-click the port, port row, or port bar graph in
those tabs.
Port Properties
Select this option to display thePort Properties dialog box. This dialog
box displays technical information about the port.
For more information, click the Help button on the Port Properties
dialog box.
Node Properties
Select this option to display theNode Properties dialog box. Note that
if a node is not logged into the port, a message appears indicating
that node information is not available.
For more information, click the Help button on the Node Properties
dialog box.
Port Optics
This dialog box displays port technology and extended identification
data for selected ports.
Opening the Dialog 1. Right click a port in the Port Card view
Box
2. Select Port Optics to display the Port Optics Information dialog box.
Fields and Information is divided into Port Technology and Extended Information
Components sections.
Port Technology
Field Description
Port 3-3
Using Product Menus
3
Field Description
Distance The general distance range for port transmission. This can be
either short to long distances for the longwave laser LC
transceiver, or short distances for the shortwave laser LC
transceivers. Distances can be short, intermediate, medium,
long, and very long.
Media The Fibre Channel mode and optic size. For the longwave
laser LC transceiver, this would be singlemode 9-um. For the
shortwave laser LC transceiver, this would be Multi-mode
50-um, 62.5-um, or 50/62.5 um.
Extended Information
Extended Information
Fiber Used - Max Length This displays possible link lengths based on the fiber type
table installed. Fields are blank if data is not available.
Using the Dialog Box Review the technology and extended information for the port, then
click &ORVH to close the dialog box.
Block Port
Click this check box to display a check mark and block port
transmission. If blocked, a node attached to the port is prevented
from logging into the Director or communicating with other devices
attached to change ports. A blocked port continuously transmits
offline sequences (OLS). Click to remove the check mark and unblock
the port. If unblocked, a node attached to the port can communicate
with the Director and communicate with other nodes attached to the
Director.
Enable Beaconing
Click this check box to make the amber LED by the port blink on the
Director and the amber indicator blink for the port in the +DUGZDUH
tab. This enables users to locate the unit where the port is located.
When a blinking amber LED indicator displays by a port, an attention
indicator ( ) displays below the port’s connector in the +DUGZDUH
tab and on the port row in the 3RUW/LVWtab.
Port Diagnostics
Select this option to display the 3RUW'LDJQRVWLFV dialog box. The 3RUW
'LDJQRVWLFV option enables you to run internal and external loopback
tests on any port. To use this option, follow the detailed steps in your
Director 6HUYLFH0DQXDO.
Port Swapping
Select this option to display the6ZDS3RUWV dialog box. Use this
dialog box to swap addresses between ports.
Reset Port
Select this option to display a confirmation dialog box. Click OK on
that dialog box to reset the port. If a switch is attached to the port and
online, this operation sends a link reset to the attached switch,
otherwise this action disables port beaconing for the port. If the port
is in a failed state, such as after failing a loopback test, the reset
restores the port to an operational state, clearing the service required
(amber) LED. The reset does not affect other ports in the switch.
Port 3-5
Using Product Menus
3
FRU
This option provides a secondary menu of options for the FRU. The
options available depend on the FRU selected.
Port Card
Click this option to display the port card window.
You can also access the port card window from the +DUGZDUHtab by
double-clicking a port card or right-clicking and selecting the
appropriate 2SHQmenu option. In the 3RUW&DUGwindow, colored
indicators reflect functions of the LEDs on the port card. The table in
the window displays the port operating state and vital product
information.
FRU 3-7
Using Product Menus
3
— LIN status symbols have been enabled for a port and a link
incident occurs.
— A threshold status has occurred for the port.
— Diagnostics are running on the port.
— The port card may be powered off.
For the 64-Port Director only, if a Powered off status displays for
a QPM port module, check to see if this module is installed in
slot 0. If so, install this module in another slot since this
module is not supported in slot 0.
<HOORZ7ULDQJOH'HJUDGHG6\PERO
NOTE: The degraded symbol, yellow triangle, is not the same as the
attention indicator, yellow triangle with exclamation point.
The QPM card contains four ports that can be configured to run at 1
Gb/s, 2 Gb/s, 4 Gb/s, or to negotiate speed. To obtain sustained 4
Gb/s throughput, the card's physical ports require the adjacent ports'
backplane paths. Consequently, only ports 0 and/or 2 are capable of
sustained mode operation. When ports 0 and/or 2 are configured for
sustained 4 Gb/s, ports 1 and 3 are disabled for general use. The Port
Card for the QPM card contains vertical black bars beside the port 0
and 2 images to identify them as the ports used for 4 Gb/s operation.
The XPM port card consists of a single 10 Gb/s port that is accessible
to the user. Since this port card uses a slot normally reserved for four
ports, three port numbers are missing from the port card. These
unaddressable ports cannot be accessed for use and cannot
participate in other port interactions. When an XPM port card is
installed, these ports do not display in the following locations:
• Configure Ports dialog box
• Open Trunking dialog box
• Performance tab
• Port List tab
• Preferred Path port selection lists for source and exit ports.
• Threshold Alerts, port selection list
Refer to the following information for the meaning of the status
symbols and LED indicators that can display on the ;303RUW&DUG
window.
• )LUVW/(' The amber indicator at the top of a port card
illuminates when the port card fails or is in a degraded mode. An
XPM port card fails when all of the backplane paths of an XPM
module are unavailable. An XPM port card is degraded if one or
more, but not all, backplane paths are unavailable. You can clear
degraded mode using the 5HVHW3RUWfunction.
One set of green and amber LEDs beneath the amber card status
indicator correspond to the four port connectors installed
vertically down the port card.
<HOORZ7ULDQJOHZLWK([FODPDWLRQ3RLQW( ),$WWHQWLRQ
,QGLFDWRU
A yellow triangle with exclamation point displays next to a port
connector for a variety of reasons:
FRU 3-9
Using Product Menus
3
NOTE: The XPM card can operate in a less than optimum mode when one,
but not all backplane data paths are unavailable.
FRU Properties
Select this option to display the )583URSHUWLHVdialog box. The )58
3URSHUWLHV dialog box can also be displayed when you double-click
the FRU in the +DUGZDUHtab.
For more information, click the +HOS button on the )583URSHUWLHV
dialog box.
Diagnostics
Select this option to display the 3RUW'LDJQRVWLFV dialog box. Use this
dialog box to run internal and external loopback tests on any or all
ports. This dialog box can also be accessed from the 0DLQWHQDQFH
menu.
Switchover
Changes the backup field-replaceable unit (FRU) to the active state,
and the active FRU to the backup state.
Properties
Select this option to display the 3URSHUWLHV dialog box for the Director.
This dialog box contains the Director name, description, location, and
contact person configured through the &RQILJXUH!2SHUDWLQJ
3DUDPHWHUV!,GHQWLILFDWLRQ tab. You can also display this dialog box
by double-clicking an area on the illustration in the +DUGZDUHtab,
away from a hardware component.
Close
Select this option to close the Element Manager window.
This section describes how to use the options that display on the
Configure menu.
2SHUDWLQJ3DUDPHWHUV
3UHIHUUHG3DWK
3RUWV
$OORZ3URKLELW0DWUL[
0DQDJLQJ6WRUHG$GGUHVV&RQILJXUDWLRQV
),&210DQDJHPHQW6HUYHU
2SHQ6\VWHPV0DQDJHPHQW6HUYHU
)HDWXUHV
7KUHVKROG$OHUWV
2SHQ7UXQNLQJ
([SRUW&RQILJXUDWLRQ5HSRUW
Operating Parameters
Configure Director operating parameters by selecting Configure >
Operating Parameters to display the Operating Parameters dialog box.
The following sections provide more details about operating
parameters:
• Fabric Tab on page 4-2
• Domain Tab on page 4-5
• Identification Tab on page 4-9
• SNMP Tab on page 4-11
Fabric Tab The Fabric tab provides access to setting the parameters for fabric
operation. These operating parameters are saved in nonvolatile
random access memory (NVRAM) on the Director. The name is
stored in your SAN Management application.
The following parameters display on the tab.
• R_A_TOV. Configure resource allocation time-out value
(R_A_TOV) in tenth-of-a-second increments. This variable works
with the error detect time-out value (E_D_TOV) to control the
Director behavior when an error condition occurs. Resources are
allocated to a circuit when errors are detected and are not released
for reuse until the time set by the R_A_TOV value expires.
Configure this value in tenths of a second (100 millisecond)
increments in a range of 40 tenths of a second to 100 (10 seconds).
NOTE: Set the same value for R_A_TOV on all Directors and Switches in
a multiswitch fabric. If the value is not the same on all units, the fabric
segments. Also, the value for R_A_TOV must be greater than the value
configured for E_D_TOV.
NOTE: Set the same value for E_D_TOV on all Switches and Directors in
a multiswitch fabric. If the value is not the same, the fabric segments.
• Priority. Setting this value determines the principal Switch for the
multiswitch fabric. Select Principal (highest priority), Default, or
Never Principal (lowest priority) from the Switch Priority list.
Setting these priority values determines the principal Switch
selected for the multiswitch fabric. For example, if you have three
Directors in the fabric and set one as Principal, one as Default, and
one as Never Principal, the unit set to Principal becomes the
principal Switch in the fabric.
NOTE: The Enable Remote Fabric option is available through the 256-Port
Director Fabric Tab only.
Domain Tab The Domain tab provides access to setting parameters on the Director
for fabric operation. These domain parameters are saved in NVRAM
on the switch. The name is stored in your SAN Management
application.
• Domain ID Range. The domain identification (Domain ID)
number is a unique identification for the Switch or Director in a
fabric. A distinct ID is automatically allocated to each Director in
the fabric by the principal Switch. A fabric Switch or Director
cannot contain the same domain ID as another Director or their
E_Ports will segment when they try to join as a fabric. The Domain
ID Range options allow you to configure or expand the range of
possible domain IDs in a fabric from the legacy range of 96-127
IDs.
You can configure one of the following modes:
— 239 Domain ID Range - Selecting 239 Domain ID Range, allows
a Domain ID range from 1 to 239. This mode has no offset. If
the Switch or Director does not support 239 domain IDs, this
NOTE: Node Port Virtualization does not display for a Director that is not
at the correct firmware level. If a user activates the node port
virtualization feature and the Director is at the correct firmware level,
then an error message displays.
Identification Tab The Identification tab provides access to parameters that specify a
Director’s properties. Information, such as product name,
description, and contact, displays in the following Element Manager
locations:
• Element Manager window title panel.
• Director Properties dialog box.
NOTE: The product name set in this dialog box displays in the Element
Manager and the Director icon label in your SAN Management application’s
Physical Map only if it is selected through the product label list on your SAN
Management application tool bar.
After you finish configuring the Director, you can back up the
configuration data.
SNMP Tab
NOTE: SNMP managers may request, but do not receive, traps and SNMP
data through SNMP management stations that are not configured with
community names.
SNMP v3 Operation
When SNMP v3 is enabled through the Command Line Interface
(CLI), the SNMP tab displays Trap Recipients not available here for
SNMP v3 instead of the Trap Recipients table. To use the Trap Recipients
table, you must disable SNMP v3 through the appropriate CLI
command or configure Trap Recipients through CLI commands.
NOTE: This step is usually not necessary. If you do not wish to override
the default UDP number, skip to the next step.
Date and Time Tab The Date/Time tab provides access to parameters for displaying and
changing the date and time set on the Director. You must set the
current date and time on the Director to record the correct time
stamps in the logs.
NOTE: To disable Switch clock alert mode, refer to Features on page 4-46.
Interfaces Tab The Interfaces tab provides access to the following parameters.
• Web. You can enable or disable the Web interface.
• Telnet. You can enable or disable the Telnet access interface.
• Alternate Control Prohibited. You can enable or disable
Alternate Control prohibited.
Preferred Path
The Preferred Path feature enables you to influence the route of data
traffic when traversing more than one Director in a fabric. If more
than one ISL connects Switches in your SAN, this feature is useful for
specifying an ISL preference for a particular flow. The data path
consists of the source port of the Switch or Director being configured,
the exit port of that Switch or Director, and the domain ID of the
destination Switch or Director. Each Switch or Director must be
configured for its part of the desired path in order to achieve optimal
performance. You may need to configure Preferred Paths for all
Switches or Directors along the desired path for proper multi-hop
Preferred Path operation.
Specifying Preferred Path for Switch 1 on page 4-18 displays a portion of
a more complex SAN. In this example, let’s specify a path between
the Source Device and the Destination Device A, going through
Switch 1, 2, and 3 (the desired data flow is shown as Data Flow 1). To
configure the path on Switch 1, open the Add Preferred Path dialog box
in Switch 1’s Element Manager. We want data to enter through port
14, so select 14 in the Source Port field. We want data to exit through
port 45, so select 45 in the Exit Port field. We want the destination
device to be Switch 3, so enter Switch 3’s domain ID, which is 3. This
only specifies that data enters and exits Switch 1 through specific
ports on its way to Switch 3. This process does not specify a Preferred
Path for data moving through Switch 2.
To specify paths through Switch 2 (Specifying Preferred Path for Switch
2 on page 4-19), open Switch 2’s Element Manager and enter Switch
2’s source port (11), exit port (21), and destination domain ID (3). The
primary choice for data movement is from Source Device into port 14
and out port 45 on Switch 1, in port 11 and out port 21 on Switch 2,
and through Switch 3 to either Destination Device A or B.
environments, an IFCC error can result from an OOOF. To avoid these error
messages, devices should be varied offline before a Preferred Path is
activated, and returned to online status after the activation.
NOTE: Some columns may only display when the FICON Management
Style feature has been installed.
TIP: You may need to configure Preferred Paths on more than one Director to optimize
load balancing for an entire path between devices.
If the Director has not been configured for insistent domain ID, a
warning message displays. If this is the case, close the dialog box
and select Configure > Operating Parameters > Domain tab. On the
Domain dialog box, select the Insistent check box, and click OK.
Return to the Configure Preferred Paths dialog box and continue to
step 2.
2. Click Add.
The Add Preferred Path dialog box displays.
3. Select the source and exit ports, and Destination Domain ID.
TIP: You can also type in an exit port number for future or offline environments.
5. Click OK.
The data is changed in the table on the Configure Preferred Paths
dialog box.
Ports
Use the Configure Ports dialog box to configure names, blocked and
unblocked state, 10-100 km extended distance buffering or RX
BB_Credits, enable or disable link incident (LIN) alerts for ports, port
type, port speed, port binding, and the port binding name.
NOTE: An asterisk next to the port number indicates port numbers that have
been swapped using the “Port Swapping” configuration option.
When a QPM card’s ports 0 and 2 are configured for sustained 4 Gb/s
operation, ports 1 and 3 are disabled so they can support ports 0 and
2. However, nothing prevents you from configuring ports 1 and 3
with values of your choosing. Then, if ports 0 and 2 are reconfigured
with one of the burst speeds, ports 1 and 3 are set to Active and begin
operating at the values you configured.
NOTE: The Configure Ports dialog box contains additional parameters that
you can configure when Open Systems Management Style is enabled. The
following parameter descriptions are labeled as Open Systems Management
style when applicable.
Ports 4-23
Using the Configure Menu
4
NOTE: To identify port numbers for which you want to provide names,
place the cursor over the ports in the Hardware tab. As you move over a
port, a message displays that identifies the slot number where the port is
installed.
• RX BB Credit
If a Director supports BB credits by port, the RX BB Credit column
displays instead of the 10-100 Km column. Minimum and
maximum allowable port BB credit values vary by Director. If an
invalid value is entered, An Invalid RX BB Credit error message
displays. The BB Credit value is validated as entered.
Enter a value and click Activate to display a RX-BB Credit
Confirmation box. In addition to the maximum BB credit limit per
port, the total BB credits allocated to all ports cannot exceed the
buffer pool size for a Director that has buffer pools. There are also
maximum BB credit limits per port.
NOTE: For Switches with wide buffer pools, the Configure Ports dialog
box displays the total and available buffers at the bottom of the dialog
box. When information is changed in the RX BB Credit column, this
information also updates.
Ports 4-25
Using the Configure Menu
4
For Switches with buffer pools, this menu allows you to Set all...
which sets all ports to a single value or to Distribute which evenly
distributes the pool buffers among all ports. Clicking OK changes
the values in the Configure Port dialog box. Clicking Activate
changes the values on the Director.
If the BB_Credit value that is entered for a port exceeds that port’s
limit, an error message displays the limits. The limits are different
for different Switch and Director models and for different port
types.
• LIN Alerts.
A link incident is a problem detected on a fiber optic link, including
the loss of light, invalid sequences, and other problems. When a
problem occurs, a LIN alert is sent to the Link Incident Log in the
Element Manager. LIN alerts warn you that there is a link incident
being detected through a port connection that may require operator
intervention.
If LIN alerts are enabled for a port in the Configure Ports dialog box,
an yellow triangle with an exclamation mark (attention indicator)
displays by the port connector in the Hardware tab and Line Module
window, Port Card window (if available) and in the Alert column in
the Port List tab.
If LIN alerts have been enabled for a port, the Port Properties dialog
box contains a short description of the latest incident in the Link
Incident field. Or, if there are no active incidents, None displays. The
system writes all link incidents to the Link Incident Log.
If you enable LIN alerts for a port in the Element Manager Configure
Ports dialog box, configure e-mail notification through your SAN
Management application, and enable E-Mail Notification through the
Element Manager Maintenance menu, you can receive e-mail
notification of LIN alerts.
The e-mail notification of LIN alerts is available to all users; no
feature permissions are imposed.
• Type. Select each port’s type in this column from the list. As you
select the port type, the port is momentarily set offline.
• Speed (Gb/s). Click the Speed column for a specific port and select
an option. As you select the port speed, which sets the data rate
for the port, the port is momentarily set offline. The following
options can display on the list, in various arrangements
depending on the port card type:
— 1
— 2
— 4 Burst (Type F only) (for QPM card, Directors only)
— 4 Sustained (Module ports 1 and 3 inactive) (for QPM card,
Directors only)
— Negotiate
— Negotiate 2 Max (for QPM card, Directors only)
— Negotiate Burst 4 Max (Type F only) (for QPM card, Directors
only)
— Negotiate Sustained (Module ports 1 and 3 inactive) (for QPM
card, Directors only)
Specific options are available for certain port types.
• For FPM port cards, options 1 and Negotiate display.
• For UPM port cards, options 1, 2, and Negotiate display.
• For QPM ports, all options display and you can set the
speed to 4 Gb/s. Note that only ports 0 and 2 of QPM cards
can be configured for sustained 4 Gb/s operation.
Burst allows the port to connect with 4 Gb/s devices, but
throughput through the port is oversubscribed at this rate.
Sustained allows a full 4 Gb/s rate to be sustained, but
requires an adjacent physical port to be set inactive
(unusable for connection) in order to support the full 4
Ports 4-27
Using the Configure Menu
4
NOTE: These options cannot be selected until the port type is configured
to a type of F.
If any of the Burst options are selected for the Speed column, type
E and G options are unavailable (grayed out) leaving only the F
option. These unavailable items have a flyover message
displaying:
Select a Speed choice other than Burst to use this option.
Follow this rule when setting the data speed:
— You cannot configure the speed for 10 Gb/s ports. This field is
read only for those ports.
— You can only select from the available options for each port
type.
— Do not set the port speed greater than the Director speed
(64-Port Director model only). For example, if you set the port
speed to 2 Gb/s and the Director data speed is set to 1 Gb/s,
an error displays stating that port speeds cannot be configured
at higher data rates than the Director speed. An exception to
this example, is QPM ports (140-Port Director only) that use
multiple backplane paths to achieve the 4 Gb/s speed. The
Director speed is set through the Configure Switch Parameters
dialog box for the 64-Port Director model only.
When you change a port’s speed and click Activate on the dialog
box, a confirmation message displays stating that this setting
temporarily disrupts port data transfers.
NOTE: Your Director model, firmware, and port cards may not allow 2 Gb/s
data speeds.
• NPIV Login Limit. The NPIV Login Limit column displays for all
port types. If the NPIV feature is installed, this column displays
whether the feature is enabled or disabled. The NPIV login limit
for the port must be a number between one and 256. If a user
enters a number that is not within that ranges, an error message
displays.
Right-click to access a menu that lets you set all ports to a single
user-specified value. From the right-click menu, select Set all...
and the Set All NPIV Login Limits dialog box displays.
Ports 4-29
Using the Configure Menu
4
NOTE: If you reduce the NPIV login limit on a port, the port must be
offline. In this case, the Element Manager temporarily blocks the port,
and displays a confirmation message stating that one or more ports will
be temporarily blocked. The user can click OK or Cancel to that message.
2. Type a name that reflects the end device connected through the
port in the Name field. For example, use “XYZ Server,” where
XYZ is the brand name of the Server.
3. Block or unblock operation for a port by clicking the check box in
the Blocked column.
When a check mark displays, the port is blocked.
4. Enable or disable extended distance buffering for the port by
clicking the check box in the 10-100 km column.
When a check mark displays, extended distance buffering is
enabled.
5. If the RX BB Credit column displays, you can enter a value,
especially to adjust BB Credit for ports that use particularly long
physical paths.
Minimum and maximum allowable port BB credit values vary by
Director. If you enter an invalid value, an Invalid RX BB Credit
error message displays. Click Activate and a RX-BB Credit
Confirmation box displays.
6. Enable or disable LIN alerts for the port by clicking the check box
in the LIN Alerts column.
When a check mark displays, LIN alerts are enabled.
7. Select a port type by clicking in the Type field and selecting from
the list.
8. Prevent an unspecified device from being connected to the port
by clicking the check box in the Port Binding column.
9. Set the data speed for the port, by clicking in the Speed column for
the port, and selecting from the list. Selecting Negotiate allows the
port and attached device to negotiate the data rate.
NOTE: Note that your Director model, firmware, and port card may not
allow 2 or 4 Gb/s data speeds.
10. Click the Bound WWN field, and type the WWN or nickname of
the specific device to be connected to the port.
Ports 4-31
Using the Configure Menu
4
11. Use the scroll bar on the right side of the Configure Ports dialog
box table to display additional ports that you want to configure.
12. Activate changes and close the dialog box by clicking Activate.
After you finish configuring the Director, you can back up the
configuration data.
For more information on backing up configuration data, refer to
Backing Up Element Manager Configuration Data on page 7-13.
NOTE: You cannot configure port names in the Configure Ports dialog box in
FICON management style. Use the Configure Allow/Prohibit Matrix - “Active”
dialog box.
NOTE: Your Director model and firmware may not allow 2 Gb/s data
speeds.
7. Click the Bound WWN field, and type the WWN or nickname of
the specific device to be connected to the port.
8. Use the scroll bar on the right side of the Configure Ports dialog
box table to display additional ports that you want to configure.
9. Activate changes and close the dialog box by clicking Activate.
After you finish configuring the Director, you can back up the
configuration data.
For more information on backing up configuration data, refer to
Backing Up Element Manager Configuration Data on page 7-13.
Allow/Prohibit Matrix
The Allow/Prohibit list displays two options, Active and Stored that
both display a Configure Allow/Prohibit Matrix window that lets you
interact with the Element Manager while the window is open. You
can also minimize, maximize, and close the window from the title
bar. This window can be open continuously and updates
automatically.
NOTE: If FICON CUP Zoning is enabled, zones will affect visibility. See the
Zoning User Manual for more information.
Field Descriptions • Addr. This read-only field lists the port’s address. Each port in the
Switch has a corresponding port address which is the physical
port number in hexadecimal format.
• Port Name. This user-defined name is assigned to the address.
Up to 24 alphanumeric characters are allowed, including spaces,
hyphens and underscores.
• Blocked. If the box is checked, the port is blocked. Blocked ports
continuously transmit offline sequences (OLS), but cannot
communicate to an attached device. If the box is not checked, the
port is unblocked.
• Port connection array. This area of the dialog box is a matrix of
port addresses that is used to configure connections between port
addresses.
All port addresses for the Switch are listed along the top and left
side of the matrix. The intersection between a vertical and
horizontal row of cells (squares) is where you can either allow or
prohibit connections between two addresses by clicking the cell to
prohibit connection or right-clicking the cell and displaying a
menu of attributes.
NOTE: For the 140-Port Director, port addresses 84-87 contain X’s. These
refer to the internal ports 128-131, which cannot have external fiber cable
connections.
Move your cursor over the squares in the array to display the
corresponding address. Right-click the array to display the
following menu options:
— Prohibit row. Prohibits connection between all addresses in a
row. In effect, this prohibits connection between a specific
address and all other port addresses.
— Allow row. Allows connection for all port addresses on a row
that are currently prohibited. This allows connection between
a port with a specific address and other allowed ports.
— Prohibit all. Prohibits connection between all port addresses. In
this state, ports in the Switch cannot connect with any other
port address.
— Allow all. Allows a dynamic connection through all port
addresses from which connection is currently prohibited. The
allowed attribute has the lowest precedence and does not
override any other attribute.
— Block all ports. Blocks communication between all ports. Ports
that are blocked continuously transmit offline sequences
(OLS).
— Unblock all ports. Unblocks all port addresses that are currently
blocked. This allows communication from all port addresses
in the Switch.
— Clear all. Clears the prohibit and blocked status of all port
addresses in the Switch.
Accessing Active Click Activate and the Allow/Prohibit Matrix Configuration Library
Configurations dialog box displays.
NOTE: Create a saved version of the configuration and edit the saved version
to minimize the risk of losing current edits. After the edits are completed and
saved, then activate the configuration.
Accessing Stored When editing saved configurations, the matrix displays depressed
Configurations and shaded cells when the matrix cell does not match the saved
configuration.
The IPL file is a special saved configuration file. This configuration is
used if the Director is in the IPL process. If the Active=Saved option is
checked, then the IPL file cannot be edited and saved if Active=Saved.
When the IPL is opened, the file dynamically updates if the active
configuration changes while the Active=Saved option was enabled.
Configuring Port To configure, save, and activate port addresses, use the following
Addresses steps.
NOTE: An asterisk next to the port number indicates port numbers that have
been swapped using the “Port Swapping” configuration option.
NOTE: If you click Cancel after saving, your configuration is still added
to the library without being activated.
NOTE: This dialog box is only available when FICON management style is
enabled.
NOTE: If E/OS 6.0 is installed on the Director, you can install FICON
Management Server and Open Systems Management Server features
simultaneously. Previously, you could only install one of these features at a
time.
— Code Page. Consider the language required for the port name
display that appears on the Management Server. Language
support is provided through character set 697 for all Extended
Binary-Coded Decimal Interchange Code (EBCDIC) pages.
When planning the installation, select the EBCDIC code page
for displaying host-assigned port names or the CUP name. As
an example, if the code page for Italy is selected and a port
name is assigned in Italian by the host management program,
then the Italian language port name displays in the Element
Manager.
The list displays the code pages that are available for
configuration. The default code page is United States/Canada
00037. For other code pages, refer to the following table.
NOTE: If E/OS 6.0 is installed on the Switch or Director, you can install
FICON Management Server and Open Systems Management Server features
simultaneously. Previously, you could only install one of these features at a
time.
Features
A feature key is a string of alphanumeric characters consisting of both
uppercase and lowercase characters. The following is an example of a
feature key format: XxXx-XXxX-xxXX-xX.
NOTE: The total number of characters may vary. The key is case-sensitive
and it must be entered exactly, including the dashes.
NOTE: You only need to set the Director offline when a feature functionality
is being removed. If you are adding features or ports, you do not need to take
the Director offline.
2. Enter or paste the feature key into the New Feature Key field. The
feature key is a string of alphanumeric characters with dashes.
The key is case-sensitive, so enter the key exactly as printed in the
documentation that you received for the feature.
Feature keys are only valid for a Director with a specific serial
number. They cannot be interchanged between the Director. If an
error stating “Invalid serial number” displays, verify that you
have entered the feature key that was assigned to the Director. To
verify, check the serial number of the Director through the
Director Properties dialog box and compare it to the serial number
listed in the documentation provided with your feature key.
3. Click Update
The new feature set contained in the feature that you just installed
displays in the Features panel. All of the features that are active
are included in the new feature list. If an error stating “Invalid
feature key” displays, verify that you have entered the feature
key correctly.
Icons and format in the Features panel refers to feature status and
feature type.
• A plus (+) icon indicates features have been added from the
update or support has increased for number of ports, sessions,
or devices. Click the icon to display new features.
• A minus (-) icon indicates removed features or decreased
support from the update. Click the icon to display removed
features.
• An hour glass icon indicates that a trial feature is installed.
The expiration date displays after the trial feature name.
• Check marks indicate bundled features. The bundled feature
name displays, followed by an indented list of features in the
bundle.
4. Click on a feature in the Features panel to display a feature
description in the Details panel.
5. Verify that all features will install that you require.
6. Click OK to confirm and enable features displayed.
Warning messages may display:
• To set the Director offline when removing a feature key.
Features 4-47
Using the Configure Menu
4
Threshold Alerts
Use procedures in this section to perform the following tasks:
• Creating New Alerts on page 4-48
• Editing Alerts on page 4-51
• Activate or Deactivate Alerts on page 4-51
• View Alerts on page 4-52
• Clear Threshold Alerts on page 4-53
For general information on threshold alerts, such as how you are
notified of alerts, how alerts are logged, and types of alerts, refer to
Clear Link Incident Alerts on page 2-29.
NOTE: If virtual switches are configured, you must create new alerts in the
Element Manager launched from the core Switch icon.
Editing Alerts
Use the following steps to edit an existing threshold alert
configuration.
NOTE: Alerts cannot be edited if they are active. You must deactivate the
alert before deleting it.
NOTE: You may not be able to modify threshold alerts depending on your
firmware version or product model.
Delete Alerts
Use the following steps to delete existing threshold alerts.
NOTE: Alerts cannot be deleted if they are active. You must deactivate the
alert before deleting it.
View Alerts
Use the following steps to view existing threshold alerts.
1. Select Configure > Threshold Alerts.
The Configure Threshold Alerts dialog box displays.
2. Select the alert that you want to view.
3. Click Edit.
The Modify Threshold Alert dialog box displays the threshold alert
configuration.
4. Click OK to close the dialog box.
5. Click OK to close the Configure Threshold Alerts dialog box.
Open Trunking
Open Trunking is only available if the optional Open Trunking
feature is installed. Select Configure > Configure Open Trunking. The
Configure Open Trunking dialog box displays.
Interswitch links (ISLs) connect ports between E_Ports of Fibre
Channel Switches or Directors, creating a multi fabric. Multiple ISLs
may be connected between the Switches or Directors in the fabric.
Data from an attached end-device (Server or storage) flows through
these ISLs to a target end-device connected somewhere in the fabric.
A data flow is data received from a specified receive port that is
destined for a port in a specified target domain (Director). The list of
ISLs that are candidates for being rerouted (to or from) is derived
from the fibre shortest path first (FSPF) algorithm.
The Open Trunking feature monitors the average data rates of all
traffic flows on ISLs (from a receive port to a target domain), and
periodically adjusts routing tables to reroute data flows from
congested links to lightly loaded links and optimize bandwidth use.
The objective of Open Trunking is to make the most efficient possible
use of redundant ISLs between neighboring Switches, even if these
ISLs have different bandwidths.
NOTE:
NOTE: Earlier versions of this dialog box may display Credit Starvation
Threshold instead of Low BB Credit Threshold.
If you click the check box to remove the check mark, any value
that was previously set in the Threshold % column for the port
displays.
To set the Congestion Threshold use one of these methods:
a. Right-click the Use Algorithmic Threshold column and select
from the following options.
• Set all to Default. Select this option to set all cells in the
Threshold % column to default values.
• Clear All. Select this option to clear all check boxes and
restore values in the Threshold % column to those that were
previously set in the column.
b. Right-click in the Threshold % column and choose from the
following options:
• Set All To xx. Sets all cells in this column to the value (xx)
that you clicked.
— Restore All. Sets all cells in the column to the previous values.
c. Click the check box for a port in the Use Algorithmic Threshold
column to remove the check mark. Then, click in the Threshold
% column and manually enter a value in the range of 1
through 99.
NOTE: Earlier versions of this dialog box may display Credit Starvation
Threshold instead of Low BB Credit Threshold.
NOTE: Using default settings for Low BB_Credit Threshold should work
well in most cases. This step is not required.
NOTE: This file cannot be used to set configuration parameters through the
ElementManager.
This section describes how to use the Security features under the
Security menu.
3RUW%LQGLQJ
6ZLWFK%LQGLQJ
(QWHUSULVH)DEULF0RGH
$XWKHQWLFDWLRQ
8VLQJWKH6HFXULW\/RJ
66/
(QFU\SWLRQ
Port Binding
Select this option to display the Port Binding dialog box. Use this
dialog box to allow a device with a specific WWN or nickname to
have exclusive connection to a port. To use this dialog box, refer to
the following paragraphs.
Port Binding dialog box parameters:
• Port Binding. Click this check box to place a check mark in the
box and enable WWN binding for the port. When enabled, only a
specific device can communicate through the port. This device is
specified by the WWN or nickname entered into the Bound WWN
field (either the Attached WWN or Detached WWN options). With
the check box cleared, any device can communicate through the
port even if a WWN or nickname is specified in the Bound WWN
field.
• Port Number. Select a port in the Port List tab, Performance tab, or
Port Card view, to display the port number in the Port Number
field. If you do not select a port, the lowest numbered port on the
product displays. You can also enter a valid port number for the
Switch.
• Attached WWN. Click the button and, if a device is logged into
the port, the device's WWN displays in the field. The device with
this WWN or nickname has exclusive communication privileges
to the port if Port Binding is enabled.
If you click this button to bind the port to a logged-in device and
there are no devices logged in, the port is essentially bound to a
WWN of “0.” This prevents any device from logging in until this
button is re-enabled to bind the WWN of a logged-in device or
until you explicitly bind the WWN of a device by clicking the
WWN button and entering a WWN or nickname (see the
following). Changes only take effect when you click the Activate
button.
• Detached WWN. Click the button and enter a World Wide Name
(WWN) in the proper format (xx:xx:xx:xx:xx:xx:xx:xx) or a
nickname configured through the Product or your SAN
Management applications. The device with this WWN or
nickname has exclusive communication privileges through the
port if Port Binding is enabled.
Note the following:
• If you do not enter a valid WWN or nickname in this field, but the
Port Binding check box is checked (enabled), then no devices can
communicate through the port.
• If you enter a WWN or nickname in this field and do not place a
check in the Port Binding check box, the WWN or nickname is
stored, and all devices can communicate through the port.
• Activate. Click this button to activate settings in this dialog box.
If a nickname is associated with multiple WWNs in your SAN
Management application, the 6HOHFW::1 dialog box displays.
This dialog box allows you to associate a non-unique nickname
with the WWN. In the dialog box, select the nickname to associate
with the WWN, then click 2..
Switch Binding
This feature is managed through the Switch Binding submenu options
available on the Element Manager Security menu. Using Switch
Binding, you can specify WWNs for devices and Switches that can
attach to Director ports. When an unauthorized WWN attempts to
log in, an event is posted to the event log. This provides security in
environments that include a large number of devices by ensuring that
only the intended set of devices attach to a Switch or Director.
To configure Switch binding, you must first enable the feature using
the State Change dialog box while selecting the type of port where you
want to restrict connection (connection policy). Possible selections are
E_Ports, F_Ports, or all types. If the Director is online, after activating
the changes in the dialog box, you must then set the unit offline, then
online using the Set Online State dialog box (Maintenance >Set Online
State).
NOTE: Before setting the Director offline, warn administrators and users
currently operating devices that are attached to the Director that it is going
offline and that there will be a disruption of communications. Make sure
administrators of devices are attached to ports acquiesce Fibre Channel traffic
through the Director.
NOTE: For the procedures, refer to Editing the Switch Membership List on
page 5-6.
NOTE: Click Display Options to toggle the display for the port between
World Wide Name and Nickname. To change the display, select the
appropriate option in the Display Options dialog box, then click OK. Note
that nicknames only display if configured for WWNs through your SAN
Management application.
Switch Binding
This is a SANtegrity Binding feature enabled through the Configure
menu in the Element Manager that allows or prohibits a Director
from connecting to E_Ports, and devices from connecting to F_Ports.
Domain RSCNs
This is a parameter in the Configure Switch Parameters dialog box,
available from Configure menu in the Element Manager application.
Domain register for state change notifications (domain RSCNs) are
sent between end devices in a fabric to provide additional connection
information to host bus adapters (HBA) and storage devices. As an
example, this information might be that a logical path has been
broken because of a physical event, such as a fiber optic cable being
disconnected from a port.
If Enterprise Fabric Mode is enabled, this parameter is automatically
enabled and cannot be disabled unless the Director is offline. In this
case, disabling Domain RSCNs also disables Enterprise Fabric Mode.
Authentication
The Security feature is accessed from the Configure Authentication
dialog box in the individual element manager applications. The
Element Manager lets you manage one device at a time.
Access the Configure Authentication dialog box by selecting Security >
Authentication.
To access the Configure Authentication dialog box, one user must have
the security administrator privilege. By default, the security
administrator user group displays when installing this feature.
Accessing Authentication
The Product Configuration table at the top of the SAN Management
application’s Switch Authentication tab contains a summary of
security-related values configured through the Login Banner tab and
the Users, Software, Devices, IP Access Control, and Radius Servers sub
tabs. This table automatically refreshes to reflect the latest changes to
the products listed.
The following five tabs are included on the Switch Configuration tab.
Note that these same tabs are available in the Switch or Director
Element Manager’s Configure Authentication window accessed from
Security >Authentication.
• Users - Allows the security administrator to configure the user
management interfaces to the Switch or Director. With this tab,
the security administrator specifies whether the Telnet and EFCM
Basic interfaces are enabled, what method the Switch or Director
uses to authenticate users, and which users are authorized to use
these interfaces.
• Software - Allows the security administrator to set up software
applications that can communicate with the Switch or Director
through APIs. The most common use of this tab is to define the
security settings for this Server so the Switch or Director can
authenticate Server requests to manage the Switch or Director.
This tab is also used to configure security settings for OSMS
(in-band) management.
Authentication 5-11
Using Security Features
5
CHAP Secrets
Support is provided for the Challenge Handshake Authentication
Protocol (CHAP). A Switch uses CHAP to authenticate all users
except Telnet and EFCM Basic interface users.
In the CHAP authentication process, a service (switch or director)
sends the client requestor a random challenge value. The client must
reply with a response that was generated using a cryptographic hash
calculation that includes a shared secret. Both the authenticator
(Switch or Director) and the client must know the same client secret.
Bi-directional or single-direction authentication is supported, and
unique secrets exist for each entity.
When you add or edit a device from the Devices tab, you enter or
generate the CHAP secret.
Use these guidelines when entering or generating CHAP secrets:
• Each CHAP secret must consist of a 32-digit hexadecimal or
16-digit ASCII character value. To specify ASCII characters,
precede the value with a dollar sign ($), such as $abcdefghijklmnop.
• Some RADIUS servers require secrets to be entered in ASCII. If
you are using a RADIUS server, you can either type in the
hexadecimal equivalent of the ASCII value or precede the ASCII
value with a dollar sign ($). For example, you can type either
61616161616161616161616161616161 or #$aaaaaaaaaaaaaaaa.
• The Generate button generates a random 32-digit hexadecimal
value. You may not be able to specify this value to RADIUS.
Authentication 5-13
Using Security Features
5
The Users tab lets the security administrator set up role-based user
access to the selected Switch or Director through the EFCM Basic or
Telnet management interfaces.
Accessing the Users To access the Users tab, complete the following steps.
Tab
1. From the SAN Management application:
a. Select a fabric from the Fabrics and Server list.
b. Select the Security tab.
c. Select the Switch Authentication tab.
d. Select a switch or director from the Product Configuration table.
OR
From the switch or director’s Element Manager, select Security >
Authentication.
2. Click the Users tab.
Users Tab The following table describes all the elements of the Users tab.
Description
Element Description
Interface area
Enable Web Server check box Click to enable the EFCM Basic interface. If not
enabled, the Switch or Director cannot be
(This option is not available on managed using the this interface. If enabled, there
the Mi10K.) must be at least one user established as
administrator and authorized for the this interface.
Authentication 5-15
Using Security Features
5
Element Description
Enable Telnet check box Click to enable the Telnet CLI interface. If not
enabled, the Switch or Director cannot be
managed using the Telnet interface. If enabled,
there must be at least one user established as the
administrator and authorized for Telnet.
Enable Web Server - Method list Select the method that the Switch or Director uses
to authenticate EFCM Basic interface users. The
options are Local Only, Radius Only, and Radius
then Local. If you have not defined any Radius
servers, only the Local Only option is available.
Radius servers are defined on the Radius Servers
tab.
Enable Telnet - Method list Select the method that the Switch or Director uses
to authenticate Telnet users. The options are Local
Only, Radius Only, and Radius then Local. If you
have not defined any Radius servers, only the
Local Only option is available. Radius servers are
defined on the Radius Servers tab.
SSH check box Click to use Telnet Secure Shell (SSH), which
encrypts transmitted data.
User ID column Displays the user label for each permitted user.
Authentication 5-17
Using Security Features
5
NOTE: If the Web Server or Telnet check box is not selected, no user can
log in to the Switch or Director through that interface.
9. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
10. Click OK.
11. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
12. Click Start to send the changes to the Switches and Directors.
13. Click Close on the Security Change Confirmation and Status dialog
box.
14. For the Element Manager, click Close on the Configure
Authentication dialog box.
NOTE: You can perform these same steps through a specific Switch or
Director Element Manager by selecting select Security > Authentication,
then the Users tab.
4. Click Add.
The Add/Edit User dialog box displays.
Authentication 5-19
Using Security Features
5
10. Select the Web Server and/or Telnet check boxes in the user’s row
in the Permitted Users table.
A user must be authorized for at least one of the interfaces.
NOTE: There must be at least one user in the Permitted Users table with
the Administrator role and Web server authority, and one user with the
Administrator role and Telnet authority, even if these interfaces are not
enabled. This can be a single user. This does not apply to the i10K.
12. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
13. Click OK.
14. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
15. Click Start to send the changes to the Switches and Directors.
16. Click Close on the Security Change Confirmation and Status dialog
box.
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
Authentication 5-21
Using Security Features
5
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-23
Using Security Features
5
OR
From the switch or director’s Element Manager, select Security >
Authentication.
2. Click the Software tab.
Field Description
Include current server check Choose whether to include the current Server in
box the Permitted Software list.
Method - API list This field is the method that the Switch or Director
uses to authenticate software programs. Select
Local Only, RADIUS Only, or RADIUS then Local.
If you have not defined any RADIUS servers, only
the Local Only option is available. To define
RADIUS servers, access the Radius Servers tab.
Authentication 5-25
Using Security Features
5
Field Description
OSMS Key field Type the OSMS secret. This must be entered as a
32-digit hexadecimal value, or as a $ followed by
16 ASCII digits. For example, $abcdefghijklmnop.
Retype Key field Retype the same value that was typed in OSMS
Secret.
9. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
10. Click OK.
11. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
Authentication 5-27
Using Security Features
5
12. Click Start to send the changes to the Switches and Directors.
13. Click Close on the Security Change Confirmation and Status dialog
box.
14. For the Element Manager, click Close on the Configure
Authentication dialog box.
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-29
Using Security Features
5
6. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
7. Click OK.
8. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
9. Click Start to send the changes to the Switches and Directors.
10. Click Close on the Security Change Confirmation and Status dialog
box.
11. For the Element Manager, click Close on the Configure
Authentication dialog box.
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-31
Using Security Features
5
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-33
Using Security Features
5
• After the Server ID has been added, remove the current server
by highlighting its entry in the Permitted Software list and
clicking Remove.
If the current Server is not included in the Permitted Software
list, the Include Current Server check box is enabled.
4. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 7.
• To apply the change(s) to multiple Switches or Directors, click
Apply To and go to step 5 (if the button appears dimmed, it is
unavailable).
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Figure 5-8 Add or Edit Software ID and CHAP Secret Dialog Box
Authentication 5-35
Using Security Features
5
8. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
9. Click OK.
10. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
11. Click Start to send the changes to the Switches and Directors.
12. Click Close on the Security Change Confirmation and Status dialog
box.
13. For the Element Manager, click Close on the Configure
Authentication dialog box.
Although you can remove software IDs from the Permitted Software
list, you cannot remove the last entry in the list while API
authentication is enabled.
1. From the SAN Management application, click the Security tab. In
the Fabrics and Server list, select a Director.
OR
From the Element Manager, select Security > Authentication.
2. Click the Software tab.
3. Select one or more users and click Remove.
4. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 7.
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-37
Using Security Features
5
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-39
Using Security Features
5
NOTE: Be sure to apply the new secret before leaving the Software tab for that
Switch or Director.
8. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
9. Click OK.
10. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
11. Click Start to send the changes to the Switches and Directors.
12. Click Close on the Security Change Confirmation and Status dialog
box.
13. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-41
Using Security Features
5
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-43
Using Security Features
5
You can also use the Devices tab to define the devices that are allowed
to connect to authenticating ports. The features in the Devices tab can
only be configured if the Switch has the proper PFE key installed. If
not, the Devices tab is disabled.
Element Description
Node Name field Displays the World Wide Node Name (WWNN) for
this Switch or Director.
Edit Secret button Click to edit the Switch or Director’s CHAP secret.
Enable E_Port Authentication Select the method that the Switch or Director uses
list for E_Port authentication. The choices are Local
Only, Radius Only, or Radius then Local. If you did
not define any Radius servers, only the Local Only
option is available. To define Radius servers, click
the Radius Servers tab.
Authentication 5-45
Using Security Features
5
Element Description
Enable N_Port Authentication Select the method that the Switch or Director uses
list for N_Port authentication. The choices are Local
Only, Radius Only, or Radius then Local. If you did
not define any Radius servers, only the Local Only
option is available. To define Radius servers, click
the Radius Servers tab.
Element Description
Port Authentication list Displays all of the Switches, Directors, and end
nodes connected to this Switch or Director. This
list tracks the security settings for each Switch or
Director port and the devices connected to the
ports. Connected devices can include the
following:
• Managed, Authentication-compatible Switches
and Directors
• Non-Authentication-compatible Switches and
Directors
• Non-manageable Switches and Directors
• Non-Brocade or non-IBM Switches and
Directors
• JBOD
• HBA
• Other storage devices
If a connected device is Security
Center-compatible, your SAN Management
application can discover its current security
settings and display them on the table. If not, your
SAN Management application only displays
limited information about that device. Each column
can be sorted and the column position can be
adjusted. By default, the ports with attached
devices are displayed at the top of the list, in
attached-node order (the device with the smallest
WWN is listed first).
Authentication State column Displays the authentication state for the Switch or
Director port. Turns into a list when selected. The
options are Switch Default, Forced Enabled, and
Force Disabled.
If the authentication is enabled for the port, either
by default or because the string setting is Force
Enabled, the Switch or Director knows how to
authenticate the connected device. There must be
an entry for the connected device in the
Authenticated Devices table.
Attached PortName column Displays the WWN of each individual port on this
Switch or Director.
Authentication 5-47
Using Security Features
5
Element Description
Authenticated Devices table Lists the devices for which the Switch or Director
knows the CHAP secret and therefore can
authenticate. Devices in this table must have a
CHAP secret defined.
An entry in this list does not mean that the Switch
or Director is currently authenticating this device.
Whether the Switch or Director is authenticating
this device depends on the Authentication State
setting for the connectedport in the Port
Authentication list.
4. Enter a secret in the CHAP Secret and Retype Secret fields, or click
Generate.
The secret must be entered as a 32-digit hexadecimal value, or as
a 16-digit ASCII value preceded by a dollar sign ($), such as
$abcdefghijklmnop.
You can also click Generate to create a 32-digit hexadecimal secret.
When changing the existing CHAP secret of a device, all other
devices that authenticate this device need to have their local
databases refreshed, or the connection will break.
5. Click OK.
6. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 11.
Authentication 5-49
Using Security Features
5
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
5. Click OK.
6. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 9.
• To apply the change(s) to multiple Switches or Directors, click
Apply To and go to step 7 (if the button appears dimmed, it is
unavailable).
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
Authentication 5-51
Using Security Features
5
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
6. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
7. Click OK.
Authentication 5-53
Using Security Features
5
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
6. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
7. Click OK.
8. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
9. Click Start to send the changes to the Switches and Directors.
10. Click Close on the Security Change Confirmation and Status dialog
box.
11. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-55
Using Security Features
5
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-57
Using Security Features
5
6. Click OK.
7. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 10.
• To apply the change(s) to multiple Switches or Directors, click
Apply To and go to step 8 (if the button appears dimmed, it is
unavailable).
8. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
9. Click OK.
10. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
11. Click Start to send the changes to the Switches and Directors.
12. Click Close on the Security Change Confirmation and Status dialog
box.
13. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-59
Using Security Features
5
3. Click Add.
The Add Device dialog box displays.
4. Click either the E_Port or N_Port check box to specify the desired
authentication type for the device.
5. Enter a Node Name (WWN) of the attached device.
6. Enter a specific CHAP secret in the CHAP Secret and Retype Secret
fields, or click Generate to create a 32-digit hexadecimal random
value.
The CHAP secret must be entered as a 32-digit hexadecimal value
or as a 16-digit ASCII value preceded by a dollar sign ($), such as
$abcdefghijklmnop. The new secret is sent to the connected,
managed device as its own CHAP secret.
7. Click OK.
8. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 11.
• To apply the change(s) to multiple Switches or Directors, click
Apply To and go to step 9 (if the button appears dimmed, it is
unavailable).
9. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
10. Click OK.
11. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
12. Click Start to send the changes to the Switches and Directors.
13. Click Close on the Security Change Confirmation and Status dialog
box.
14. For the Element Manager, click Close on the Configure
Authentication dialog box.
6. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
7. Click OK.
Authentication 5-61
Using Security Features
5
The IP Access Control tab lets you restrict the IP addresses that are
allowed to manage the switch. If the IP Access Control (IP ACL)
feature is enabled, IP addresses that are not on this list cannot
manage the switch or director.
OR
From the switch or director’s Element Manager, select Security >
Authentication.
2. Click the IP Access Control tab.
Element Description
Authentication 5-63
Using Security Features
5
Element Description
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-65
Using Security Features
5
OR
From the Element Manager, select Security > Authentication.
2. Click the IP Access Control tab.
3. To add a permitted IP address or an IP address range, click Add.
The Add/Edit IP Address or Range dialog box displays.
4. Click the IP Address or IP Address Range check box.
5. Enter an IP address in the appropriate field(s).
An IP address range is defined by starting and ending IP
addresses. The ending address must be greater than the starting
address. Exact duplicate ranges are not allowed, but ranges can
overlap or be included in other ranges in the list.
6. Click OK.
8. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
9. Click OK.
10. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
11. Click Start to send the changes to the Switches and Directors.
12. Click Close on the Security Change Confirmation and Status dialog
box.
13. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-67
Using Security Features
5
8. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
9. Click OK.
10. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
11. Click Start to send the changes to the Switches and Directors.
12. Click Close on the Security Change Confirmation and Status dialog
box.
13. For the Element Manager, click Close on the Configure
Authentication dialog box.
3. To remove your server’s IP address from the list, clear the Enable
IP Access Control check box.
4. To delete one or more entries from the Permitted IP Addresses list,
select the entry or entries and click Remove.
5. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 8.
• To apply the change(s) to multiple Switches or Directors, click
Apply To and go to step 6 (if the button appears dimmed, it is
unavailable).
6. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
7. Click OK.
8. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
9. Click Start to send the changes to the Switches and Directors.
10. Click Close on the Security Change Confirmation and Status dialog
box.
11. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-69
Using Security Features
5
The tab displays the RADIUS servers that have been defined on this
Switch or Director. Up to three RADIUS servers can be defined.
Use this tab to specify the RADIUS servers from which a switch or
director obtains authentication information. This tab is optional—it is
only necessary if the Switch or Director is using RADIUS
authentication.
If you do not want to use RADIUS authentication for one or more
user types, then no changes to this tab are necessary, even if RADIUS
servers are already defined. Defining RADIUS servers has no effect
unless the Users, Software, or Devices tab has RADIUS Only or
RADIUS then Local set. This is true whether or not authentication is
enabled on that tab.
If you want to use RADIUS authentication for one or more user types,
set the Authentication Method to RADIUS Only or RADIUS then Local
in the User, Software, or Devices tab, as needed.
NOTE: The Enable column is only available in the i10K Director Element
Manager).
Authentication 5-71
Using Security Features
5
Element Description
Dead Time field Enter the dead time for a RADIUS server. The
value applies to all available RADIUS servers. If a
RADIUS server does not respond to an
authentication request, it can be marked as dead
for a specified time interval. The dead time interval
can be in the range 0-1440 seconds. The default
value is 0.
UDP Port column Displays the port number that the Switch or
Director uses to contact the RADIUS server. The
value can be in the range 1-65535. The default
value is 1812.
Timeout (sec) column Displays the amount of time to wait for a response
from the RADIUS server before retransmitting the
packet. The value can be in the range 1-1000
seconds. The default value is 4 seconds.
Element Description
Move Down button Click to move a selected server down the list.
Authentication 5-73
Using Security Features
5
4. The dialog box displays default values for the UDP Port, Timeout
(sec), and Attempts fields. You can use these default values, or
enter different values.
5. Click the Enable Radius Server check box to enable the server
(available on Mi10K Director only).
6. Enter the IP address of the RADIUS server.
7. Enter a key value. The key is the Switch or Director password that
was specified when adding the Switch or Director as a client to
the RADIUS server configuration.
8. Click OK.
9. Perform one of the following actions.
• To apply the change(s) to a single Switch or Director, click
Apply and go to step 11.
• To apply the change(s) to multiple Switches or Directors, click
Apply To and go to step 9 (if the button appears dimmed, it is
unavailable).
10. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
Authentication 5-75
Using Security Features
5
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
7. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
Authentication 5-77
Using Security Features
5
You may also click Select All or Unselect All to create your change
list.
8. Click OK.
9. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
10. Click Start to send the changes to the Switches and Directors.
11. Click Close on the Security Change Confirmation and Status dialog
box.
12. For the Element Manager, click Close on the Configure
Authentication dialog box.
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Authentication 5-79
Using Security Features
5
5. On the Apply to Other Products dialog box, click the Select check
box for each Switch and/or Director you want to add to the
change list.
You may also click Select All or Unselect All to create your change
list.
6. Click OK.
7. On the Security Change Confirmation and Status dialog box, verify
the changes in the Detailed Changes list.
8. Click Start to send the changes to the Switches and Directors.
9. Click Close on the Security Change Confirmation and Status dialog
box.
10. For the Element Manager, click Close on the Configure
Authentication dialog box.
Accessing Security Authentication from the Element Manager and from Your SAN
Management Application
The Security Center is an option for the SAN Management
application that provides a full set of security features. Only the
Login Banner and Authentication subset of these features is included
with an Element Manager.
The following table outlines the differences between the two
applications.
Table 5-1 Differences - SAN Management Security Center and Element Manager Authentication
Installation Need a license key for switch Included and does not require a special
authentication. key
How functionality is accessed through Accessed from a tab in the main window Accessed from the Configure menu
GUI
Table 5-1 Differences - SAN Management Security Center and Element Manager Authentication
Discoverable product table Displays a Product Configuration table Does not have this table
that lists all discoverable products and
their security settings
Displays indirectly-connected devices in Displays on the Devices tab, through the Does not have this functionality
the same fabric Add Device dialog box
Displays remote and local Switches Displays both on the Security Change The Security Change Confirmation and
Confirmation and Status tab Status tab displays only the local Switch
or Director
Displays an Apply To button Displays if supported by the device Does not have this functionality
Displays server as well as Switches and Displays server and any managed Does not have this functionality
Directors Switches or Directors
LDAP authentication User access to the server can be Does not have this functionality
authenticated locally or through an
LDAP server
Customizable login banner Login banner can be displayed for all Login banner can be displayed for all
users logging into a server or to a users logging into a director through the
director through CLI the interface. The CLI interface. The banner contents can
banner contents can be customized. be customized.
SSL
Select this option to set up and configure SSL Configuration
information for communication with EOSc-based switch and
directors. If the firmware does not support SSL, selecting this menu
item displays the standard message that the feature is not supported
in this release. If the firmware supports SSL, selecting this menu item
displays the SSL Configuration dialog box. When SSL is enabled, the
communication occurs on an SSL socket.
Opening the Dialog From the Security menu, select SSL Configuration.
Box
Fields and
Components Field Description
Enable API SSL Select to enable and the link to the switch briefly disconnects.
The SAN Management application reconnects using SSL.
New Certificate Enter the number of days before the new certificate expires.
Valid values are 30 to 3650 days. The default is 365.
Selecting this option generates a new certificate and updates
the firmware.
Renegotiate after Select to enable and enter values for the renegotiate size.
Valid values are 50-1000. If the check box is not checked, the
CLI and/or EWS can display 0 for the size.
Encryption
EFCM client-to-server authentication is done via Triple DES
encryption, not MD5. This has no impact on SSL.
• If SSL is turned on, then the EFCM user password is sent from the
EFCM client to the EFCM server in Triple DES encryption under
the SSL socket.
Encryption 5-83
Using Security Features
5
Using Logs
You can use the data collected in logs to manage, maintain, and
monitor the Director. Each Log display lets you perform the
following functions.
•
Accessing Logs The logs store up to 1000 entries each. The most recent entry displays
at the top of the log. After 1000 entries are stored, new entries
overwrite the oldest entries.
Clearing Logs Clearing a log deletes all entries in the log for all users.
To clear a log, perform the following steps.
1. Click &OHDUin the log window.
A warning displays requesting confirmation that you want to
clear all entries in the log.
2. Click Yes to confirm the deletion or No to cancel the deletion.
3. Click Close to exit the log window.
Refreshing Logs Refreshing a log updates the log with the most current data.
To refresh a log, perform the following steps.
1. Click 5HIUHVK in the log window.
2. Click Close to exit the log window.
Audit Log
The Audit log displays a history of all configuration changes applied
to the Director from any source such as Element Manager, SNMP
management stations, or host. Each log entry contains the following
information.
• Date/Time. The date and time of the change on the Director.
Event Log
The Event log provides a record of significant events that have
occurred on the Director, such as hardware failures, degraded
operation, port problems, FRU failures, FRU removals and
replacements, port problems, Fibre Channel link incidents, and
communication problems between the Director and the Server
platform. The information is useful to maintenance personnel for
fault isolation and repair verification.
All detected firmware faults and hardware failures are sent to the
Server platform and recorded in the event log.
For detailed information on event data and problem resolution, refer
to your Director’s Service Manual.
Each log entry includes the following information:
• Date/Time. The date and time of the event on the Director.
• Event. A code that uniquely identifies the event.
Event codes include the following.
000 - 199 System events
200 - 299 Power supply events
300 - 399 Fan module events
400 - 499 CTP card events
500 - 599 Port card events
600-699 Events (Director only)
800-899 Thermal events
Hardware Log
The Hardware log displays information on FRUs inserted and
removed from the Director.
Each log entry includes the following information:
• Date/Time. The date and time the FRU was inserted or removed.
• FRU. The name of the inserted or removed FRU.
• Position. The slot position in the chassis relative to identical
components installed.
• Action. Whether the FRU was inserted or removed.
• Part Number. The part number of the component.
• Serial Number. The serial number of the component.
Security Log
The Security log displays the following information:
• Severity. The severity level of the event (informational, change, or
error).
• User. The user associated with the event.
• Reason. The reason code for the event, or conditions that caused
the failure.
• Description. The security event category. The information also
includes the description and details of the event and the IP
address of the product.
• Date/Time - The date and time the event occurred. The format is
yyyy/mm/dd hh:mm:ss.
• Count - The number of times the same event has occurred. If a 0
displays, this indicates that the count feature is not supported.
• Category - The security category, such as successful connections,
disconnections, configuration changes, and authentication
changes.
• IP - The IP address where the event occurred.
• Role - The role of the user.
• Interface - The interface through which the event occurred, such
as Embedded Web Server (EWS) or Command Line Interface
(CLI).
10201 Configuration Changes EWS and CLI Passwords have been Reset Change
Change ... Button The Change ... Button dialog box provides log setting options. The
options located at the top of the dialog box are slightly different for
the 256-port Director and other Director models as illustrated. This
section only provides option details for your Director model.
Figure 6-2 Dialog Box Options - All Products Except 256-Port Director
NOTE: If not in FICON mode, the Hex/Dialog option is not displayed and
entries are only made in decimal.
Syslog Configuration
The Syslog Configuration option displays the Syslog Configuration
dialog box. This dialog box displays two tabs of information. To
enable syslog transmitting, click the Enable syslog transmitting check
box. If the firmware does not support syslog, a message displays that
says this feature is not supported in this release.
Recipients Tab The Recipients tab displays the following number of IP Address rows
that are supported by the firmware.
• IP Address. The IP Address for the devices that are to receive the
log information. Type in a new IP address or edit an existing IP
address.
• Facility. Select a facility from the list.
Click the Activate button to validate the IP address.
Logs Tab The Logs tab displays a check box for each log that the firmware
supports for generating syslog messages. Checking a log causes the
firmware to generate a syslog event each time an entry is added to the
log.
• Event. Check box to include Event log.
• Audit. Check box to include Audit log.
• Link incident. Check box to include Link Incident log.
• Threshold alert. Check box to include Threshold Alert log.
• Security. Check box to include Security log.
• Embedded port. Check box to include Embedded Port log.
• Fabric. Check box to include Fabric log.
• Open Trunking. Check box to include Open Trunking log.
Port Diagnostics
Use the Port Diagnostics option to run internal and external loopback
tests on any or all ports.
To run a loopback test, use the following steps:
1. Select Maintenance > Port Diagnostics.
The Port Diagnostics dialog box displays.
2. Enter a value in the Port Number box, or click the All ports on
switch option.
At the start of the loopback test, the port or port card can be
online, offline, blocked, or unblocked.
3. Select one of the following tests from the Diagnostics Test list:
Internal Loop - An internal loopback test checks port circuitry,
but does not check fiber-optic components of a port transceiver.
The test is performed with a device attached to the port, but the
test momentarily blocks the port and is disruptive to the attached
device.
NOTE: For more details on using port diagnostics, refer to the Installation and
Service Manual for your Switch or Director model.
Port Swapping
Use the Port Swapping option to swap one port address for another
regardless of management style selected.
When you select the Port Swapping option, the Swap Ports dialog box
displays. Use this dialog box to swap one port address for another
regardless of management style selected. An asterisk indicates port
addresses that have been swapped using the Swap Ports dialog box.
This asterisk displays after port numbers and addresses in the
Configure Ports dialog box, Port List tab, Node List tab, and Performance
tab. In the Allow/Prohibit Matrix dialog box the asterisk displays after
the port address, since the port number does not display on this
dialog box.
NOTE: Swap Ports uses port addresses, not port numbers. Therefore, when
you swap ports, the port address is swapped, not the port number. You
cannot swap 10 Gb/s ports with non-10 Gb/s ports.
NOTE: An XPM port can only be swapped with another XPM port.
The port address displays the three-byte Fibre Channel address. The
hexadecimal port address is the middle (area) byte of the three and is
displayed in bold. In cases where the Switch or Director is offline, the
domain (first) byte and the node4 (last) byte are unknown to the
element manager. A double underscore is displayed to replace the
unknown bytes. The port address (middle) byte is always displayed.
The middle byte is displayed in bold if the FC Address is displayed.
For example, where the domain and node bytes of the FC Address are
not known and irrelevant, the address field for the physical port 00 is
displayed as __00__.
The message displays what ports are involved in the swap and to
ask the system administrator to stop traffic on these ports.
5. Click Next to complete the operation, block ports, and enable
beaconing.
NOTE: You have the option to cancel the operation. If you click Cancel, the
selected ports to be swapped will not be blocked and beaconing will not be
enabled.
The wizard instructions box displays the next step. The message
displays that the ports are blocked and that beaconing is enabled.
The port cables can be swapped during this step.
NOTE: You have the option to cancel the operation. If you click Cancel,
beaconing stops, but the ports remain blocked.
NOTE: After the port swap is complete, the contents of either the Port
Number or Port Address fields are swapped. This depends on which field was
originally selected in the beginning. If the Port Number was selected in the
beginning, information for both the Port Address and FC Address fields are
swapped, retaining the position of the Port Number field.
NOTE: Make sure that the system administrator varies devices offline that
are attached to the ports whose addresses you are going to swap.
NOTE: Ports that you are going to swap are blocked during this procedure,
as swapping ports is disruptive to port operation.
Data Collection
Select the Data Collection option to collect maintenance data that can
help support personnel diagnose system problems. Save the
maintenance data and forward it to technical support personnel.
NOTE: If the Full Volatility feature has been enabled through the Director’s
maintenance port, a memory dump file will not be included with the data
collection.
IPL
Select the IPL option to execute an initial program load (IPL).
NOTE: The Ethernet connection between the Server platform and Director
is interrupted momentarily during an IPL.
NOTE: Ana initial program load (IPL) is not intended for ordinary or casual
use and should only be performed if the active control processor (CTP) card
is suspected to be faulty. This operation resets the active CTP card (an IML
resets both CTP cards). Do not use this option unless directed by your
support representative or if you need to reset a failed CTP card.
IPL 7-7
Using Maintenance Features
7
Firmware Library
Firmware refers to the internal operating code for the Director. Use
the Firmware Library dialog box to maintain up to 32 firmware
versions on the Server platform for downloading to a Director.
NOTE: You must enable call-home event notification through your SAN
Management application before enabling this function through the Element
Manager for the individual Director.
NOTE: A check mark displays next to the menu option to indicate that
call-home notification is enabled.
Element Manager Select Maintenance > Backup and Restore Configuration to save the
Configuration Data product configuration stored on the Director to the platform hard
disk, or to restore the product configuration from the Server. Only a
single copy of the configuration is kept on the Server.
The purpose of the backup is primarily for single-CTP systems,
where a backup is needed in order to restore a replacement CTP card.
However, you can also use this feature for a special purpose
configuration or for temporary testing of a configuration. You cannot
modify the location or file name of the saved configuration.
Also, note the following when backing up or restoring data:
• You can only restore the configuration to a Director with the same
IP address.
The following types of data are included when you back up your
SAN Management application:
• All log files.
• Zoning library (all zone sets and zone definitions). Note that
zoning is configured through your SAN Management
application.
• Call-home configuration (including phone numbers and dialing
options). Note that the Call-Home function may be optional,
depending on your purchased software package.
• Configuration data. Note that this data can also be saved by
selecting Maintenance > Backup & Restore Configuration.
• Plans. Data is saved if the optional Planning feature is available
through your SAN Management application.
• License information.
Reset Configuration
Use the reset configuration feature to reset all configuration data for
the Director to factory default values. To open the Reset Configuration
dialog box, select Maintenance > Reset Configuration.
those ports that were enabled at the factory will function. You
must re-enable the additional port function features through the
dialog box.
• If you have enabled the Full Volatility feature through the
Director’s maintenance port since the Director was shipped from
the factory, this feature will disable (factory default) when the
configuration is reset.
• Factory-default values may vary, depending on the firmware
release installed in your Director. For a list of values, refer to the
Director’s Service Manual for your Director’s E/OS release.
NOTE: If you have changed the Director‘s IP addressing from the factory
default value, you may not recover the Ethernet connection between the
Director and the management Server platform since the internet protocol (IP)
address resets to the factory default during this procedure. For complete
steps in recovering this connection, refer to the Reset Configuration Data
procedure for the Element Manager in Chapter 4 of your Product’s Service
Manual.
This section lists and explains messages that may display in message
boxes as you use the Element Manager. Solutions to problems implied
by each message are included when applicable. The messages are
listed alphabetically.
$ $
&$
' $
( $
) $
, $
/ $
0$
1 $
2 $
3 $
5$
6 $
7 $
8 $
<$
Message A 10 Gb/s port can only be swapped with another 10Gb/s port.
Description Occurs when you attempt to swap an XPM port card with a port of a
different speed (1 or 2 Gb/s).
Message A Preferred Path already exists between this Source Port and this
Destination Domain ID. Please re-configure the desired path.
Description For any source port, only one path may be defined to each destination
domain ID.
Action On the Add/Change Preferred Path dialog box, change the Preferred
Path.
Action Save the configuration with a different name that is unique to all
saved configurations.
Message All FPM ports will be held inactive while the Director is
configured to 2Gb/s speed. Do you want to continue?
Description 64-port Director only. Occurs when FPM cards are installed in the
Director and Switch speed to set to 2Gb/s in the Configure Switch
Parameters dialog box.
Action Replace FPM cards with UPM cards (cards operate at 1 and 2 Gb/s)
or set the speed to 1 Gb/s.
Description A duplicate port name was entered. Every configured port name
must be unique.
Description Only one firmware install to a specific Director can take place at a
time.
Action Wait for the current firmware install to complete and try again.
Message Are you sure you want to delete this address configuration?
Action Click Yes to confirm sending the firmware version to the Switch, or no
to cancel the operation.
Description Firmware level below 6.0, and user attempted to change a port type
in the Configure Ports dialog box while FICON management style is
enabled, but the optional SANtegrity Binding feature is not installed.
Description The user has moved slots into a partition while FMS Server is
enabled.
Description User attempted to disable Switch binding through the Switch Binding
Change State dialog box, but Enterprise Fabric Mode is enabled.
Action You must either disable Enterprise Fabric Mode using the Enterprise
Fabric Mode dialog box in your SAN Management applications or set
the Switch offline before you can disable Switch Binding.
Action Disable Fabric Binding through the Fabric Binding dialog box before
disabling these parameters. The Insistent Domain ID can also be
disabled while the Director is offline.
Description Occurs when selecting Enable Beaconing option for a failed FRU.
Message Cannot enable beaconing while the system error light is on.
Description Beaconing cannot be enabled while the system error light is on.
Action Select Product > Clear System Error Light to clear error light, then
enable beaconing.
Description Enterprise Fabric mode is active and the Switch or Director is online
and user is attempting to enable Open Trunking. This message only
displays if the optional Open Trunking feature is installed.
Description Firmware level is below 6.0 and user attempted to change the
management style from Open Systems to FICON with E_Ports ports
configured, but SANtegrity Binding is not installed.
Action Replace the failed CTP card and retry the firmware install to the
Director.
Description Port speeds cannot be configured at a higher data rate than the
Director speed. This displays when you set the Director speed to 1
Gb/s through the Configure Switch Parameters dialog box (64-Port
Director only) and at least one of the ports is running at 2 Gb/s.
Action Either return the Director speed to 2 Gb/s or configure all port data
speeds to 1 Gb/s through the Configure Ports dialog box.
Description This operation cannot take place while the Director is online.
Action Configure the Director offline through the Set Online State dialog box
then retry the operation.
Description The user has attempted to remove all slots from Partition 0, which
would leave the partition disabled. The Director firmware requires
that Partition 0 be enabled.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description Director date and time cannot be retrieved. The link is down or busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Log out the device and run the diagnostic test again.
Description Port diagnostics cannot be performed when the port card is not
installed.
Description The user cannot save the IPL file while the active=save property is
set.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Message Cannot set all ports to 1 Gb/s due to port speed restriction on some
ports.
Description Displays if you try to set ports to operate at 1 Gb/s data speed
through the Configure Ports dialog box and some ports do not support
speed configuration.
Action Replace ports that do not support speed configuration with those that
do support more than one speed configuration.
Message Cannot set all ports to 2Gb/s due to port speed restriction on some
ports.
Description Displays if you try to set ports to operate at 2 Gb/s data speed
through the Configure Ports dialog box and some ports do not support
speed configuration.
Action Replace ports that do not support speed configuration with those that
do support more than one speed configuration.
Message Cannot set all ports to Negotiate due to port speed restriction on
some ports.
Description Displays if you try to set all ports to Negotiate through the Configure
Ports dialog box and some ports do not support speed configuration.
Action Replace ports that do not support speed configuration with those that
do support more than one speed configuration.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description Fibre Channel parameters cannot be set. The link is down or busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description date and time cannot be set. The link is down or busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description A community name was not defined in the Configure SNMP dialog
box for the write authorization selected.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Wait for the CTP synchronization to complete before starting the
firmware install.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description A port swap cannot be performed when the port card is not installed.
Description Requesting confirmation that you want all contents removed from
the log.
Description Configurations sent from the host may be overwritten by your SAN
Management application.
Action Continuing will activate the current configuration, which may have
been configured by an S/390 host.
Description A file I/O error occurred. The log file could not be saved to the
specified destination.
Description Firmware file selected was not found in the FTP directory.
Description Dump files could not be removed from Server. Link may be down or
Director may be busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description Port diagnostics could not be stopped. Link may be down or Director
may be busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description Within the address configuration, one or more of the port names are
the same as the CUP name.
Action Make sure all names are unique for the ports and CUP name.
Action Remove the device from the Switch by blocking the port, setting the
Director offline, or disabling Switch Binding through the Switch
Binding Change State dialog box before removing devices from the
Switch Membership List.
Message Director clock alert mode must be cleared before enabling period
synchronization.
Action Disable clock alert mode through the Configure FICON Management
Server dialog box.
Description You cannot disable Switch Binding while Enterprise Fabric Mode is
active and the Switch is online.
Action Click Yes if you want to continue and disable Enterprise Fabric Mode.
Action Click Yes to confirm the IPL or Cancel to cancel the operation.
Description Domain IDs that are entered in the Configure Preferred Paths dialog
box must fall in a specific range.
Action In the Configure Preferred Paths dialog box, change the number in the
Destination Domain ID field to a number between 1 and 31, inclusive.
Description You attempted to execute a command that is not valid when more
than one management Server is connected to the Director.
Action Exit the additional management Servers to that only one is connected
to the Director.
Action Click Yes if you want to continue, and disable Enterprise Fabric
Mode.
Description An error occurred while retrieving port information. The link is down
or busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description An error occurred while retrieving port statistics. The link is down or
busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description An error occurred while attempting to stop the port diagnostics from
running. The link is down or busy.
Action Retry the operation later. If the condition persists, contact support
personnel.
Message Feature not supported. The ’product name’ must be running version
05.00.00 or higher.
Description The maximum number of data entry characters allowed in the field
was exceeded.
Description The Director did not respond in the time allowed. The status of the
firmware install operation is unknown.
Message Installing this feature key, while online, will cause an IPL
operation on the Switch and a momentary loss of LAN connection.
This operation is non-disruptive to the Fibre Channel traffic. Do
you wish to continue installing this feature key?
Description If the Director is online, installing the new feature key will cause an
internal program load (IPL). The LAN connection to the Server
platform will be lost momentarily, but Fibre Channel traffic will not
be affected.
Action Re-enter the feature key noting the key is case sensitive and to
include the dashes.
Description Network address specified is not known by the domain name Server.
Action Check the input address and specify the correct network address.
Action Verify port address through the Configure Addresses - “Active” dialog
box (FICON management style only) and re-enter.
Description Port number must be within the range of ports for the specific
Director model.
Description M6140 Director. Port number must be within the range of ports for
the specific Director model. For this model, the valid port numbers
are 0 - 127 and 132-143. Ports 128-131 are not valid because they are
internal ports and cannot be connected to external fiber optic cables.
Description Intrepid 6064 Director. Port number must be within the range of ports
for the specific Director model. For this model, the valid port
numbers are 0 - 63.
Action Ensure that each port selected for swap has not been previously
swapped.
Description The serial number and the feature key did not match.
Action Ensure that the feature key being installed is specifically for this
Director serial number.
Action Enter a port number that is allowed for your port. The values allowed
are dependent on whether the Remote Fabric is enabled and whether
the port is a 1 or 2 Gb/s or a 10 Gb/s port.
Description Low BB Credit Threshold text field in Configure Open Trunking dialog
box must have entries in the range from 1 and 99. This message only
displays if the optional Open Trunking feature is installed. Note that
your message and the Configure Open Trunking dialog box may
display Credit Starvation Threshold instead of Low BB Credit Threshold.
Action Enter a value from 1 to 99 into the Low BB Credit Threshold of the
Configure Open Trunking dialog box.
Description Value for E_D_TOV must be an integer from 10 through 50, measured
in tenths of a second.
Description Value entered for each port in the Configure Open Trunking dialog box
must be in the range from 1 to 99. This message only displays if the
optional Open Trunking feature is installed.
Description World wide name must have eight two-digit hexadecimal numbers
(xxxxxxxx:xxxxxxxx).
Description Connection between Server platform and the Director has been lost.
Description The user has attempted to create more partitions that the count of
Partition PFE features purchase.
Description The user selected Configure > Binding, but the optional SANtegrity
Binding feature is not installed.
Action Install the SANtegrity Binding key through the Configure Feature Key
dialog box before using Switch Binding features.
Description A file was not selected in the Firmware Library dialog box before an
action, such as modify or send was performed.
Action Click a firmware version in the dialog box to select it, then perform
the action again.
Description If the Director has only a single CTP card, it must be offline to initiate
a firmware installation.
Message Not all of the optical transceivers are installed for this range of
ports.
Description Some ports in the specified range do not have optical transceivers
installed.
Action Use a port range that is valid for the ports installed.
Message Open Trunking is not installed for this product. Please contact your
sales representative.
Description The Open Trunking feature key has not been enabled. This message
only displays if the optional Open Trunking feature is installed.
Action Enter the feature key into the Configure Feature Key dialog box and
enable the key. If you require a feature key, see your account
representative.
Message Performing this operation will change the current state to Offline.
Message Performing this operation will change the current state to Online.
Message Performing this action will overwrite the date/time on the Director.
Description Warning that occurs when configuring the date and time through the
Configure Date and Time dialog box, that the new time or date will
overwrite the existing time or date set for the Director.
Action Verify that you want to overwrite the current date or time.
Message Port binding was removed from attached devices that are also
participating in Switch Binding.
Action Read the Switch Binding Membership List to determine if the devices
should be members.
Description Port addresses entered in the Swap Ports dialog box are the same.
Action Make sure that address in the first and second port address fields are
different.
Message Port speeds cannot be configured at a higher rate than the Director/
speed.
Description This displays when you configure a port to 2 Gb/s and the Director
speed is set to 1 Gb/s.
Action Set the Director speed to 2 Gb/s in the Configure Operating Parameter
dialog box.
Description When configuring Preferred Paths, source ports and exit ports must
be in the range of ports for the Switch being configured.
Action In the Configure Preferred Paths dialog box, change the numbers in the
Source Port and Exit Port fields to fall within 0 and xxx, where xxx is
the maximum the port number for the Switch where you are
configuring paths.
Message Preferred Paths can not be enabled until the Domain ID is set to
Insistent. Disable Preferred Paths, then configure Switch
Parameters.
Description If the domain ID has not been set to Insistent, the user is not allowed
to activate the Preferred Path configuration with the Enable Preferred
Paths check box selected.
Action Close the Configure Preferred Paths dialog box and select Configure >
Operating Parameters > Parameters. On the Configure Switch Parameters
dialog box, select the Insistent check box.
Action Change one of the values so that R_A_TOV is greater than E_D_TOV.
Action Verify that the link between the Server platform and Director is up. If
the link is up, the Server platform may be busy. Try the operation
again later.
Description Diagnostics for the port was not running and the Stop was selected on
the Port Diagnostics dialog box. Diagnostics quit for the port for some
reason, but the Stop button remains enabled.
Action Verify port operation. Retry diagnostics for port and select Stop from
the dialog box. If problem persists, contact your service
representative.
Description The action to stop diagnostics failed because the test was not running.
Message Switch Binding was removed from attached devices that are also
participating in Port Binding. Please re the Port Binding
Configuration.
Description The device WWNs were removed from the Director’s Membership
List (SANtegrity Switch Binding feature), but you should note that
one or more of these devices still has security control in port binding.
Action Verify that the security level for each device is as required by
reviewing the Bound WWN list in the Configure Ports dialog box.
Message The CHAP secrets of the selected record cannot be viewed because
API authentication is disabled.
Action You must have API authentication enabled to complete any tasks
involving CHAP secret management. The SAN management
application will only be able to read the stored CHAP secrets if
authentication is turned on. When a user clicks the OK button, the
window disappears. After a security administrator clicks the OK
button, the CHAP Secret editing dialog box will be displayed and the
administrator can type the secret. The field for the existing CHAP
secret will be blank.
Description The message displays when the user attempts to change the
interoperability mode to open fabric and the default zone is enabled.
Description A time out was reached waiting for the Switch to respond to the
action.
Action Retry the operation later. If the condition persists, contact support
personnel.
Description The firmware level is below 6.0, and the user attempted to change the
Management Style.
Action Select Maintenance > Set Online State and click Set Offline. Then change
the management style. Set the Director back online when finished.
Action Take the appropriate actions to set the Director offline before
attempting the configuration change.
Description The Server platform could not process the current request because it
is busy handling a request from another Element Manager.
Action Retry the operation later. If the condition persists, contact support
personnel.
Action Disable Enterprise Fabric Mode through the Enterprise Fabric Mode
dialog box in your SAN Management application, then disable the
parameters.
Description Deletion of the IPL address configuration was attempted and was not
allowed.
Description The link from the Server platform to the Director is not available.
Message This feature has not been installed. Please contact your sales
representative.
Description Indicator that the feature has not been installed on this Director.
Message This feature key does not include all of the features currently
installed and cannot be activated while the Director is online.
Description The feature set currently installed for this system contains features
that are not being installed with the new feature key. To activate the
new feature key, you must set the Director offline. Activating the new
feature set, however, will remove current features not in the new
feature set.
Action Set the Director offline through the Set Online State dialog box, then
activate the new feature key using the Configure Feature Key dialog
box.
Message This feature key does not include all of the features currently
installed. Do you want to continue with feature key activation?
Description The feature set currently installed for this system contains features
that are not being installed with the new feature key.
Action Click Yes to activate the feature key and remove current features not
in the new feature set or No to cancel.
Description The user tried to download a firmware release that is not compatible
with the current product configuration.
Description Could not save data collection file to the specified drive (hard drive,
network).
Description User does not have the rights to perform this action.
A
accelerator A short-cut keystroke method to perform a menu operation. Menu options may
have accelerator keys listed to the right of the menu option. Use the listed
accelerator to perform the menu option’s function when no menu is selected
for the window '.
access The ability and means necessary to store data in, to retrieve data from, to
transfer data into, to communicate with, or to make use of any resource of a
storage device, a system, or area such as random access memory (RAM) or a
register.
access control A list of all devices that can access other devices across the network and the
permissions associated with that access. 6HHDOVRpersistent binding; zoning.
Glossary g-1
active configuration In FICON management style, the Director or Switch configuration that is
determined by the status of the connectivity attributes.
active Active FRU. A FRU that is currently operating as the active, and not the backup
field-replaceable unit FRU. 6HHDOVR backup field-replaceable unit.
active port address In FICON management style, an active port address matrix is the port address
matrix matrix that is currently active or operational on an attached Director or switch.
active zone set A single zone set that is active in a multiswitch fabric and is created when a
specific zone set is enabled. This zone set is compiled by checking for
undefined zones or aliases. 6HHDOVRzone; zone set.
address (1) To refer to a device or an item of data by its address $,. (2) The location in
a computer where data is stored. (3) In data communication, the unique code
assigned to each device or computer connected to a network. (4) The identifier
of a location, source, or destination '
address resolution ARP. The protocol by which a host computer maintains a cache of address
protocol translations, allowing the physical address of the computer to be derived from
the Internet address '
agent Software that processes queries on behalf of an application and returns replies.
allowed connection In FICON management style, in a Director or switch, the attribute that when
set, establishes dynamic connectivity capability. &RQWUDVWZLWK blocked
connection. 6HH connectivity attribute. 6HHDOVR dynamic connectivity;
unblocked connection.
allowed port In FICON management style, this attribute establishes dynamic connectivity
connection capability.
American National ASCII. A standard character set consisting of 7-bit coded characters (8-bit
Standard Code for including parity check) used for information exchange between systems and
Information equipment '
Interchange
American National ANSI. A national organization consisting of producers, consumers, and general
Standards Institute interest groups that establishes procedures by which accredited organizations
create and maintain industry standards in the United States $'.
application (1) The use to which a data processing system is put, for example, a payroll
application, an airline reservation application, or a network application. (2) A
collection of software components used to perform specific types of work on a
computer '.
application client The source object of the small computer system interface (SCSI) commands and
destination for the command responses.
application program (1) A program that is specific to the solution of an application problem.
Synonymous with application software. (2) A program written for or by a user that
applies to the user’s work, such as a program that does inventory control or
payroll. (3) A program used to connect and communicate with stations in a
network, enabling users to perform application-oriented activities ,.
application program API. A set of programming functions and routines that provides access between
interface protocol layers, such as between an application and network services.
application-specific ASIC. An asynchronous transfer mode (ATM) local area network/ wide area
integrated circuit network (LAN/WAN) circuit using cell relay transport technology. ASICs are
designed for a specific application or purpose, such as implementing the
lower-layer Fibre Channel protocol (FC-0). They are particularly suited to sending
video and audio information, as well as text. ASICs differ from general-purpose
devices such as memory chips or microprocessors.
arbitrated loop One of the three connection topologies offered by Fibre Channel protocol. Up to
126 node ports and one fabric port can communicate without the need for a
separate switched fabric. 6HHDOVR point-to-point.
arbitrated loop AL_PA. A 1-byte value used in the arbitrated loop topology that identifies loop
physical address ports (L_Ports). This value then becomes the last byte of the address identified for
each public L_Port on the loop.
arbitration Process of selecting one device from a collection of devices that request service
simultaneously.
array Two or more disk drives connected to a host, and connected and configured such
that the host perceives the disk drives to be one disk.
Audit Log Log summarizing actions (audit trail) made by the user.
Director or Switch $XGLW/RJ. Log displayed through the Element Manager
application that provides a history of all configuration changes made to an
individual Director or Switch from the respective Element Manager application, a
g-3
Glossary
simple network management protocol (SNMP) management workstation, a
Fibre Connection (FICON) or open systems host, or the maintenance port. This
information is useful for administrators and users.
B
b 6HH bit.
B 6HH byte.
backup diskette A diskette that contains duplicate information from an original diskette. The
backup diskette is used in case information on the original diskette is
unintentionally changed or destroyed '.
backup Backup FRU. When an active FRU fails, an identical backup FRU takes over
field-replaceable unit operation automatically (failover) to maintain Director or Switch and Fibre
Channel link operation. 6HHDOVRactive field-replaceable unit
bandwidth (1) The amount of data that can be sent over a given circuit. (2) A measure of
how fast a network can move information, usually measured in Hertz (Hz).
Basic management Software that bundles the Element Manager application for a specific Switch or
application Director and the SAN Management application on a customer-supplied server
platform. Functionally, Basic and the standard applications installed on a
shipped management server are identical, except that Basic does not support
the Call-Home feature. In addition, Basic requires installation of the remote
client application to a remote computer running client software from the Basic
CD.
baud The unit of signaling speed, expressed as the maximum number of times per
second the signal can change the state of the transmission line or other
medium. The units of baud are seconds to the negative 1 power. Note: With
Fibre Channel scheme, a signal event represents a single transmission bit.
beaconing Use of light-emitting diodes (LEDs) on ports, port cards, field-replaceable units
(FRUs), and directors to aid in the fault-isolation process. When enabled, active
beaconing causes LEDs to flash that the user can locate field-replaceable units
(FRU’s), switches, or directors in cabinets or computer rooms.
bit Abbreviated as b. (1) Binary digit, the smallest unit of data in computing, with
a value of zero or one '. (2) A bit is the basic data unit of all digital
computers. It is usually part of a data byte or data word; however, a single bit
bit error rate Abbreviated as ber. Ratio of received bits that contain errors to total of all bits
transmitted.
blocked connection In FICON management style, in a Director or switch, the attribute that, when set,
removes the communication capability of a specific port. A blocked address is
disabled so that no other address can be connected to it. A blocked attribute
supersedes a dedicated or prohibited attribute on the same address. &RQWUDVWZLWK
allowed connection; unblocked connection. 6HH connectivity attribute. 6HHDOVR
dynamic connection; dynamic connectivity.
blocked port In a Director or switch, the attribute that when set, removes the communication
capability of a specific port. A blocked port continuously transmits the offline
sequence.
boot (1) To start or restart a computer. (2) Loading the operating system.
bridge (1) An attaching device that connects two local area network (LAN) segments to
allow the transfer of information from one LAN segment to the other. A bridge can
connect the LAN segments directly by network adapters and software in a single
device, or can connect network adapters in two devices through software and use
of a telecommunication link between the two adapters '. (2) A functional unit
that connects two LANs that use the same logical link control protocol, but may
use different media access control protocols '7.(3) A device that connects and
passes packets between two network segments that use the same communications
protocol.
bridge port B_Port. (1) In Fibre Channel protocol, a fabric inter-element port used to connect
bridge devices with E_Ports on a switch. B_Ports provide a subset of E_Port
functionality. (2) Physical interface between the fabric (switch) and a bridge
device. The interface is identical to an expansion port (E_Port), but it does not
participate in full expansion port protocols. As such, it does not assign domain IDs
or participate in routing protocol. 6HHDOVRexpansion port; fabric loop port; fabric
port; generic port; hub port; node loop port; node port; segmented expansion port.
buffer Storage area for data in transit. Buffers compensate for differences in processing
speeds between devices.6HH buffer-to-buffer credit.
buffer-to-buffer credit BB_Credit. (1) The maximum number of receive buffers allocated to a transmitting
node port (N_Port) or fabric port (F_Port). Credit represents the maximum
number of outstanding frames that can be transmitted by that N_Port or F_Port
without causing a buffer overrun condition at the receiver. (2) The maximum
number of frames a port can transmit without receiving a receive ready signal
from the receiving device. BB_Credit can be adjustable to provide different levels
of compensation.
g-5
Glossary
bypassed port If a port is bypassed, all serial channel signals route past the port. A device
attached to the port cannot communicate with other devices in the loop.
byte Abbreviated as B. A byte generally equals eight bits, although a byte can equal
from four to ten bits.
C
cache memory A memory subsystem that stores recently used instructions and data for fast
access. The larger the cache, the more information that can be stored, and the
fewer time-consuming memory accesses a central processing unit (CPU) must
make to complete a task. Cache is very fast memory, typically static random
access memory (SRAM).
call-home Product feature which enables the server platform to automatically contact a
support center and report system problems. The support center server accepts
calls from the server platform logs reported events, and can notify one or more
support center representatives.
cascade Linking two or more Fibre Channel switches to form a larger Switch or fabric.
The switched link through fiber cables attached between one or more
expansion ports (E_Ports). 6HHDOVRexpansion port.
cell In FICON management style, in a port address matrix, a cell is the intersection
point between a horizontal port address and a vertical port address. A selected
cell is indicated by the cell cursor.
central memory CMM. In the ED-5000 Director, a circuit card that provides the storage area for
module card Fibre Channel ports to deposit and retrieve Fibre Channel frames. Each port is
allocated a portion of this memory divided into a fixed number of frame
buffers.
CMM. In the ED-1032 Director, a circuit card that provides the storage area for
Fibre Channel ports to deposit and retrieve Fibre Channel frames. Each port is
allocated a portion of this memory divided into a fixed number of frame
buffers.
central processing CPU. The heart of the computer, this is the component that actually executes
unit instructions.
Class 2 Fibre Channel Provides a connectionless (not dedicated) service with notification of delivery
service or nondelivery between two node ports (N_Ports).
Class 3 Fibre Channel Provides a connectionless (not dedicated) service without notification of
service delivery or nondelivery between two node ports (N_Ports). 6\QRQ\PRXVZLWK
datagram.
Class F Fibre Channel Used by switches to communicate across interswitch links (ISLs) to configure,
service control, and coordinate a multiswitch fabric.
client A node that requests network services from a server. Typically the node is a
personal computer (PC).
client/server Architectural model that functionally divides that execution of a unit of work
computing between activities initiated by an end user or program (client) and those
maintaining data (servers). Originally thought to make mainframes obsolete.
community name A name that represents an simple network management protocol (SNMP)
(SNMP) community that the agent software recognizes as a valid source for SNMP
requests. A product recognizes a management station as a valid recipient for trap
information when the station’s community names are configured.
community profile Information that specifies which management objects are available to what
management domain or simple network management protocol (SNMP)
community name.
community (SNMP) A relationship between an simple network management protocol (SNMP) agent
and a set of SNMP managers that defines authentication, access control, and proxy
characteristics.
configuration data The collection of data that results from configuring product and system operating
parameters. For example, configuring operating parameters, simple network
management protocol (SNMP) agent, zoning configurations, and port
configurations through the Element Manager application, results in a collection of
configuration data. Configuration data includes: identification data, port
configuration data, operating parameters, simple network management protocol
(SNMP) configuration, and zoning configuration.
connectivity attribute In FICON management style, the characteristic that determines port address status
for the Director or switch. 6HHallowed connection; blocked connection;
connectivity control; dynamic connection; dynamic connectivity; unblocked
connection.
connectivity control In FICON management style, in a Director or switch, the method used to change
port address connectivity attributes and determine the communication capability
of the link attached to the port '.6HHDOVRactive port address matrix;
connectivity attribute.
g-7
Glossary
connector 6\QRQ\PIRUoptical fiber connector.
control processor CTP card. Circuit card that contains the Director or Switch microprocessor. The
card CTP card also initializes hardware components of the system after power-on.
The card may contain an RJ-45 twisted pair connector.
control unit port CUP. An internal Director or Switch port on the control processor (CTP) card
(labelled FE) that communicates with channels to report error conditions and
link initialization '.
cyclic redundancy CRC. System of error checking performed at both the sending and receiving
check station using the value of a particular character generated by a cyclic algorithm.
When the values generated at each station are identical, data integrity is
confirmed.
D
DASD 6HH direct access storage device.
database A collection of data with a given structure for accepting, storing, and providing
on-demand data for multiple users. 7
data center A collection of servers and data storage devices, usually in one location,
administered by an information technology/information services (IT/IS)
manager.
data directory Critical information for all managed products (including directors and
switches). Information stored here includes:
• All configuration data
• All log files
• Call-home settings
• Firmware library
• Zoning library
default zone A zone that contains all attached devices that are not members of a separate
active zone.
destination address D_ID. An address identifier that indicates the targeted destination of a data frame.
device (1) Mechanical, electrical, or electronic hardware with a specific purpose '. 6HH
DOVR managed product.
(2) 6HH node.
diagnostics (1) The process of investigating the cause or nature of a problem in a product or
system '. (2) Procedures or tests used by computer users and service personnel
to diagnose hardware or software problems '.
dialog box A pop-up window in the user interface with informational messages or fields to be
modified or completed with desired options.
direct access storage DASD. (1) Generic classification for a storage peripheral that can respond directly
device to random requests for information. Usually refers to a disk drive. (2) A storage
device that provides direct access to data, and in which access time is independent
of data location.
direct current director An intelligent, highly-available, Fibre Channel Switch providing any-to-any port
connectivity between nodes (end devices) on a switched fabric. The Director sends
data transmissions (data frames) between nodes in accordance with the address
information present in the frame headers of those transmissions.
DNS name Domain name system or domain name service. Host or node name for a device or
managed product that is translated to an Internet protocol (IP) address through a
domain name server.
domain A Fibre Channel term describing the most significant byte in the node port
(N_Port) identifier for the Fibre Channel device. It is not used in the Fibre Channel
small computer system interface (FC-SCSI) hardware path ID. It is required to be
the same for all SCSI targets logically connected to a Fibre Channel adapter.
domain name server In TCP/IP, a server program that supplies name-to-address translation by
mapping domain name to internet addresses. '
drop-down menu A menu that appears when a heading in a navigation bar is clicked on with the
mouse. The objects that appear in the drop-down menus are organize by their
headings in the navigation bar.
dump The file that is created when the Director detects a software fault. It contains
various data fields that, when extracted, assist in the debugging of software.
g-9
Glossary
dynamic connection A connection between two ports, established or removed by the directors and
that, when active, appears as one continuous link. 6HH connectivity attribute.
6HHDOVRallowed connection; blocked connection; dynamic connectivity;
unblocked connection.
dynamic connectivity The capability that allows connections to be established and removed at any
time.
dynamic random DRAM. Random access memory that resides in a cell comprised of a capacitor
access memory and transistor. DRAM data deteriorates (that is, is dynamic) unless the
capacitor is periodically recharged by the controlling microprocessor. DRAM is
slow, but relatively inexpensive '. &RQWUDVWZLWK static random access
memory.
E
EFCM Basic interface The interface provides a graphical user interface (GUI) similar to the Element
Manager application, and supports Director or Switch configuration, statistics
monitoring, and basic operations. With Director or Switch firmware installed,
administrators or operators with a browser-capable personal computer (PC)
and an Internet connection can monitor and manage the Director or Switch
through an embedded web server interface.
electronic data EDI. The electronic transfer of preformatted business documents, such as
interchange purchase orders and bills of lading, between trading partners.
Electronic Industries EIA. The governing body that publishes recommended standards for physical
Association devices and associated interfaces. For example, RS-232 is the EIA standard that
defines computer serial port connectivity '.
electronic mail E-mail. Any communications service that permits the electronic transmission
and storage of messages and attached or enclosed files.
Element Manager Application that implements the management user interface for a Director or
application switch. (1) In your SAN Management application application, the software
component that provides a graphical user interface for managing and
monitoring Switch products. When a product instance is opened from your
SAN Management application, the corresponding Element Manager
application is invoked.
enhanced availability EAF. A backup field-replaceable unit (backup FRU) that is ordered and
feature installed to provide redundancy and reduce disruption in case of failure '.
enterprise The entire storage system. The series of computers employed largely in
high-volume and multi-user environments such as servers or networking
applications; may include single-user workstations required in demanding
design, engineering and audio/visual applications.
Enterprise Systems ESA™. A computer architecture introduced by IBM in 1988 as ESA/370. The
Architecture architecture added access registers to improve virtual memory management
Enterprise Systems ESCON™. An IBM architecture, technology, and set of products and services
Connection introduced in 1990 that provides a dynamically connected environment using
fiber-optic cables as the data transmission medium '.
Enterprise Systems ESCON™ Director. A device that provides connectivity capability and control for
Connection Director attaching any two links to each other through the ESON channel. Specifically, any
of the hardware devices provided for interconnecting IBM-compatible mainframe
equipment through the proprietary ESCON channel connection. IBM’s model
numbers for ESCON directors include the 9031 and 9033.
error-detect time-out E_D_TOV. The time the Switch waits for an expected response before declaring an
value error condition.
error message Indication that an error has been detected '. 6HHDOVR information message;
warning message.
Ethernet A widely implemented local area network (LAN) protocol that uses a bus or star
topology and serves as the basis for the Institute of Electrical and Electronics
Engineers (IEEE) 802.3 standard, which specifies the physical and software layers.
Ethernet hub A device used to connect the server platform and the directors it manages.
event code A three-digit number that specifies the exact event that occurred. This code
provides information on system failures, such as hardware failures, failure
locations, or general information on normal system events.
Event Log Director or Switch (YHQW/RJ. Log displayed through the Element Manager
application that provides a history of events for an individual Director or switch,
such as system events, degraded operation, FRU failures, FRU removals and
replacements, port problems, Fibre Channel link incidents, and communication
problems between the server platform and Switch or Director product. All
detected software and hardware failures are recorded in the (YHQW/RJ. The
information is useful to maintenance personnel for fault isolation and repair
verification. 6HHDOVR Audit Log; Hardware Log; Link Incident Log; Threshold
Alert Log.
exchange A term that refers to one of the Fibre Channel protocol “building blocks,”
composed of one or more nonconcurrent sequences.
g-11
Glossary
expansion port E_Port. Physical interface on a Fibre Channel Switch within a fabric, that
attaches to an E_Port on another Fibre Channel Switch through an interswitch
link (ISL) to form a multiswitch fabric. 6HHDOVRbridge port; fabric loop port;
fabric port; generic port; hub port; node loop port; node port; segmented
expansion port.
explicit fabric login The process by which a node port (N_Port) learns the characteristics of the
fabric to which it is attached by sending a fabric login command (FLOGI) frame
to the fabric port (F_Port) address FFFFFE (hexadecimal).
extended distance XDF. A means to extend the propagation distance of a fiber-optic signal.
feature
F
fabric Entity that interconnects node ports (N_Ports) and is capable of routing
(switching) Fibre Channel frames, using the destination ID information in the
Fibre Channel frame header accompanying the frames. A Switch is the smallest
entity that can function as a complete switched fabric topology.
fabric login The process by which node ports (N_Ports) establish their operating
parameters. During fabric login, the presence or absence of a fabric is
determined, and paths to other N_Ports are mapped. Specific operating
characteristics for each port, such as buffer-to-buffer credit (BB_Credit) and
data frame size, are also established.
fabric login command FLOGI. The command that establishes the initial operating parameters and
topology for a fabric. The command is accepted by a fabric port (F_Port) '.
fabric loop port FL_Port. A fabric port (F_Port) that contains arbitrated loop (AL) functions
associated with the Fibre Channel arbitrated loop (FC-AL) topology. The access
point of the fabric for physically connecting an arbitrated loop of node loop
ports (NL_Ports).6HHDOVRbridge port; expansion port; fabric port; generic port;
hub port; node loop port; node port; segmented expansion port.
fabric port F_Port. Physical interface within the fabric that connects to a node port
(N_Port) through a point-to-point full duplex connection. 6HHDOVRbridge port;
expansion port; fabric loop port; generic port; hub port; node loop port; node
port; segmented expansion port.
fabric services The services that implement the various Fibre Channel protocol services that
are described in the standards. These services include the fabric controller
(login server), name server, and server platform.
fabric switches A device which allows the communication between multiple devices using
Fibre Channel protocols. A fabric Switch enables the sharing bandwidth and
end-nodes using basic multiplexing techniques.
FC-0 The Fibre Channel layer that describes the physical link between two ports,
including the transmission media, transmitter and receiver circuitry, and interfaces
'. This consists of a pair of either optical fiber or electrical cables (link media)
along with transceiver circuitry which work together to convert a stream of bits at
one end of the link to a stream of bits at the other end.
FC-1 Middle layer of the Fibre Channel physical and signaling interface (FC-PH)
standard, defining the 8B/10B encoding/decoding and transmission protocol.
FC-2 The Fibre Channel layer that specifies the signaling protocol, rules, and
mechanisms required to transfer data blocks. The FC-2 layer is very complex and
provides different classes of service, packetization, sequencing, error detection,
segmentation, and reassembly of transmitted data '.
FC-3 The Fibre Channel layer that provides a set of services common across multiple
node ports (N_Ports) of a Fibre Channel node. The services are not commonly
used and are essentially reserved for Fibre Channel architecture expansion '.
FC-4 The Fibre Channel layer that provides mapping of Fibre Channel capabilities to
upper level protocols (ULP), including Internet protocol (IP) and small computer
system interface (SCSI) '.
feature key A unique key to enable additional product features. This key is entered into the
&RQILJXUH)HDWXUH.H\ dialog box in the Element Manager application to activate
optional hardware and software features. Upon purchasing a new feature, a
feature key is provided to the customer.
g-13
Glossary
fiber The fiber-optic cable made from thin strands of glass through which data in the
form of light pulses is transmitted. It is used for high-speed transmissions over
medium (200 m) to long (10 km) distances.
fibre A generic Fibre Channel term used to cover all transmission media types
specified in the Fibre Channel Physical Layer (FC-PH) standard such as optical
fiber, copper twisted pair, and copper coaxial cable.
Fibre Channel FC. Integrated set of standards recognized by American National Standards
Institute (ANSI) which defines specific protocols for flexible information
transfer. Logically, a point-to-point serial data channel, structured for high
performance.
Fibre Channel address A 3-byte node port (N_Port) identifier which is unique within the address
domain of a fabric. Each port may choose its own identifier, or the identifier
may be assigned automatically during fabric login.
Fibre Channel FC-AL. A high-speed (100 Mbps) connection which is a true loop technology
arbitrated loop where ports use arbitration to establish a point-to-point circuit. Data can be
transferred in both directions simultaneously, achieving a nominal transfer rate
between two devices of 200 Mbps.
Fibre Channel FCA. The FCA is a non-profit corporation consisting of over 150 members
Association throughout the world. Its mission is to nurture and help develop the broadest
market for Fibre Channel products through market development, education,
standards monitoring, and fostering interoperability among members’
products.
Fibre Channel fabric FCFE-MIB. A table of variables available to network management stations and
element resident on a Switch or director. Through the simple network management
management protocol (SNMP) these pointers can be manipulates to monitor, control, and
information base configure the Switch or director.
Fibre Channel Industry FCIA. A corporation consisting of over 100 computer industry-related
Association companies. Its goal is to provide marketing support, exhibits, and tradeshows
for its member companies. The FCIA complements activities of the various
standards committees.
Fibre Channel I/O FCC-IOC. In a director, the integrated controller on the control processor (CTP)
controller card dedicated to the task of managing the embedded Fibre Channel port. In a
Director or switch, the FCC-IOC controls the embedded Fibre Channel port
and configures the ports’ application-specific integrated circuits (ASICs).
Fibre Channel IP FC IP. The default FC IP on a new Switch is a temporary number divided by the
address switch’s World Wide Name (WWN). The system administrator needs to enter a
valid IP address.
Fibre Channel FC-PH. The American National Standards Institute (ANSI) document that
physical and specifies the FC-0 (physical signaling), FC-1 (data encoding), and FC-2 (frame
signaling interface construct) layers of the Fibre Channel protocol '.
Fibre Channel American National Standards Institute (ANSI) standard that provides a common,
standard efficient data transport system that supports multiple protocols. The architecture
integrates both channel and network technologies, and provides active, intelligent
interconnection among devices. All data transmission is isolated from the control
protocol, allowing use of point-to-point, arbitrated loop, or switched fabric
topologies to meet the needs of an application.
Fibre Connection FICON. An IBM set of products and services introduced in 1999 that is based on
the Fibre Channel Standard. FICON technology uses fiber-optic cables as the data
transmission medium, and significantly improves I/O performance (including
one Gb/s bi-directional data transfer). FICON is designed to coexist with
ESCON™ channels, and FICON-to-ESCON control unit connections are
supported '.
fibre port module FPM. A one Gb/s module that contains four generic ports (G_Ports).
FICON Management An optional feature that can be enabled on the Director or Switch or Switch
Server through the Element Manager application. When enabled, host control and
management of the Director or Switch or Switch is provided through an S/390
Parallel Enterprise or 2/Series Server attached to a Director or Switch or Switch
port.
FICON management The management style that is most useful when attaching to IBM S/390 Enterprise
style Servers.6HHDOVRopen systems management style; management style.
field-replaceable unit FRU. Assembly removed and replaced in its entirety when any one of its
components fails '. 6HH active field-replaceable unit.
file server A computer that stores data centrally for network users and manages access to
that data.
file transfer protocol FTP. A transmission control protocol/Internet protocol (TCP/IP) -based
client/server protocol used to transfer files to and from a remote host. Does not
perform any conversion or translation.
firmware Embedded program code that resides and runs on, for example, directors,
switches, and hubs.
FLASH memory Reusable nonvolatile memory that is organized as segments for writing, and as
bytes or words for reading. FLASH memory is faster than read-only memory, but
slower than random access memory '.
g-15
Glossary
FPM 6HH fibre port module.
G
gateway address (1) In transmission control protocol/Internet protocol (TCP/IP), a device that
connects two systems that use the same or different protocols. (2) In TCP/IP,
the address of a router to which a device sends frames destined for addresses
not on the same physical network (for example, not on the same Ethernet) as
the sender. The hexadecimal format for the gateway address is
XXX.XXX.XXX.XXX.
Gb 6HH gigabit.
GB 6HH gigabyte.
generic port G_Port. Physical interface on a Director or Switch that can function either as a
fabric port (F_Port) or an expansion port (E_Port), depending on the port type
to which it connects. 6HHDOVRbridge port; expansion port; fabric loop port;
fabric port; hub port; node loop port; node port; segmented expansion port.
generic port module GPM card. A port card that implements four generic ports (G_Ports) and
card provides the physical connection point for links to Fibre Channel devices.
gigabit Gb. A unit of measure for data storage, equal to approximately 134,217,728
bytes. Approximately one eighth of a gigabyte.
gigabit interface GbIC. A removable module that converts an electrical serial data stream to an
converter optical or amplified electrical serial data stream. Contains connector for
attaching fiber-optic cable.
gigabyte GB. A unit of measure for data storage, equal to 1,073,741,824 bytes. Generally
approximated as one billion bytes '.
GSM card A generic port (G_Port) module card containing shortwave laser ports for
multimode fiber-optic cables.
H
hard drive An electromechanical device used for information storage and retrieval,
incorporating one or more rotating disks on which data is recorded, stored, and
read magnetically.
Hardware Log Director or Switch +DUGZDUH/RJ. Log displayed through the Element Manager
application that provides a history of FRU removals and replacements (insertions)
for an individual Director or switch. The information is useful to maintenance
personnel for fault isolation and repair verification. 6HHDOVR Audit Log; Event Log;
Link Incident Log; Threshold Alert Log.
hardware The console runs the Hardware Management console application (HWMCA), and
management console is the operations and management personal computer (PC) platform for S/390 and
z/Series servers.
hexadecimal A numbering system with base of sixteen; valid numbers use the digits 0 through 9
and characters A through F, where A represents 10 and F represents 15 '.
homogeneous fabric A fabric consisting of only one vendor’s products. &RQWUDVWZLWK heterogeneous
fabric.
hop (1) Data transfer from one node to another node. (2) Describes the number of
switches that handle a data frame from its origination point through it’s
destination point.
host The computer that other computers and peripherals connect to.
g-17
Glossary
host bus adapter HBA. Logic card that provides a link between the server and storage
subsystem, and that integrates the operating systems and I/O protocols to
ensure interoperability.
hub (1) In Fibre Channel protocol, a device that connects nodes into a logical loop
by using a physical star topology. (2) In Ethernet, a device used to connect the
server platform and the directors it manages.
hub port H_Port. In arbitrated loop devices, a port that uses arbitrated loop protocols.
The physical interface that attaches to a loop device, either an end device or
another loop interconnect device (hub).
I
ID 6HH identifier.
identifier ID. (1) One or more characters used to identify or name a data element and
possibly to indicate certain properties of that data element '7. (2) A
sequence of bits or characters that identifies a program, device, or system to
another program, device, or system. 6HHDOVR port name.
inband management Management of the Director or Switch through Fibre Channel. An interface
connection to a port card. &RQWUDVWZLWK out-of-band management.
industry standard ISA. Bus architecture designed for personal computers (PCs) that use an Intel
architecture 80386, 80486, or Pentium microprocessor. ISA buses are 32 bits wide and
support multiprocessing.
information message Message notifying a user that a function is performing normally or has
completed normally. 6HHDOVRerror message; warning message.
initial machine load IML. Hardware reset for all installed control processor (CTP) cards on the
Director or switch. This reset does not affect other hardware. It is initiated by
pushing the IML button on a director’s or switch’s operating panel.
initial program load IPL. The process of initializing the device and causing the operating system to
start. An IPL may be initiated through a menu option or a hardware button.
initial program load IPL configuration. In FICON management style, information stored in a
configuration Director or switch’s nonvolatile memory that contains default configurations.
The Director or Switch loads the file for operation when powered on.
Institute of Electrical IEEE. An organization of engineers and technical professionals that promotes
and Electronics the development and application of electronic technology and allied sciences.
Engineers
Internet protocol IP. Network layer for the transmission control protocol/Internet protocol
(TCP/IP) protocol used on Ethernet networks. IP provides packet routing,
fragmentation, and reassembly through the data link layer '.
Internet protocol IP address. Unique string of numbers (in the format xxx.xxx.xxx.xxx) that
address identifies a device on a network.
interoperability mode Interpol mode. A management style set through management software that allows
products to operate in homogeneous or heterogeneous fabrics.
interswitch link ISL. Physical expansion port (E_Port) connection between two directors in a fabric.
J
Java An object-oriented programming language derived from C++ that produces code
that is platform independent. Developed by Sun Microsystems designed for
distribution and distributable applications development. Java applications require
a program called the Java Virtual Machine (JVM) to execute. JVMs have been
developed for many of the mainstream platforms and operating systems.
L
LAN 6HH local area network.
g-19
Glossary
light-emitting diode LED. A semiconductor chip that emits visible or infrared light when electricity
passes through it. LEDs are used on Switch or Director field-replaceable units
(FRUs) and the front bezel to provide visual indications of hardware status or
malfunctions.
link Physical connection between two devices on a switched fabric. A link consists
of two conductors, one used for sending and the other for receiving, thereby
providing a duplex communication path.
link incident LIN. Interruption to link due to loss of light or other causes. 6HHDOVR link
incident alerts.
link incident alerts A user notification, such as a graphic symbol in the Element Manager
application +DUGZDUH9LHZ that indicates that a link incident has occurred. 6HH
DOVR link incident.
Link Incident Log Director or Switch /LQN,QFLGHQW/RJ. Log displayed through the Element
Manager application that provides a history of Fibre Channel link incidents
(with associated port numbers) for an individual Director or switch. The
information is useful to maintenance personnel for isolating port problems
(particularly expansion port (E_Port) segmentation problems) and repair
verification. 6HHDOVR Audit Log; Event Log; Hardware Log; Threshold Alert
Log.
load balancing Ability to evenly distribute traffic over multiple interswitch links within a
fabric. Load balancing on directors and switches takes place automatically.
local area network LAN. A computer network in a localized geographical area (for example, a
building or campus), whose communications technology provides a
high-bandwidth medium to which many nodes are connected '. 6HHDOVR
storage area network.
logical port address In a Director or switch, the address used to specify port connectivity
parameters and to assign link addresses for the attached channels and control
units.
logical Switch number LSN. A two-digit number used by the I/O configuration program (IOCP) to
identify a Director or Switch '.
logical unit number LUN. In Fibre Channel addressing, a logical unit number is a number assigned
to a storage device which, in combination with the storage device’s node port’s
World Wide Name, represents a unique identifier for a logical device on a
storage area network. Peripherals use LUNs to represent addresses. A small
computer system interface (SCSI) device’s address can have up to eight LUNs.
loop A loop is a configuration of devices connected to the fabric via a fabric loop
port (FL_Port) interface card.
loop address In Fibre Channel protocol, a term indicating the unique ID of a node in Fibre
Channel loop topology, sometimes referred to as a loop ID.
loopback test Test that checks attachment or control unit circuitry, without checking the
mechanism itself, by returning the output of the mechanism as input.
loop initialization LIP. In an arbitrated loop device, a process by which devices connected to hub
primitive ports (H_Ports) on the arbitrated loop device notify other devices and the Switch
of the presence in the loop by sending LIP sequences and subsequent frames
through the loop. This process allows linked arbitrated loop devices to perform
fabric loop port (FL_Port) arbitration as they link through hub ports.
loop master In an arbitrated loop device, a reference to the loop master World Wide Name
(WWN) field in the /RRS9LHZ, the loop master is the arbitrated loop device that is
responsible for allocating arbitrated loop physical addresses (AL-PAs) on the loop.
An arbitrated loop device becomes the loop master through arbitration when there
are multiple arbitrated loop devices on the loop. The arbitrated loop device with
the lowest WWN becomes the loop master.
loop switches Loop switches support node loop port (NL_Port) Fibre Channel protocols.
Switches sold as loop support but upgradeable to fabric switches recounted as
loop switches.
M
MAC address 6HH media access control address.
maintenance port Connector on the Director or Switch where a PC running an American National
Standard Code for Information Interchange (ASCII) terminal emulator can be
attached or dial-up connection made for specialized maintenance support.
managed product Hardware product that can be managed with the Element Manager application.
Directors and switches are managed products. 6HHDOVR device.
management MIB. Related set of software objects (variables) containing information about a
information base managed device and accessed via simple network management protocol (SNMP)
from a network management station.
management session A session that exists when a user logs on to your SAN Management application
Your SAN Management application can support multiple concurrent management
sessions. The user must specify the network address of your SAN Management
application’s server at logon time.
management style In directors or switches, in managed products, a selection between FICON and
open systems management style. 6HHDOVR open systems management style;
FICON management style.
g-21
Glossary
media access control MAC address. Hardware address of a node (device) connected to a network.
address
menu A list of items displayed on a monitor from which a user can make a selection.
menu bar The menu bar is located across the top of a monitor window. Pull-down menus
are displayed by clicking on the menu bar option with the mouse, or by
pressing $OW with the underlined letter of the name for the menu bar option '.
N
name server (1) In TCP/IP, VHH domain name server. (2) In Fibre Channel protocol, a server
that allows node ports (N_Ports) to register information about themselves. This
information allows N_Ports to discover and learn about each other by sending
queries to the name server.
name server zoning Node port (N_Port) access management that allows N_Ports to communicate if
and only if they belong to a common name server zone.
network interface NIC. An expansion board inserted into a computer so the computer can be
card connected to a network. Most NICs are designed for specific types of networks,
protocols, and medias, although some can serve multiple networks.
network management The broad subject of managing computer networks. There exists a wide variety
of software and hardware products that help network system administrators
manage a network. Network management covers a wide area, including
security, performance, and reliability.
never principal The setting that prevents the product from becoming the principal Switch for a
fabric.
nickname Alternate name assigned to a World Wide Name for a node, Director or Switch
in the fabric.
node loop port NL_Port. A physical interface within an end device (node) that participates in a
loop containing one or more fabric loop ports (FL_Ports) or other NL_Ports. 6HH
DOVRbridge port; expansion port; fabric loop port; fabric port; generic port; hub
port; node port; segmented expansion port.
node port N_Port. Physical interface within an end device that can connect to an fabric port
(F_Port) on a switched fabric or directly to another N_Port (in point-to-point
communications). 6HHDOVRbridge port; expansion port; fabric loop port; fabric
port; generic port; hub port; node loop port; segmented expansion port.
node port identifier N_Port ID. In Fibre Channel protocol, a unique address identifier by which an
N_Port is uniquely known. It consists of a domain (most significant byte), an area,
and a port, each 1 byte long. The N_Port ID is used in the source identifier (S_ID)
and destination identifier (D_ID) fields of a Fibre Channel frame.
nonvolatile random NV-RAM. RAM that retains its content when the device power is turned off.
access memory
O
offline Referring to data stored on a medium, such as tape or even paper, that is not
available immediately to the user.
offline sequence OLS. (1) Sequence sent by the transmitting port to indicate that it is attempting to
initialize a link and has detected a problem in doing so. (2) Sequence sent by the
transmitting port to indicate that it is offline.
offline state When the Switch or Director is in the offline state, all the installed ports are offline.
The ports transmit an offline sequence (OLS) and they cannot accept a login got
connection from an attached device. &RQWUDVWZLWK online state.
online Referring to data stored on the system so it is available immediately to the user.
online diagnostics Diagnostics that can be run by the customer engineer while the operational
software is running. These diagnostics do not impact user operations.
online state When the Switch or Director is in the online state, all of the unblocked ports are
allowed to log in to the fabric and begin communicating. Devices can connect to
the Switch or Director if the port is not blocked and can communicate with another
attached device if both devices are in the same zone, or if the default zone is
enabled. &RQWUDVWZLWK offline state.
g-23
Glossary
Open Systems OSI. A model that represents a network as a hierarchical structure of functional
Architecture layers. Each layer provides a set of functions that can be accessed and used by
the layer above. Layers are independent, in that implementation of a layer can
be changed without affecting other layers '.
open systems OSMS. An optional feature that can be enabled on the Director or Switch
management server through the Element Manager application. When enabled, host control and
management of the Director or Switch are provided through an Open System
Interconnection (OSI) device attached to a Director or Switch port.
open systems The mode that is used for open fabrics. See also management style; FICON
management style management style.
P
packet In Fibre Channel protocol, Logical unit of information (usually in the form of a
data frame) transmitted on a network. It contains a header (with all relevant
addressing and timing information), the actual data, and a trailer (which
contains the error checking function, usually in the form of a cyclic redundancy
check), and frequently user data.
persistent binding A form of server-level access control that uses configuration information to
bind a server to a specific Fibre Channel storage volume (or logical device),
using a unit number. 6HHDOVR access control.
personal computer PC. A portable computer that consists of a system unit, display, keyboard,
mouse, one or more diskette drives, and internal fixed-disk storage '.
point-to-point A Fibre Channel protocol topology that provides a single, direct connection
between two communication ports. The Director or Switch supports only
point-to-point topology '. 6HHDOVR arbitrated loop.
port address name A user-defined symbolic name of 24 characters or less that identifies a particular
port address.
port authorization Feature of the password definition function that allows an administrator to extend
operator-level passwords to specific port addresses for each Director or Switch
definition managed by a personal computer (PC). Port authorization affects only
operator-level actions for active and saved matrices '.
port card Field-replaceable hardware component that provides the port connections for fiber
cables and performs specific device-dependent logic functions.
port card map Map showing port numbers and port card slot numbers inside a hardware cabinet.
port name Name that the user assigns to a particular port through the Element Manager
application.6HHDOVR identifier. 6\QRQ\PRXVZLWK address name.
power-on self-test POST. Series of diagnostic tests that are run automatically by a device when the
power is turned on
preferred domain ID Configured value that a Switch requests from the Principal Switch. If the preferred
value is already in use, the Principal Switch assigns a different value.
principal switch In a multiswitch fabric, the Switch that allocates domain IDs to itself and to all
other switches in the fabric. There is always one principal Switch in a fabric. If a
Switch is not connected to any other switches, it acts as its own principal switch.
private device A loop device that cannot transmit a fabric login command (FLOGI) command to a
Switch or director, nor communicate with fabric-attached devices. &RQWUDVWZLWK
public device.
private loop A private loop is not connected to a switched fabric, and the switch’s embedded
expansion port (E_Port) and fabric loop port (FL_Port) are inactive. All devices
attached to the loop can only communicate with each other. &RQWUDVWZLWK public
loop.
product name User-configurable identifier assigned to a managed product. Typically, this name
is stored on the product itself. A Director or Switch product name can also be
accessed by a simple network management protocol (SNMP) manager as the
system name.
prohibited port In a Director or switch, in FICON management style, an attribute that removes
connection dynamic connectivity capability.
public device A loop device that can transmit a fabric login command (FLOGI) to a switch,
receive acknowledgement from the switch’s login server, register with the switch’s
name server, and communicate with fabric-attached devices. Public devices
communicate with fabric-attached devices through the switch’s bridge port
(B_Port) connection to a Director or switch. &RQWUDVWZLWK private device.
g-25
Glossary
public loop A public loop is connected to a switched fabric (through the Switch bridge port
(B_Port)), and the Switch has an active embedded fabric loop port (FL_Port)
that is user transparent. All devices attached to the loop can communicate with
each other, and public devices attached to the loop can communicate with
fabric-attached devices. &RQWUDVWZLWKprivate loop.
Q
Quad Fibre Channel QPM. The QPM card has four total ports and can either run two
Port Module 4 Gb/s ports, four 2 Gb/s ports, or a combination of one
4 Gb/s and two 2 Gb/s ports.
R
R_A_TOV 6HH resource allocation time-out value.
remote notification A process by which a system is able to inform remote users of certain classes of
events that occur on the system. E-mail notification and the configuration of
simple network management protocol (SNMP) trap recipients are two
examples of remote notification programs that can be implemented on
director-class switches.
remote computer Workstation, such as a personal computer (PC) or UNIX workstation, running
running client SAN Management and Element Manager client application software that can
software access the server platform over a local area network (LAN) connection.
rerouting delay An option that ensures that frames are delivered in order through the fabric to
their destination.
resource allocation R_A_TOV. R_A_TOV is a value used to time-out operations that depend on the
time-out value maximum possible time that a frame could be delayed in a fabric and still be
delivered.
SAN Management (1) Software application that is the system management framework providing the
application user interface for managing Fibre Channel Switch products. (2) The software
application that implements the management user interface for all managed
hardware products. The SAN Management application can run both locally on a
server platform and on a remote computer running client software.
secure sockets layer SSL. A protocol developed by Netscape for transmitting private documents via the
Internet. SSL works by using a public key to encrypt data that is transferred over
the SSL connection. Both Netscape Navigator and Internet Explorer support SSL,
and many web sites use the protocol to obtain confidential user information, such
as credit card numbers.
segment A fabric segments when one or more switches cannot join the fabric because of
various reasons. The Switch or switches remain as separate fabrics.
segmented Segmented E_Port. E_Port that has ceased to function as an E_Port within a
expansion port multiswitch fabric due to an incompatibility between the fabrics that it joins. 6HH
DOVRbridge port; fabric loop port; fabric port; generic port; hub port; node loop
port; node port.
serial crossbar SBAR. The assembly is responsible for Fibre Channel frame transmission from any
assembly Director or Switch port to any other Director or Switch port. Connections are
established without software intervention.
serial port A full-duplex channel that sends and receives data at the same time. It consists of
three wires: two that move data one bit at a time in opposite directions, and a third
wire that is a common signal ground wire.
server A computer that provides shared resources, such as files and printers, to the
network. Used primarily to store data, providing access to shared resources.
Usually contains a network operating system.
shared mode If a Director or Switch is in shared mode, all devices on the loop share the 100MB
bandwidth available on the loop. In shared mode, only one end device can
communicate with another device through the fabric loop port (FL_Port) on the
Director or switch.
Server Platform A server platform shipped with the product or supplied by the customer for the
purpose of running the SAN Management and Element Manager server
applications.
simple mail transfer SMTP. A transmission control protocol/Internet protocol (TCP/IP) protocol that
protocol allows the user to create, send, and receive text messages. SMTP protocols specify
g-27
Glossary
how messages are passed across a link from one system to another. They do not
specify how the mail application accepts, presents, or stores the mail.
simple network SNMP community. Also known as SNMP community string. SNMP
management community is a cluster of managed products (in SNMP terminology, hosts) to
protocol community which the server or managed product running the SNMP agent belongs.
simple network SNMP community name. The name assigned to a given SNMP community.
management Queries from an SNMP management station to a device running an SNMP
protocol community agent only elicits a response if those queries are addressed with the correct
name SNMP community name.
simple network SNMP management station. An SNMP workstation personal computer (PC)
management used to oversee the SNMP network.
protocol
management station
small form factor SFP transceivers. Laser-based optical transceivers for a wide range of
pluggable networking applications requiring high data rates. The transceivers, which are
transceivers designed for increased densities, performance, and reduced power, are
well-suited for Fibre Channel applications.
state The state of the Switch or director. Possible values include online, offline,
testing, and faulty. See offline state; online state.
static random access SRAM. SRAM is microprocessor-cache random access memory. It is built
memory internal to the microprocessor or on external chips. SRAM is fast, but relatively
expensive '. &RQWUDVWZLWK dynamic random access memory.
subnet mask A mask used by a computer to determine whether another computer with which it
needs to communicate is located on a local or remote network. The network mask
depends upon the class of networks to which the computer is connecting. The
mask indicates which digits to look at in a longer network address and allows the
router to avoid handling the entire address. Subnet masking allows routers to
move the packets more quickly. Typically, a subnet may represent all the machines
at one geographic location, in one building, or on the same local area network.
switch A device that connects, filters and forwards packets between local area network
(LAN) segments or storage area network (SAN) nodes or devices.
switched mode If the arbitrated loop device is in switched mode, each pair of communicating
ports on the arbitrated loop device can share the 100MB bandwidth. In switched
mode, up to three pairs of loop devices can communicate with each other
simultaneously. Or, a public device on the loop can communicate with another
device on the fabric while up to two pairs of loop devices can communicate
simultaneously.
switchover Changing a backup field-replaceable unit (FRU) to the active state, and the active
FRU to the backup state.
switch priority Value configured into each Switch in a fabric that determines its relative likelihood
of becoming the fabric’s principal switch. Lower values indicate higher likelihood
of becoming the principal switch. A value of 1 indicates the highest priority; 225 is
the lowest priority. A value of 225 indicates that the Switch is not capable of acting
as the principal switch. The value 0 is illegal.
System Automation SA OS/390™. IBM licensed software that provides System/390 Parallel Sysplex™
for Operating management, automation capabilities, and integrated systems and network
System/390 management. SA OS/390 manages host, remote processor, and I/O operations. SA
OS/390 integrates the functions of Automated Operations Control for Multiple
Virtual Storage (MVS™), ESCON™ Manager, and Target System Control Facility
'.
T
telnet The Internet standard protocol for remote terminal connection over a network
connection.
‘ten Gb/sec Port XPM. The XPM card can be plugged into a 64-Port or 140-Port Element Manager.
Module The XPM card consists of a Cobra ASIC and 10 Gb/s optical transponder module
that supports short, long and extra-long wave transceivers.
Threshold Alert Log Director or Switch 7KUHVKROG$OHUW/RJ. Log displayed through the Element
Manager application that provides details of threshold alert notifications for an
individual Director or switch. The log displays the date and time an alert occurred,
and displays details about the alert as configured for the product. The information
g-29
Glossary
is useful to maintenance personnel for fault isolation and repair verification.
6HHDOVR Audit Log; Event Log; Hardware Log; Link Incident Log.
trap host Simple network management protocol (SNMP) management workstation that
is configured to receive traps.
U
UDP 6HH user datagram protocol.
unblocked In a Director or switch, the absence of the blocked attribute for a specific port.
connection &RQWUDVWZLWK blocked connection. 6HH connectivity attribute. 6HHDOVR allowed
connection; dynamic connection; dynamic connectivity.
unblocked port Devices communicating with an unblocked port can login to the Director or
Switch and communicate with devices attached to any other unblocked port
(assuming that this is supported by the current zoning configuration).
uniform resource URL. A URL is the address of a document or other resource on the Internet.
locator
upper level protocol ULP. Protocols that map to and run on top of the Fibre Channel FC-4 layer.
ULPs include Internet protocol (IP) and small computer system interface (SCSI)
'.
user datagram UDP. A connectionless protocol that runs on top of Internet protocol (IP)
protocol networks. User datagram protocol/Internet protocol (UDP/IP) offers very few
error recovery services, instead providing a direct way to send and receive
W
warning message A message that indicates a possible error has been detected. 6HHDOVR error
message; information message.
World Wide Names WWN. Eight-byte string that uniquely identifies a Fibre Channel entity (that is, a
port, a node, a switch, a fabric), even on global networks.
wrap test A test that checks attachment or control unit circuitry, without checking the
mechanism itself, by returning the output of the mechanism as input. A wrap test
can transmit a specific character pattern through a system and compare the
pattern received with the pattern transmitted '.
write authorization Permission for an simple network management protocol (SNMP) management
station with the proper community name to modify writable management
information base (MIB) variables.
X
XDF 6HH extended distance feature.
Z
zone Set of devices that can access one another. All connected devices may be
configured into one or more zones. Devices in the same zone can see each other.
Those devices that occupy different zones cannot. 6HHDOVR active zone set; zone
set; zoning.
zone member Specification of a device to be included in a zone. A zone member can be identified
by the port number of the Director or Switch to which it is attached or by its port
World Wide Name (WWN). In multiswitch fabrics, identification of end-devices or
nodes by WWN is preferable.
zone set A collection of zones that may be activated as a unit. 6HHDOVRactive zone set; zone.
g-31
Glossary
zoning Grouping of several devices by function or by location. All devices connected
to a connectivity product, such as the Director or switch, may be configured
into one or more zones. 6HHDOVR access control; zone.
Index I-1
Index
CHAP secret, editing for API user 5-42 configure threshold alert(s) 2-29, 4-48
CHAP secret, editing for device 5-50 export configuration report 4-57, 4-58
CHAP secret, editing for server 5-40 features 4-46
CHAP secret, guidelines when entering or generating ports 4-22
5-13 SANtegrity authentication 5-11
CHAP secret, used to authenticate users 5-13 SNMP 4-13
circle, green switch binding 5-6
meaning of 2-7 configure open trunking dialog box 4-54
port 3-7 configure ports
class 2 statistics table 2-20 FICON management style 4-32
class 3 statistics 2-21 FICON management style procedure 4-32
clear alerts open systems management style 4-30
threshold 3-6 open systems management style procedure 4-30
zoning enforcement 3-6 procedure
clear link incident alert(s) option 3-5 FICON mode 4-32
clear system error light open systems management style 4-30
product menu 3-11 configure ports dialog box 4-22, 4-30
clearing counts 2-25 blocking ports 2-12
clearing port counters 1-10 FICON management style 4-32
clearing, logs 6-2 mode differences 4-23
close configure SNMP 4-13
product menu 3-12 configure SNMP parameters 4-13
closing the element manager 1-7 configure switch parameters dialog box 4-10
closing, logs 6-2 configure threshold alerts, procedure 2-29, 4-48
code pages 4-42 configuring
collecting maintenance data 7-6 date and time 4-14
columns fabric parameters 4-4, 4-5
widening 6-2 feature key 4-46
columns, expanding 6-2 FICON management server 4-40
columns, sorting 6-2 identification 4-10
community name 4-12, 4-13 procedure 4-10
component status, monitoring 2-8 open systems manager server 4-44
configuration changes, audit log 6-1, 6-3 operating parameters 4-1
configuration data port speed 4-27
backing up and restoring 7-12 ports 4-22
resetting 7-15 ports, FICON management style 4-32
configuration parameters preferred paths 4-17
resetting 7-16 SNMP 4-11
configuration report 4-57 SNMP parameters 4-11
configuration, reset 7-15 connected device, adding access for 5-57
configurations connection failure, WWN binding 4-30
resetting 7-15 control unit port (CUP) name 4-36
configure cooling fan module, failure indicator 2-10
Preferred Path copy address configuration dialog box 4-39
dialog box 4-20, 4-21, 4-22 counters, port, clearing 1-10
configure addresses counts
stored option 4-38, 4-40 clearing 2-25
configure addresses - "active" 4-37 CPGID, code pages 4-42
configure addresses, stored option 4-38 CRC errors 2-22
configure date and time dialog box 4-14 critical warning 2-30, 8-1
configure fabric parameters dialog box 4-5 CTP card
configure feature key dialog box 4-46 active indicator 2-9
configure FICON management server parameters failure indicator 2-9
dialog box 4-42 IPL resets 7-7
configure managing stored addresses 4-38 CUP name 4-36
configure menu 4-22 assigning 4-36
addresses - "active" 4-37 current IP address, director 7-15
alternate control prohibited 4-15, 4-16 cyclic redundancy checks, errors 2-22
Index I-3
Index
Index I-5
Index
node list view, unit type column 2-16 OSMS authentication, disabling 5-31
node nickname, assigning 2-19 OSMS authentication, enabling 5-29
node properties dialog box 3-3
no-link status 2-5
P
NOS
parameters
hardware log 6-7
configuration, resetting 7-16
port state 2-27
ports 4-23
not installed, port state 2-27, 2-28
part number, hardware log 6-6
not operational, port state 2-27
performance tab 1-9
not-operational (NOS) primitive sequence, hardware log
performance tab option 1-9
6-7
performance view 2-18, 2-19
NPIV login limit 4-29
port, statistics 2-19
NV-RAM 4-2, 4-24
permissions 1-10
configuration data, backing up and restoring 7-12
permitted IP addresses list, adding entries to 5-65
export configuration report 4-57, 4-58
permitted IP addresses list, editing entries to 5-67
NVRAM 4-5
permitted IP addresses list, removing entries from 5-68
Port 5-2, 7-1
O port
offline sequences (OLS) description 3-2
performance view 2-23 port # option 4-22
S/390 mode 4-35 port addresses
offline, port state 2-27 FICON management style 4-34
OLS 4-25 matrix of 4-34
online and offline states port authentication, disabling 5-56
operational states port authentication, enabling 5-54
online and offline 2-5 port binding 5-2
online state enabling 4-30
setting 7-8 port binding option 5-2
online state, setting 7-8 port card
online, port state 2-27 acronyms, port technology 2-14
open fabric 1.0 4-3 attention indicator 2-8, 2-9
open systems management server 3-2, 4-44 failure indicator 2-9
configuring 4-44, 4-45 port configuration data, NV-RAM storage 4-24
installing 4-41, 4-45 port connection array, FICON management style 4-34
open systems management server feature 4-44 port data transfers, disruption 4-27
open systems management style 3-2 port failure, port state 2-27
open systems management server 3-2 port list tab 1-9
port name 4-24 port list view 2-11
ports displaying 2-11
blocking 4-24 port menu
configuring, procedure 4-30 swap ports 3-5
Open Trunking feature 4-53 port name
enabling and configuring 4-54 FICON management style 4-34, 4-37
open trunking log 6-11 port number
opening element manager 1-2 configure ports dialog box 4-24
OpenTrunking feature port operating states 2-25
dialog box 4-54 port operational states 2-12
OpenTrunking log 6-11 table of 2-25
operating parameters port optics 2-26, 4-27
configuring for the director 4-1 port optics dialog box 3-3, 8-3
suppress RSCNs 4-8 port parameter descriptions 4-23
operating states for ports 2-25 port performance threshold alerts
operating status for the director 2-6, 2-7 log 6-7
operational port properties dialog box 3-3
port state 2-27 displaying 1-9
operational states 2-4 port statistics
operational states for ports 2-25 class 2 statistics 2-20
operational states, port 2-12 class 3 statistics 2-21
Index I-7
Index
Index I-9
Index
U
UDP number 4-13
unit type 2-16
United States/Canada 00037 code page 4-42
user access, role-based 5-14
user datagram protocol 4-13
user interface, security 5-17
user rights 1-10
users tab, accessing 5-14
users tab, described 5-11
users tab, fields 5-15
users, assigning to a switch or director 5-19
users, authentication of 5-13
users, editing 5-21
users, removing from switch 5-20
V
versions, firmware
managing 7-9
view menu
FRU list view 2-14