Hitachi Virtual Storage Platform F400 страница 158 Скачать руководство пользователя

Страница: 158 / 368

You can use the authentication server without knowing the host names and port

numbers, if you register the information of the authentication server as an SRV record in

the DNS server. If you register multiple numbers of authentication servers to the SRV

record, you can determine the authentication server to be used, based on the priority

that has been set in advance.

Authentication server protocols

Authentication servers support the following protocols:

■

LDAPv3 simple bind authentication

■

RFC 2865-compliant RADIUS with PAP and CHAP authentication

■

Kerberos v5

The following

certificate

file

formats are available for LDAP server settings:

■

X509 DER format

■

X509 PEM format

One of the following encryption types must be used for the Kerberos server:

Windows

■

AES128-CTS-HMAC-SHA1-96

■

RC4-HMAC

■

DES3-CBC-SHA1

■

DES-CBC-CRC

■

DES-CBC-MD5

Solaris or Linux

■

DES-CBC-MD5

Authorization server requirements

The authorization server must satisfy the following requirements if it works together with

the authentication server:

Prerequisite OS

■

Windows Server 2003

■

Windows Server 2003 R2

■

Windows Server 2008

■

Windows Server 2008 R2

Authentication server protocols

Chapter 5: Setting up security

System Administrator Guide for VSP Gx00 models and VSP Fx00 models

158

Содержание Virtual Storage Platform F400

Страница 1: ...d instructions to help you use the maintenance utility and some of the functions in Device Manager Storage Navigator as needed to perform system administration tasks and change settings for VSP Gx00 models or VSP Fx00 models It explains the GUI features and provides basic navigation information MK 94HM8016 10 December 2017 ...

Страница 2: ...ents as may be required under local privacy laws or otherwise from authorized employees and other individuals to access relevant data and 2 Verifying that data continues to be held retrieved deleted or otherwise processed in accordance with relevant laws Notice on Export Controls The technical data and technology inherent in this Document may be subject to U S export control laws including the U S...

Страница 3: ...agement architecture 19 Ways to administer the storage system 20 Overview of Storage Advisor 20 Unified management of block storage and file storage 21 Dashboard 22 Inventory and resource information 27 Device Manager Storage Navigator 27 Maintenance utility 28 NAS Manager 29 Chapter 2 Preparing your management software 31 Configuring Storage Advisor 31 Configuring Device Manager Storage Navigator...

Страница 4: ...ting from Hitachi Device Manager Storage Navigator 41 Accessing a storage system without management software 42 Chapter 3 Configuring the storage system 45 System administration tasks at a glance 45 System administration using the maintenance utility 48 Changing the date and time 48 Changing the controller clock settings 48 Changing the SVP clock settings 48 Enabling IPv6 communication 49 Changing...

Страница 5: ...utomatically assigned port number 62 Changing the range of an automatically assigned port number 62 Initializing the range of an automatically assigned port number 63 Chapter 4 User administration 65 User administration for maintenance utility 65 Required roles for operating Maintenance Utility 65 Setting up user accounts 66 Disabling user accounts 68 Removing user accounts 71 Backing up user acco...

Страница 6: ...nging user group permissions 92 Changing assigned resource groups 92 Deleting a user group 93 Creating resource groups and managing storage system resources 93 When to use resource groups 93 System configuration using resource groups 94 Resource group examples 94 Meta_resource 97 Resource lock 97 User groups 97 Resource group assignments 97 Operations in a resource group for NAS modules 98 Resourc...

Страница 7: ...ering HCS certificates 145 Deleting HCS certificates 146 Managing SSL certificates 146 Flow of SSL communication settings 147 Creating a keypair 147 Obtaining a signed certificate 149 Verifying and releasing an SSL certificate passphrase 150 Converting SSL certificates to PKCS 12 format 151 Updating a signed certificate 151 Notes on updating a signed certificate for the service processor 152 Retur...

Страница 8: ...162 Configuring Active Directory servers 162 Configuring Active Directory groups 166 User authentication through RADIUS servers HNAS server only 171 Displaying list of RADIUS servers 172 Adding a RADIUS server 172 Displaying details of RADIUS server 174 Configuring SMU security NAS module only 175 Chapter 6 Alert notifications 177 Viewing alert notifications 177 Configuring alert notifications 177...

Страница 9: ...alculating licensed capacity for a normal volume 191 Calculating licensed capacity for an external volume 192 Calculating pool capacity 192 Accelerated compression enabled parity group capacity 193 Managing licenses 193 Installing block and file licenses using NAS Manager 194 Adding a license key 194 Installing block licenses using maintenance utility 195 Enabling a license 196 Disabling a license...

Страница 10: ...ples of storage configuration reports 207 Reports in table view 207 CHAP Users report 208 Disk Boards report 208 Host Groups iSCSI Targets report 209 Hosts report 210 Logical Devices report 211 LUNs report 213 MP Units report 214 MP Unit Details report 215 Parity Groups report 216 Physical Devices report 218 Ports report 219 Power Consumption report 222 Spare Drives report 224 SSD Endurance report...

Страница 11: ...o csv 250 DkuTempMinInfo csv 251 ELunInfo csv 252 EnvMonInfo csv 255 FcSpNameInfo csv 256 FcSpPortInfo csv 257 HduInfo csv 258 IscsiHostInfo csv 258 IscsiPortInfo csv 259 IscsiTargetInfo csv 261 JnlInfo csv 262 LdevCapaInfo csv 262 LdevCountInfo csv 263 LdevInfo csv 264 LdevStatus csv 267 LPartition csv 268 LunInfo csv 268 LunPortInfo csv 270 MicroVersion csv 272 Contents System Administrator Guid...

Страница 12: ...evInfo csv 276 PdevCapaInfo csv 277 PdevInfo csv 277 PdevStatus csv 279 PECBInfo csv 279 PkInfo csv 280 PpInfo csv 282 SMfundat csv 282 SsdDriveInfo csv 283 SsidInfo csv 284 SysoptInfo csv 284 WwnInfo csv 285 Appendix B System option modes 287 System option modes 287 Glossary 349 Index 363 ...

Страница 13: ... Data processing and RAID storage systems and their basic functions Hitachi Virtual Storage Platform G200 G400 G600 G800 or Hitachi Virtual Storage Platform F400 F600 F800 storage systems The operating system and web browser software on the SVP hosting the Device Manager Storage Navigator software The Windows 7 operating system and the management software on the management server Product version T...

Страница 14: ...rwise noted Hitachi Virtual Storage Platform G200 Hitachi Virtual Storage Platform G400 Hitachi Virtual Storage Platform G600 Hitachi Virtual Storage Platform G800 VSP Fx00 models Refers to all of the following models unless otherwise noted Hitachi Virtual Storage Platform F400 Hitachi Virtual Storage Platform F600 Hitachi Virtual Storage Platform F800 This document uses the following typographic ...

Страница 15: ... optional values Example a b indicates that you can choose a b or nothing braces Indicates required or expected values Example a b indicates that you must choose either a or b vertical bar Indicates that you have a choice between two or more options or arguments Examples a b indicates that you can choose a b or nothing a b indicates that you must choose either a or b This document uses the followi...

Страница 16: ...B 1 000 GB or 1 0004 bytes 1 petabyte PB 1 000 TB or 1 0005 bytes 1 exabyte EB 1 000 PB or 1 0006 bytes Logical capacity values for example logical device capacity cache memory capacity are calculated based on the following values Logical capacity unit Value 1 block 512 bytes 1 cylinder Mainframe 870 KB Open systems OPEN V 960 KB Others 720 KB 1 KB 1 024 210 bytes 1 MB 1 024 KB or 1 0242 bytes 1 G...

Страница 17: ...s contact us html Hitachi Vantara Community is a global online community for Hitachi Vantara customers partners independent software vendors employees and prospects It is the destination to get answers discover insights and make connections Join the conversation today Go to community hitachivantara com register and complete your profile Comments Please send us your comments on this document to doc...

Страница 18: ......

Страница 19: ...sor and Hitachi Command Suite System administration tasks for the VSP Gx00 models and VSP Fx00 models storage systems including some with NAS modules installed to provide native file functionality VSP G400 G600 G800 System management architecture The following figure shows a high level view of the storage system management software architecture It shows the access points that a system administrato...

Страница 20: ... Interface Command Reference MK 90RD7009 which you can access from the Documentation page of NAS Manager Overview of Storage Advisor Hitachi Storage Advisor is a unified software management tool that reduces the complexity of managing storage systems by simplifying the setup management and maintenance of storage resources Storage Advisor reduces infrastructure management complexities and enables a...

Страница 21: ...ied onboarding and configuration of file storage in the form of NAS modules If a supported storage system includes NAS modules the file storage is automatically added with the block storage Then file pools and other file resources can be created in the Storage Advisor interface or by using the API Adding block and file storage together Storage Advisor enables you to add block and file storage in a...

Страница 22: ...ctions Resource side panel The left pane provides quick access to review the configuration of your storage systems servers and fabric switches If the storage system includes NAS modules virtual file servers can also be accessed Alert tiles Four alert tiles represent various aspects of the health of the storage system When Storage Advisor detects a problem with a storage system environment a number...

Страница 23: ...formation gauge The number in the center of the rings shows the total usable capacity of all storage systems The total usable capacity is the capacity available from all the parity groups across all storage systems If you do not have any parity groups configured on the storage system this number is zero and all other data points in the capacity visualization are zero Note To understand uninitializ...

Страница 24: ... there is unused capacity available for parity group creation The right side of the resource summary offers alternate views Protection is the breakdown of data protection metrics including a representation of types of protected unprotected and secondary capacity and gauge of the total percentage of capacity protected Tier Breakdown is a visualization of the amount of each tier that is allocated to...

Страница 25: ...nter of the ring is the total usable capacity available via the configured parity groups After you add a storage system and configure parity groups the total capacity indicator will show the capacity from the newly added storage system The Thin Used capacity light green ring indicates the total capacity that is currently being used If the usage is around 70 80 of the total capacity you may receive...

Страница 26: ...quals the Total Usable Capacity in the center of the information gauge Analyzing data protection metrics The balance of your protected primary volumes and secondary volumes depends on the number of copies you have chosen to maintain and also on the type of the data protection technology being used If you choose to set aside more volumes for data protection then the overall usable capacity may be a...

Страница 27: ... resource detail page When you delete a block pool the parity groups used by the pool will no longer be in In Use status The pool volumes on these parity groups will be formatted and the parity group will eventually be in Available status When you delete a volume the pool subscription will go down Volume deletion will fail if the volume participates in data protection or is attached to a server Wh...

Страница 28: ... or the management software You can use the maintenance utility to configure settings such as licenses syslog alerts and network configuration As shown in the following figure these settings are available from the Administration navigation tree Maintenance utility Chapter 1 System administration overview System Administrator Guide for VSP Gx00 models and VSP Fx00 models 28 ...

Страница 29: ...n running on the NAS module NAS Manager provides a web based interface for managing stand alone or clustered servers and their attached storage systems This tool allows you to perform most administrative tasks from any client on the network using a network browser To access NAS Manager point your browser to the following URL https unified management IP address 20443 You can also access NAS Manager...

Страница 30: ...Chapter 1 System administration overview System Administrator Guide for VSP Gx00 models and VSP Fx00 models 30 ...

Страница 31: ...ge Navigator set up a client computer and then log in to Hitachi Device Manager Storage Navigator Setting up a management client Before running Device Manager Storage Navigator on a management client certain web browser guidelines must be observed Some guidelines apply to all browsers while other are specific to Internet Explorer and servers running Windows Requirements for management clients The ...

Страница 32: ...ws based computers Note The combinations of operating system architecture browser Java Runtime Environment and Adobe Flash Player described below are fixed requirements Using other combinations or versions might produce unpredictable results such as the inability to operate program windows Therefore contact customer support to use other combinations or versions Hardware requirements Item Requireme...

Страница 33: ...b browser Windows Server 2008 R2 SP1 64 bit Internet Explorer 11 0 JRE 7 0 Update 67 14 0 Windows Server 2012 SP1 64 bit Internet Explorer 10 0 JRE 7 0 Update 67 14 0 Windows Server 2012 R2 SP1 64 bit Internet Explorer 11 0 JRE 7 0 Update 67 14 0 Windows Server 2016 64 bit Internet Explorer 11 0 JRE 8 0 Update 111 24 0 Notes If the SVP supports Internet Protocol Version 6 IPv6 you can specify IPv6...

Страница 34: ...ardware requirements Item Requirement Processor CPU Pentium 4 640 3 2 GHz or better Recommended Core2Duo E6540 2 33 GHz or better Memory RAM 2 GB or more Recommended 3 GB Available storage space 500 MB or more Monitor Resolution 1280 x 1024 or better Keyboard and mouse You cannot use the mouse wheel feature Ethernet LAN card for TCP IP network 100BASE TX 1000BASE T Software requirements Operating ...

Страница 35: ...the SVP see the Hardware Installation and Reference Guide for your storage system Configuring the web browser To configure the client web browser note the following The browser must allow first party third party and session cookies Pop up blocker and plug ins must be disabled The management client must be connected to the network via LAN The version of Adobe Flash Player specified in the managemen...

Страница 36: ...08000 appears Click OK to close the error and operate again If you don t want to wait for the error to appear close Chrome and log in to Device Manager Storage Navigator again The error also appears if you do not click Save or do not open the saved file for some time Requirements for using HDvM SN secondary windows This topic describes the configuration prerequisites for using Device Manager Stora...

Страница 37: ...er accounts If you are a Device Manager Storage Navigator and storage system user or administrator you can log in normally Initial superuser login Follow these instructions to log in as a superuser When logging on to Device Manager Storage Navigator for the first time you must log on as a superuser to set up additional user accounts The superuser account has a built in ID which includes all permis...

Страница 38: ...splays in Device Manager Storage Navigator wait until the service status changes to Ready Normal At that time the login window displays automatically The following is an example of the loading window 2 The following actions might be required to open the login dialog box depending on your environment If a message indicates that the enhanced security configuration is enabled on the management client...

Страница 39: ...resource groups for each user are set up ahead of time and will be available to you when you log in to Device Manager Storage Navigator If the roles or resource allocations for your username are changed after you log in the changes will not be effective until you log out and log back in again When you use a web browser for a long period of time memory is heavily used We recommend closing or loggin...

Страница 40: ...ng the maintenance utility To configure the storage system using the maintenance utility start the maintenance utility from Hitachi Device Manager Storage Navigator or the management software Note Click in the window to see the help menu for the description of the Maintenance Utility To display the help the settings for enlarging and reducing the display might not be reflected in the help window d...

Страница 41: ...or Procedure 1 Launch a web browser from the console PC connected to the SVP and then start Device Manager Storage Navigator 2 Enter the following URL in the address field of your browser and then press Enter http IP address of SVP module sn2 0 index do 3 In the Storage Device List window click the picture of the registered storage system 4 Log in to Device Manager Storage Navigator 5 On the Maint...

Страница 42: ...be Flash Player must be configured on the client to use HDvM SN Note To obtain the administrator login information contact customer support Procedure 1 Start a web browser 2 Enter the following URL For the VSP G200 storage system enter https IP address or host name of the SVP dev storage 8320004XXXXX emergency do where the model number is 8320004 and 4XXXXX indicates the system serial number For V...

Страница 43: ...Information dialog box appears click Yes 7 If an Adobe Flash Player local storage area pop up dialog box appears click Allow to open the Device Manager Storage Navigator main window The cache function of Adobe Flash Player optimizes the process of Device Manager Storage Navigator Denial of the request might reduce processing speed Note If the login process fails three times with the same user ID D...

Страница 44: ...Chapter 2 Preparing your management software System Administrator Guide for VSP Gx00 models and VSP Fx00 models 44 ...

Страница 45: ...on settings on page 49 IP addresses cannot be added deleted or modified in the NAS Manager To change these addresses use the maintenance utility Set system clock date and time Maintenance utility See Changing the date and time on page 48 NAS Manager See Changing the system date and time of the NAS Modules on page 55 Configure audit log settings Maintenance utility See Audit log settings on page 19...

Страница 46: ...utility See Configuring the storage system on page 45 NAS Manager See the Network Administration Guide MK 92HNAS008 Force the system lock to release Maintenance utility See Configuring the storage system on page 45 NAS Manager See the Network Administration Guide MK 92HNAS008 User administration add manage and delete storage system users Device Manager Storage Navigator See Managing users user gro...

Страница 47: ...S certificates on page 145 N A Manage HCS certificates Device Manager Storage Navigator See Managing HCS certificates on page 145 N A Manage HDvM SN configuration files Device Manager Storage Navigator See Backing up HDvM SN configuration files on page 52 NAS Manager See the Server and Cluster Administration Guide MK 92HNAS010 Manage authorization and authentication servers Device Manager Storage ...

Страница 48: ...on includes procedures to change all settings Changing the controller clock settings Complete the following steps to change the date and time on the storage system controller Before you begin You must have the Storage Administrator View Modify role to perform this task Procedure 1 In the maintenance utility Administration tree select Date Time The current settings are displayed 2 Click Set Up 3 Ch...

Страница 49: ...econdary window but IPv4 communication is actually used The following topics provide brief instructions on configuring IPv6 communication Note If the SVP uses IPv6 you must configure management clients to use IPv6 for communication Consult your operating system s documentation for instructions Changing network communication settings This procedure explains how to configure a management client to u...

Страница 50: ...stem Management 2 Click Edit Login Message 3 Enter a message to be displayed at the time of login The message can contain up to 2 048 characters A line break is counted as one character 4 Click Apply to save the message and close the dialog box Forcing the system lock to release When a user locks the system other users cannot log in or access the system This feature can be used to ensure that no c...

Страница 51: ... the dialog box without releasing the system lock Registering the primary SVP host name You must register the primary SVP host name before completing any of the following tasks Specify a host name instead of an IP address when accessing Device Manager Storage Navigator Obtain the public key certificate for SSL encrypted communication from the CA Certificate Authority You must register the server n...

Страница 52: ...m 2 From Settings click Environmental Settings Edit Storage System 3 Enter the items that you want to set You can enter up to 180 alphanumeric characters ASCII codes excluding several symbols Do not use a space at the beginning or the end 4 Click Finish 5 In the Confirm window check the settings and enter a task name in Task Name 6 Click Apply The task is now registered If the Go to tasks window f...

Страница 53: ...se the command prompt window Tip If you do not specify a folder in which to save the file the system automatically creates a default file in the following location SVP root wk Supervisor MappIniset LogsyyyyMMddHHmmss tgz where yyyyMMddHHmmss is the year month date and time that the file was created The backup file is compressed and uses the tgz format Use a tool that supports tar and gzip to extra...

Страница 54: ...mpt 6 Set the service to run automatically when starting the SVP 7 Reboot the SVP It takes about 10 minutes to complete the startup process Changing the administrator password Before you begin Before changing the password of a user account specified by the registered storage system in the Storage Device List window click Stop Service for the registered storage system After changing the password of...

Страница 55: ...ttings window click Date and Time 4 In the Date and Time window set the time and date Setting the date and time with the NTP server a Select a time zone in Time Zone field b Enter the IP address or the name of the NTP server in NTP Server IP Name field and then click add When using the Active Directory server enter the IP address or the name of the NTP server When setting without using the NTP ser...

Страница 56: ...d port number on page 62 To change the range of port numbers used for automatic assignment see Changing the range of an automatically assigned port number on page 62 To return the range of port number for automatic assignment to its original range see Initializing the range of an automatically assigned port number on page 63 Note Perform this task only if an SVP port number is used by another appl...

Страница 57: ...JettyStop HTTP 8211 83 01 24 XX 00 or later Automatically assigned 83 03 01 XX 00 or later Viewing the port number used in SVP You can view the port number used in SVP Procedure 1 Open the Windows command prompt as administrator on the SVP 2 In the folder where the bat file is located execute the following command C MAPP wk Supervisor MappIniSet MappPortRefer bat serial number optional Note A spac...

Страница 58: ...i Command Suite Installation and Configuration Guide RMIClassLoader When you execute the Export Tool command you must specify a port number The port number should be the one you have specified for the el dlport operand of the java command which was used for downloading the Export Tool Performance Guide RMIIFRegist When you execute the Export Tool command you must specify the IP address and new por...

Страница 59: ...op None None Changing the SVP port number You can change the SVP port number to any arbitrary number After changing the port number the SVP will be restarted Before you begin Remote desktop connection from the management client to SVP has been performed The range of the available port number is from 1 to 65535 Make sure the new port number is not duplicated with the number used in another applicat...

Страница 60: ...t bat port number key name port number Note A space is required between MappSetPortEdit bat and port number key name A space is required between port number key name and port number 4 A service restart message box displays followed by a completion message box Press any key to acknowledge the message and close the message box 5 Close the Windows command prompt Initializing the SVP port number You c...

Страница 61: ...s assigned when starting the storage system service cannot be reassigned If you disable the function which is using the port this deletes the port number that is already assigned Procedure 1 Logout from Device Manager Storage Navigator on the storage system that you want to reassign 2 Stop the service of the storage system that you want to reassign 3 Open the Windows command prompt as administrato...

Страница 62: ...o acknowledge the message and close the message box 7 Reassign the port number C MAPP wk Supervisor MappIniSet MappPortManageRenum bat serial number optional Note A space is required between MappPortManageRenum bat and serial number If you omitted the serial number the batch file is run for the storage system of 83 03 01 XX 00 or later which is registered in Storage Device List window 8 A confirma...

Страница 63: ...assign The valid range of the port number is between 1 and 65535 Use a port number that is not used in another service Port numbers between 1 and 1023 are reserved for the other applications If you exclude a number between 1 and 1023 from the setting value of unavailable the port numbers might not operate normally The following can be used for the port number range Numbers space symbols and rm You...

Страница 64: ...geInit bat 3 A confirmation message box displays If you want to continue enter Y and then press the Enter key If you want to cancel the task enter N and then press the Enter key 4 Press any key to acknowledge the message and close the message box 5 Close the Windows command prompt Chapter 3 Configuring the storage system System Administrator Guide for VSP Gx00 models and VSP Fx00 models 64 ...

Страница 65: ...eration windows Maintenance Utility operation window Required role name Initial Setting Wizard Storage Administrator Initial Configuration Set Up System Information Storage Administrator Initial Configuration Firmware Support Personnel or User Maintenance1 User Administration Security Administrator View Modify Alert Notifications Storage Administrator Initial Configuration Set Up Date Time Storage...

Страница 66: ...sword No role is required Boot System Safe Mode Support Personnel1 Alert Display Support Personnel or User Maintenance1 Alert Display Related to FRU Support Personnel or User Maintenance1 Administration Menu N A Power Management N A System Management N A Resetting GUM N A Notes 1 Support Personnel means operations performed by the service personnel User Maintenance means operations performed by th...

Страница 67: ...pecify the User Name Account Status Authentication and User Group Click Finish Item Description User Name Setting up user accounts Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP Fx00 models 67 ...

Страница 68: ...ly 5 When the completion message appears click Close Disabling user accounts Observe the following guidelines Log into an account that is different from the user account that you want to disable you cannot disable the current login user account To disable the user account specified by the registered storage system in the Storage Device List window click Stop Service for the registered storage syst...

Страница 69: ...s tab click the user group belonging to the user 3 Click the Users tab and then select the user account to disable 4 Click Edit 5 For Account Status click Disable and then click Finish Disabling user accounts Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP Fx00 models 69 ...

Страница 70: ...rm the settings and then click Apply 7 When a completion message appears click Close Disabling user accounts Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP Fx00 models 70 ...

Страница 71: ...lete the user account specified by the registered storage system in the Storage Device List window click Stop Service of the registered storage system After deletion click Edit to enable the user account Procedure 1 In the Maintenance Utility window click Administration User Administration 2 In the User Groups tab select the user group belonging to the user Removing user accounts Chapter 4 User ad...

Страница 72: ...user to remove 4 Click Remove The Confirm window opens 5 In the Confirm window confirm the settings and then click Apply Removing user accounts Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP Fx00 models 72 ...

Страница 73: ...rocedure 1 Click User Account Information Backup 2 Specify a storage destination and a file name in the displayed window and download the file Backing up user accounts Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP Fx00 models 73 ...

Страница 74: ...r Account Information Restore The Restore User Account window opens 2 Specify file names to be restored and then click Apply 3 When a completion message appears click Close Restoring user account information Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP Fx00 models 74 ...

Страница 75: ...f a user has All Resource Groups Assigned set to Yes the user can access all the resources in the storage system For example if a user is a security administrator and a storage administrator and has all resource groups assigned the user can edit the storage for all the resources If this is an issue the recommended solution is to register two user accounts in the storage system and use the two acco...

Страница 76: ...derstand the user groups and roles you can assign new or existing users Create user accounts and assign permissions See Creating user accounts on page 77 Change disable or delete user passwords and permissions See Changing user passwords on page 81 Administrator tasks To authenticate a user using an authentication server specify settings for connecting to the server Note When an administrator chan...

Страница 77: ...or to use storage features that are not available in the management software Creating user accounts You must create a user account and register the account to a user group with appropriate permissions Before you begin You must have the Security Administrator View Modify role to perform this task You or an authorized technical support representative can log in to Device Manager Storage Navigator an...

Страница 78: ...abled and cannot log in to Device Manager Storage Navigator and NAS Manager 7 To use an authentication server select External To authenticate users with only Device Manager Storage Navigator or to log in to NAS Manager select Local 8 If you select Local enter the password for this user account in two places For a password all alphanumeric characters and symbols can be used The length must be betwe...

Страница 79: ...nsisting of periods only or specify a user name beginning with a hyphen If you specify such names you cannot log in to NAS Manager Note To use NAS Manager after installing NAS modules users created with DKCMAIN firmware 83 03 2x or earlier must change the password If you do not change the password you cannot log in to NAS Manager Also if a user name contains more than 20 characters the user cannot...

Страница 80: ...ters that can be used User name 1 128 Alphanumeric ASCII code characters The following symbols _ Password 6 127 Alphanumeric ASCII code characters All symbols User name and password for logging in to CCI Item Length in characters Characters that can be used User name 1 63 Alphanumeric ASCII code characters The following symbols _ Password 6 63 Alphanumeric ASCII code characters The following symbo...

Страница 81: ...t used to connect to a storage system that is registered in the Storage Device List window For details see Changing the administrator password on page 54 Before you begin Security administrators with View Modify roles can change user passwords on Device Manager Storage Navigator If the target user has a local user account for Device Manager Storage Navigator the security administrator can use Devi...

Страница 82: ...ou must have the Security Administrator View Modify role to perform this task The user whose permissions you want to change must belong to at least one user group A user account can belong to up to 8 user groups A user group can contain a maximum of 20 user accounts including the built in user accounts Adding a user Procedure 1 In the Device Manager Storage Navigator Administration tree select Use...

Страница 83: ...ce Manager Storage Navigator and NAS Manager click Disable 6 Click Finish 7 In the Confirm window check the settings 8 Click Apply The task is now registered If the Go to tasks window for status check box is checked the Task window opens to show the status of the task Deleting user accounts Security Administrators can delete a user account when the account is no longer in use Built in user account...

Страница 84: ...network error Managing user groups You can use the Device Manager Storage Navigator to view existing user groups and to create modify or delete them Before creating or manipulating user groups read and understand the following precautions When a user is assigned to multiple user groups the user has the permissions of all the roles in each user group that are enabled on the resource groups assigned...

Страница 85: ...urce group to be assigned to user group Adminis trator user group 1 Security Administrator View Modify All Resource Groups Assigned1 User A user group 10 Storage Administrator2 Resource group 10 User B user group 20 Storage Administrator2 Resource group 20 Notes 1 For the user group that is assigned the Security Administrator role All Resource Groups Assigned is automatically set to Yes 2 There ar...

Страница 86: ...dit log information and downloading audit logs Audit Log Administrator View Modify Configuring audit log settings and downloading audit logs Storage Administrator View Only Viewing storage system information Storage Administrator Initial Configuration Configuring settings for storage systems Configuring settings for SNMP Configuring settings for e mail notification Configuring settings for license...

Страница 87: ...en using CCI Storage Administrator Remote Copy Remote copy operations in general Operating global active device pairs except for creation and deletion Support Personnel Vendor Only Configuring the SVP Normally this role is for service representatives Support Personnel User Viewing storage system status Installing OS security patches Updating operating systems Performing basic maintenance Built in ...

Страница 88: ... View Modify Audit Log Administrator View Modify Storage Administrator Initial Configuration Storage Administrator System Resource Management Storage Administrator Provisioning Storage Administrator Performance Management Storage Administrator Local Copy Storage Administrator Remote Copy All Resource Groups Assigned Security Administrator View Only Security Administrator View Only Audit Log Admini...

Страница 89: ...rc e Storage Administrator View Modify Storage Administrator Initial Configuration Storage Administrator System Resource Management Storage Administrator Provisioning Storage Administrator Performance Management Storage Administrator Local Copy Storage Administrator Remote Copy meta_resourc e Support Personnel Storage Administrator Initial Configuration Storage Administrator System Resource Manage...

Страница 90: ...o the built in groups but you can create custom user groups according to the needs of your storage environment Before you begin You must have the Security Administrator View Only role to perform this task Procedure 1 In the Device Manager Storage Navigator Administration tree click User Administration 2 On the User Groups tab click the name not the checkbox of a user group whose roles you want to ...

Страница 91: ...he Go to tasks window for status check box is checked the Task window opens to show the status of the task Changing a user group name You can change the name of a user group by using Hitachi Device Manager Storage Navigator Before you begin You must have the Security Administrator View Modify role to perform this task The names of built in groups cannot be changed A user group name consists of 1 t...

Страница 92: ... for status check box is checked the Task window opens Changing assigned resource groups You can change the resource groups that are assigned to user groups by using Hitachi Device Manager Storage Navigator Before you begin You must have the Security Administrator View Modify role to perform this task Create a resource group to be assigned to the user group in advance You cannot change the resourc...

Страница 93: ... groups involves creating resource groups moving storage system resources into the resource groups and assigning resource groups to user groups When to use resource groups A storage system can connect to multiple hosts and be shared by multiple divisions in a company or by multiple companies Many storage administrators from different organizations can access the storage system Managing the entire ...

Страница 94: ...rage system other than external volumes before Resource Partition Manager is installed By default all existing resources initially belong to the meta_resource group to ensure compatibility with older software when a system is upgraded to include Resource Partition Manager Resource lock When a task is being processed on a resource all of the resource groups assigned to the logged on user are locked...

Страница 95: ...ut cannot access the resource groups for Division B In the same manner the Storage Administrator in Division B can manage the resource groups for Division B but cannot access the resource groups for Division A The Security Administrator creates a resource group for managing the common resources and the Storage Administrator in the system division manages the port that is shared between Divisions A...

Страница 96: ...ued from one side port The following shows a system configuration example of an in house system division providing the virtual private storage system for two divisions Divisions A and B each use individual assigned ports and parity groups In this example they do not share a port The Security Administrator in the system division creates resource groups for each division in the storage system and as...

Страница 97: ...he logged on user are locked for exclusive access A secondary window such as the Basic Information Display or an operation from the service processor SVP locks all of the resource groups in the storage system When a resource is locked a status indicator appears on the Device Manager Storage Navigator status bar Click the Resource Locked button to view information about the locked resource User gro...

Страница 98: ...urce groups that can be created on a storage system is 1023 However if the NAS module is installed in the storage system the maximum number of resource groups that can be created on the storage system is 1022 A Storage Administrator with the Security Administrator View Modify role can create resource groups and assign resources to resource groups Resources removed from a resource group are returne...

Страница 99: ...ration tab and then select Resource Groups 2 Click Create Resource Groups 3 In the Create Resource Groups window enter the name for the new group select the desired resources for the new group and click Add to add the new group to list of resource groups to be added 4 Repeat the previous step for each new resource group to be added If you need to remove a group from the list of resource groups to ...

Страница 100: ...2 Select the desired resource group check the box next to the name of the resource group to display the resource information for the resource group To change the name of the selected resource group click Edit Resource Group and enter the new name To add resources to the selected resource group select the Parity Groups LDEVs Ports or Host Groups iSCSI Targets tab click Add Resources and follow the ...

Страница 101: ...m you must have access to the resources for example volumes pools ports that are required for the operation The following tables specify the resource access requirements for Device Manager Storage Navigator operations For details about user groups and resource groups see the System Administrator Guide Access requirements for Dynamic Provisioning and Dynamic Tiering The following table specifies th...

Страница 102: ...cess requirements for Encryption License Key The following table specifies the resource access requirements for Encryption License Key operations Operation name Condition Edit encryption keys When you specify a parity group and open the Edit Encryption window the specified parity group and LDEVs carved from the parity group must be assigned to the Storage Administrator group permitted to manage th...

Страница 103: ... the Storage Administrator group permitted to manage them Add hosts The specified host groups must be assigned to the Storage Administrator group permitted to manage them Edit hosts The specified host group must be assigned to the Storage Administrator group permitted to manage them When you select the Apply same settings to the HBA WWN of all ports check box all the host groups where the specifie...

Страница 104: ...t be assigned to the Storage Administrator group permitted to manage them Delete host groups The specified host groups and all the LDEVs where the paths are set to the host groups must be assigned to the Storage Administrator group permitted to manage them Release Host Reserved LUNs LDEVs where the specified paths are set must be assigned to you For iSCSI Operation name Condition Add LUN paths Whe...

Страница 105: ...e Storage Administrator group permitted to manage them Remove hosts The specified iSCSI target must be assigned to the Storage Administrator group permitted to manage them Edit ports The specified port must be assigned to the Storage Administrator group permitted to manage them Create alternative LUN paths The specified iSCSI target and all the LDEVs where the paths are set to the iSCSI target mus...

Страница 106: ...ies the resource access requirements for Performance Monitor operations Operation name Condition Add to ports The specified ports must be assigned to the Storage Administrator group permitted to manage them Add new monitored WWNs Edit WWNs Access requirements for ShadowImage The following table specifies the resource access requirements for ShadowImage operations Operation name Condition Create pa...

Страница 107: ...All the volumes that are specified when creating pools must belong to the same resource group Edit Pools Delete Pools Pool VOLs of the specified pools must be assigned to the Storage Administrator group that is permitted to manage them Create pairs Both primary volumes and secondary volumes must be assigned to the Storage Administrator group that is permitted to manage them Split pairs Primary vol...

Страница 108: ...ied initiator ports must be assigned to the user Remove Remote Paths Specified initiator ports must be assigned to the user Edit Remote Connection Options Initiator ports of remote paths that are connected to a specified remote storage must be assigned to the user Remove Remote Connections Initiator ports of remote paths that are connected to a specified remote storage must be assigned to the user...

Страница 109: ... Initiator ports of remote paths that are connected to a specified remote storage must be assigned to the user Remove Remote Connections Initiator ports of remote paths that are connected to a specified remote storage must be assigned to the user Force Delete Pairs Specified primary volumes or secondary volumes must be assigned to the user Add Quorum Disks LDEVs to be set as quorum disks must be a...

Страница 110: ... volumes or secondary volumes must be assigned to the user Split Mirrors All data volumes configured to a mirror must be assigned to the user Resync Pairs Primary volumes must be assigned to the user Resync Mirrors All data volumes configured to a mirror must be assigned to the user Delete Pairs Specified volumes or secondary volume must be assigned to the user Initiator ports of remote paths that...

Страница 111: ...assigned to the user Access requirements for Universal Volume Manager The following table specifies the resource access requirements for Universal Volume Manager operations Operation name Condition Add external volumes When creating an external volume a volume is created in the resource group where the external port belongs When you specify a path group and open the Add External Volumes window all...

Страница 112: ...external volumes and all the ports of the external paths connecting the external volumes must be assigned to the Storage Administrator group permitted to manage them Disconnect external paths Ports of the specified external paths and all the external volumes connecting with the external path must be assigned to the Storage Administrator group permitted to manage them When you specify By Ports all ...

Страница 113: ...ath configuration Ports of all the external paths composing the specified path group and all the external volumes that belong to the path group must be assigned to the Storage Administrator group permitted to manage them Access requirements for Virtual LUN The following table specifies the resource access requirements for Virtual LUN operations Operation name Condition Create LDEVs When you specif...

Страница 114: ... LDEV and open the Format LDEVs window the specified LDEV must be assigned to the Storage Administrator group permitted to manage them When you specify a parity group and open the Format LDEVs window the specified parity group and all the LDEVs in the parity group must be assigned to the Storage Administrator group permitted to manage them Delete Parity Groups When deleting a parity group the pari...

Страница 115: ...fy a parity group and open the Shred LDEVs window the specified parity group and all the LDEVs in the parity group must be assigned to the Storage Administrator group permitted to manage them Access requirements for Server Priority Manager The following table specifies the resource access requirements for Server Priority Manager operations Operation name Conditions Set priority of ports attribute ...

Страница 116: ...on file in UTF 8 encoding Include information about the authentication server as shown in the following example Any file name and extension is allowed Caution If you save the configuration file when using the Windows standard Notepad application specify ANSI for the letter code If you use an editor other than the memo pad and have the YTF 8 BOM setting specify No BOM then save auth server type lda...

Страница 117: ...server Specify ldap Required None auth server name The name of an authentication server When registering a primary and a secondary server use a comma to separate the names The name of the server including the primary name secondary name and the comma 1 byte must be 64 bytes or less The names can use all ASCII code characters except for the following In this manual the value specified here is calle...

Страница 118: ...kup will be ignored Optional1 None auth ldap server_ name port A port number of the LDAP server Must be between 1 and 65 535 2 Optional 389 auth ldap server_ name timeout The number of seconds before the connection to the LDAP server times out It must be between 1 and 30 2 Required 10 auth ldap server_ name attr Attribute name to identify a user such as a user ID Hierarchical model An attribute na...

Страница 119: ...hy that includes all the targeted users for searching Flat model DN of hierarchy that is one level up from the targeted user for searching Required None auth ldap server_ name retry interv al Retry interval in seconds when the connection to the LDAP server fails Must be between 1 and 5 2 Optional 1 auth ldap server_ name retry times Retry times when the connection to the LDAP server fails Must be ...

Страница 120: ...efore each symbol When using multiple symbols each symbol must have a backslash before it For example to enter abc in the searchdn field use instead of as shown here abc To enter or enter a backslash and then enter the ASCII code in hex for the following symbols Enter 5c for Enter 2f for Enter 22 for For example to enter abc in the searchdn field enter abc 5c Creating a RADIUS configuration file Y...

Страница 121: ...retry times 3 auth radius PrimaryServer attr NAS Identifier xxxxxxxx auth group auth radius PrimaryServer domain name radius example com auth group auth radius PrimaryServer domain name protocol ldap auth group auth radius PrimaryServer domain name host xxx xxx xxx xxx auth group auth radius PrimaryServer domain name port 386 auth group auth radius PrimaryServer domain name searchdn CN sample1 CN ...

Страница 122: ...nal False auth radius server name protocol RADIUS protocol to use PAP Password authentication protocol that transmits plaintext user ID and password CHAP Challenge handshake authentication protocol that transmits encrypted password Required None auth radius server name host A host name an IPv4 address or an IPv6 address of the RADIUS server An IPv6 address must be enclosed in square brackets Requi...

Страница 123: ...ransmitted to the RADIUS server when the authentication is requested Optional2 None auth radius server name attr NAS IPv6 Address IPv6 address of the SVP Specify the value of the NAS IPv6 Address attribute This value is transmitted to the RADIUS server when the authentication is requested Optional2 None Notes 1 If the specified value is not applicable the default value will be used 2 When NAS modu...

Страница 124: ...ired None auth radius domain name host A host name an IPv4 address or an IPv6 address of the LDAP server An IPv6 address must be enclosed in square brackets Optional1 None auth radius domain name port A port number of the LDAP server Must be between 1 and 65535 2 Optional 389 auth radius domain name searchdn DN of the user for searching Required None auth radius domain name searchpw User password ...

Страница 125: ...se instead of as shown here abc To enter or enter a backslash and then the ASCII code in hex for these symbols Enter 5c for Enter 2f for Enter 22 for For example to enter abc in the searchdn field enter abc 5c Creating a Kerberos configuration file You can use a Kerberos server for authentication on your storage system To use a Kerberos server for authentication create a configuration file in UTF ...

Страница 126: ... DC domain DC local The Kerberos attributes are defined in the following table Table 7 Kerberos definition for authentication server Attribute Description Required Optional Default value auth server type Type of an authentication server Specify kerberos Required None auth group mappin g Information about whether to work together with an authorization server true Works together false Does not work ...

Страница 127: ...ge of the difference in time between the SVP and the Kerberos server where the SVP is operating Must be between 0 and 300 seconds 1 Optional 300 auth kerberos time out The number of seconds before the connection to the RADIUS server times out Must be between 1 and 30 When 0 is specified the connection does not time out until a communication error occurs 1 Optonal 10 auth kerberos real m_name Realm...

Страница 128: ...mbols each symbol must have a backslash before it For example to enter abc in the searchdn field use instead of as shown here abc To enter or enter a backslash and then the ASCII code in hex for these symbols Enter 5c for Enter 2f for Enter 22 for For example to enter abc in the searchdn field enter abc 5c Table 8 Kerberos definition for authorization server Attribute Description Required Optional...

Страница 129: ...fied DN 2 Optional abbr auth group realm_ name timeout Number of seconds before the connection to the LDAP server times out Must be between 1 and 30 seconds When 0 is specified the connection does not time out until a communication error occurs 1 Optional 10 auth group realm_ name retry interval Retry interval in seconds when the connection to the LDAP server fails Must be between 1 and 5 1 Option...

Страница 130: ...ated features and functions storage devices and their components Also the Global Administrator creates and manages SMU user profiles Server Administrators Storage Administrators Server Storage Administrators and other Global Administrators Global Administrators also control what servers and storage devices each administrator can access Storage Administrators manage storage devices as specified in ...

Страница 131: ...e above roles when defined for local users or Active Directory groups can be modified by making them read only A read only user has permission to view most pages of the NAS Manager however they are not generally allowed to perform any actions on the NAS Manager that would trigger a system or configuration change Note Server Administrators Storage Administrators and Server Storage Administrators ca...

Страница 132: ...ew user name Note If you are using RADIUS realms and the global administrator will access the SMU using both NAS Manager and the CLI use the underscore _ to combine the user name and the realm for example johnsmith_realm2 If the global administrator will access the SMU using only NAS Manager you can use the at sign to combine the user name and the realm for example johnsmith realm3 User Type The u...

Страница 133: ...file systems file services or file system related features and functions and they cannot manage users Server Administrators manage servers and clusters as specified in the administrator profile created by the Global Administrator Server Administrators cannot manage storage devices Server Administrators can manage file systems and file services such as CIFS Shares NFS Exports and they can manage fi...

Страница 134: ...l storage and all servers Selected Managed Servers For Server administrators lists the servers that the administrator can manage Note that a Server administrator cannot manage the storage attached to these servers Not available for Global administrators because Global administrators are allowed to manage all storage and all servers For Storage administrators lists servers that have attached storag...

Страница 135: ...ers lists select the server and use the arrow buttons between the lists 9 Review the profile and verify that it is correct If the profile is correct click OK to save and enable the user profile and then return to return to the SMU Users page To return to the SMU Users page without saving the profile click back Changing user passwords Any logged in user can change their own password A global admini...

Страница 136: ...ou password contact a global administrator and ask them to give you a new password Passwords are stored in an encrypted form and are not retrievable or visible by anyone If a user forgets their password they must be given a new password which they can then change 3 Enter your new password in the New Password field 4 Enter the new password again in the Confirm New Password field 5 When finished cli...

Страница 137: ...s if the user is authenticated by the SMU itself local users or if the user is authenticated by a RADIUS server Password and Confirm Password For users authenticated by the SMU only local users These fields do not apply for users authenticated by a RADIUS server The password for the user Characters are hidden and the exact same password must be entered in both fields The password cannot exceed 256...

Страница 138: ...not manage users Server Administrators manage servers and clusters as specified in the administrator profile created by the Global Administrator Server Administrators cannot manage storage devices Server Administrators can manage file systems and file services such as CIFS Shares NFS Exports and they can manage file system related features and functions such as snapshots quotas and migration polic...

Страница 139: ...ad only attribute is shown but cannot be modified To change the read only attribute it is necessary to delete the user and then re add them SMU CLI Access For global administrators only when the check box is selected the administrator can access the SMU using the CLI as well as NAS Manager Available HNAS Servers Not available for global administrators because global administrators are allowed to m...

Страница 140: ... can also manage the storage attached to these servers OK Saves the currently defined user profile and returns to the SMU Users page Cancel Returns to the SMU Users page without saving the profile 3 Enter the new password in the Password field 4 Enter the new password again in the Confirm Password field 5 When finished click OK to save the new password Changing an SMU user profile Use NAS Manager ...

Страница 141: ...Confirm Password For users authenticated by the SMU only local users These fields do not apply for users authenticated by a RADIUS server The password for the user Characters are hidden and the exact same password must be entered in both fields The password cannot exceed 256 characters Changing an SMU user profile Chapter 4 User administration System Administrator Guide for VSP Gx00 models and VSP...

Страница 142: ...annot manage users Server Administrators manage servers and clusters as specified in the administrator profile created by the Global Administrator Server Administrators cannot manage storage devices Server Administrators can manage file systems and file services such as CIFS Shares NFS Exports and they can manage file system related features and functions such as snapshots quotas and migration pol...

Страница 143: ...read only attribute is shown but cannot be modified To change the read only attribute it is necessary to delete the user and then re add them SMU CLI Access For global administrators only when the check box is selected the administrator can access the SMU using the CLI as well as NAS Manager Available HNAS Servers Not available for global administrators because global administrators are allowed to...

Страница 144: ... SMU user password Note For users authenticated by the SMU only local users not available for users authenticated by a RADIUS server To edit the user s password type the new password in the Password and Confirm Password fields 4 For global administrators only allow or disallow SMU CLI access When the check box is selected the administrator can access the SMU by using the CLI as well as NAS Manager...

Страница 145: ...key infrastructure PKI You can use a Secure Sockets Layer SSL certificate HCS certificate or both to create a secure encrypted connection between the SVP and the storage system Managing HCS certificates This topic explains how to set or delete certificates for Hitachi Command Suite HCS that are used to check the server s reliability when SSL communication for HCS external authentication is perform...

Страница 146: ...CS server key must be updated The certificate file must have a crt extension Rename the file if necessary The certificate must be in X509 PEM format or X509 DER format Procedure 1 Close all Device Manager Storage Navigator sessions on the SVP 2 Open a command prompt window with administrator permissions 3 In the folder where the certificate update tool is located execute the following command C MA...

Страница 147: ... otherwise noted all steps are required Note that creation of private and public keys requires a dedicated program Download one from the OpenSSL website http www openssl org Creating a keypair To enable SSL you must create a keypair consisting of a public and a private key The instructions use Windows 7 as an example Creating a private key A private key is required to create an SSL keypair The fol...

Страница 148: ...sl req sha256 new key server key config c openssl bin openssl cfg out server csr 3 Enter the following information in the prompt Country Name two letter code State or Province Name Locality Name Organization Name Organization Unit Name Common Name To create a self signed certificate enter the IP address of the web server SVP The name you entered here is used as the server name host name To obtain ...

Страница 149: ...thority See Obtaining a signed and trusted certificate on page 149 Note When you send a request to a certificate authority specify the SVP as the host name Hitachi recommends that self signed certificates be used only for testing encrypted communication Obtaining a self signed certificate To obtain a self signed certificate open a command prompt and execute the following command c key c openssl bi...

Страница 150: ...ey file is stored and run the following command Caution Executing this command will overwrite the current key file To prevent loss of the key file do one of the following Back up the key file first Use a different key file input destination and output destination C key C openssl bin openssl rsa in key file input destination out key file output destination If Enter pass phrase for server key is dis...

Страница 151: ...ient p12 file is the SSL certificate in PKCS 12 format 5 Close the command prompt Updating a signed certificate To use SSL encrypted communication you must update and upload the private key and the signed server certificate public key to the SVP Before you begin You must have the Storage Administrator Initial Configuration role to perform this task You must be logged into the SVP A private key key...

Страница 152: ... might change the system drastically and may lead to service processor failure Therefore take sufficient care to consider the content of the certificate and private key to be set After the certificate update is complete depending on the environment the service processor can take 30 to 60 minutes to restart Returning the certificate to default You can return the certificate that was updated by the ...

Страница 153: ...een the SVP and the storage system The selections change the encryption level Higher encryption provides better security but the communication speed is slower TLS_RSA_WITH_AES_128_CBC_SHA Prioritize Transmission Speed This selection provides higher communication speed and lower security TLS_RSA_WITH_AES_128_CBC_SHA256 Prioritize Security This selection provides higher security and lower communicat...

Страница 154: ...torage Administrator View Modify role to complete this procedure Procedure 1 In the maintenance utility Menu navigation tree click System Management 2 Click Update Certificate Files 3 Select a Web Server certificate file to update Click the Web Server checkbox then click Browse Updating the certificate files Chapter 5 Setting up security System Administrator Guide for VSP Gx00 models and VSP Fx00 ...

Страница 155: ... Click Apply to update the certificates Releasing HTTP communication blocking If the web server supports SSL HTTPS you can use the HTTP setting tool to release a block to the HTTP communication port as needed Before you begin You must have the Storage Administrator Initial Configuration role to perform this task You must be logged into the SVP Procedure 1 Close all Device Manager Storage Navigator...

Страница 156: ...1 communications You can enable the disabled TLSv1 0 and TLSv1 1 communications This setting is optional Before you begin You must be logged into the SVP Procedure 1 Close all Device Manager Storage Navigator sessions on the SVP 2 Open a command prompt window with administrator permissions 3 In the folder where the tool is located execute the following command C MAPP wk Supervisor MappIniSet tlson...

Страница 157: ...ables users to log in to Device Manager Storage Navigator with the same password as the password that they use for other applications The authentication server must be configured for each user The following figure shows the login workflow without an authentication server The following figure shows the login workflow with an authentication server If an authorization server works together with an au...

Страница 158: ...PAP and CHAP authentication Kerberos v5 The following certificate file formats are available for LDAP server settings X509 DER format X509 PEM format One of the following encryption types must be used for the Kerberos server Windows AES128 CTS HMAC SHA1 96 RC4 HMAC DES3 CBC SHA1 DES CBC CRC DES CBC MD5 Solaris or Linux DES CBC MD5 Authorization server requirements The authorization server must sat...

Страница 159: ...DIUS servers you cannot use the SRV records LDAP server conditions The environmental setting for the DNS server is completed at the LDAP server The host name the port number and the domain name of the LDAP server are registered in the DNS server Kerberos server conditions The host name the port number and the domain name of the Kerberos server are registered in the DNS server Because UDP IP is use...

Страница 160: ...dministrator Naming a user group in Device Manager Storage Navigator When you create a user group in Device Manager Storage Navigator you name the group with the user s memberOf attribute value which is found in the Active Directory Device Manager Storage Navigator supports Active Directory nested groups After entering the user group name verify that the user group name that you entered is registe...

Страница 161: ...SMU they are maintained in the Active Directory server There are a number of benefits for SMU users The administrator does not need to maintain a separate set of user details because the SMU can just make use of the Active Directory enterprise user database Users can login using their usual name and password instead of having to remember a separate set of credentials for the SMU And instead of con...

Страница 162: ...roups under the supplied base distinguished name The addresses of one or more Active Directory servers that maintain the users and groups for the domain The content of all configured servers must be identical If DNS servers have been configured for the SMU then the SMU should be able to automatically discover these server addresses via the find servers button on the setup page SRV records must be ...

Страница 163: ...tion unit ou attributes The following table describes the fields on this page Field Item Description Connection settings Base Distinguished Name The LDAP root location for users and groups The name should only contain the domain components Connections Connection Attempts The maximum number of times that the SMU attempts to connect to each Active Directory server when a connection fails Timeout for...

Страница 164: ...e Active Directory servers in order of their response time quickest first If you add them in the same order the SMU attempts to authenticate users against the fastest responding servers first Add Add an Active Directory server after you have entered its fully qualified domain name or IP address Move Up Move Down If there is more than one server use these buttons to prioritize the list Remove Remov...

Страница 165: ...g user that has permission to access Active Directory An Search User DN would typically contain common name cn and possibly organization unit ou attributes as well as the domain components The domain components should match those used in the Base Distinguished Name An example Search User DN is cn ldapguest cn users dc example dc com 5 Enter the Password of the Search User an existing user that may...

Страница 166: ... you begin Note that the administrator is only able to configure groups after Active Directory servers have been added on the Active Directory Servers page Procedure 1 Navigate to the Home SMU Administrator Active Directory Groups to display the Active Directory Groups page This page shows all Active Directory groups that have been added Note that Active Directory groups can be associated with a g...

Страница 167: ...MU CLI access SMU CLI access is not available on an embedded SMU or a NAS module SMU This column also displays those Active Directory groups assigned the read only attribute A read only group has permission to view most pages of the NAS Manager but they are not allowed to perform any actions that would trigger a system or configuration change Note Read only users can not access the CLI and a user ...

Страница 168: ...p Distinguished Name The LDAP root location for users and groups The name is recommended to contain just the domain components Groups can be added manually by entering their distinguished name and then pressing the OK button A maximum of 100 groups can be added Alternatively groups can be added by using the find group button find group Queries the Active Directory to show the list of available gro...

Страница 169: ...only users in the NAS Storage System User Administration Guide OK Click to save the group details The SMU checks that the group exists in Active Directory If the group does not exist or if the SMU failed to access any AD server the user is asked for confirmation that they still wish to save it After saving the group the updated group list page is displayed cancel Cancels input 3 There are two ways...

Страница 170: ...u log mgr security log On returning to Active Directory Groups page the current list of configured groups is displayed 6 Click the details button in the right hand column to view details of a previously defined group When displaying the group details the SMU checks that the group exists in Active Directory and displays a warning if it does not exist or if it could not access an Active Directory se...

Страница 171: ...er protocol that runs in the application layer using UDP as transport The SMU acts as a RADIUS client component that communicates with the RADIUS server to validate logins The RADIUS server is usually a background process running on a Unix or Microsoft Windows server RADIUS serves three functions Authenticates users or devices before granting them access to a network Authorizes those users or devi...

Страница 172: ...he highest priority RADIUS server the SMU will try to contact the secondary RADIUS server then the third RADIUS server then the next server until the SMU has tried to contact all the RADIUS servers in the list Displaying list of RADIUS servers Procedure 1 Navigate to Home SMU Administration RADIUS Servers Adding a RADIUS server Procedure 1 Navigate to Home SMU Administration RADIUS Servers to disp...

Страница 173: ...hared secrets that are at least 22 characters long and consisting of a random sequence of upper and lower case letters numbers and punctuation To ensure a random shared secret use a computer program to generate a random sequence at least 22 characters long Windows 2008 Server allows you to generate a shared secret when adding the RADIUS client The SMU will support a shared secret from 1 up to 128 ...

Страница 174: ...his RADIUS server and return to the RADIUS Servers page cancel Exits without saving the configuration Displaying details of RADIUS server Procedure 1 Navigate to Home SMU Administration RADIUS Server to display the RADIUS Server page 2 Select a RADIUS server and click details to display the RADIUS Server Details page Field Item Description RADIUS server IP address or DNS name The RADIUS server IP ...

Страница 175: ... the timeout is reached and there are no more servers to try the user cannot be authenticated and the login fails Check connectivity Click to check the connectivity status of the RADIUS server Configuring SMU security NAS module only This screen allows you to change web application security settings The SMU can be configured to control the hosts that can access the SMU and auxiliary devices manage...

Страница 176: ...eave at least one cipher suite enabled that your browser supports apply Click apply to save your changes 2 Optionally to disable cipher suites use the arrow to move enabled cipher suites from the Enabled Cipher Suites list at the left to the Disabled Cipher Suites list at the right It is necessary to have at least one cipher suite remain enabled Note Take care before disabling cipher suites becaus...

Страница 177: ...ice Manager Storage Navigator See the Hitachi SNMP Agent User Guide for information about using SNMP traps Configuring alert notifications Procedure 1 In the maintenance utility click the SNMP tab to display it 2 In SNMP Agent click Enable to use the agent or Disable not to use it 3 Select the Email tab The Email window displays the current settings for the Mail Server SMTP Authentication an Email...

Страница 178: ...intenance utility Administration pane select Alert Notifications 2 In the Alert Notifications window click Set Up The Set Up Alert Notifications window displays the Email tab by default 3 Select the type of report to send Host Report Sends alerts only to the hosts for which a SIM report setting is made All Sends alerts to all hosts The alert notification destination is common to Syslog SNMP and em...

Страница 179: ...box 5 Enter an email address in Email Address From 6 Enter an email address in Email Address Reply To 7 In Mail Server Settings select the mail server type Identifier IPv4 or IPv6 8 To use SMTP authentication click Enable 9 In Account enter an SMTP account name 10 In Password enter the SMTP account password 11 Click Apply to save the changes and close the Set Up Alert Notifications window Syslog s...

Страница 180: ...cate File Name click Browse to select a client certificate file 5 In Location Identification Name enter a name to use to identify the server 6 To set up an automatic attempt to reconnect to the server in case of communication failure in Retry click Enable Click Disable to not use this feature 7 If you enabled retry in Retry Interval enter the number of seconds that the system will wait between ret...

Страница 181: ... window contains three tabs Email Syslog and SNMP Select the desired tab to send a test message of the type specified in the tab name Sending a test email message Procedure 1 Click the Email tab The Email tab displays the current settings for the mail server SMTP authentications and email addresses 2 Click Send Test Email A completion notice displays 3 Click OK to acknowledge the notice and close ...

Страница 182: ...es and failure details Sending a test Syslog message Procedure 1 Click the Syslog tab The Syslog tab displays the current settings for the primary and secondary servers 2 Click Send Test message to the Syslog Server A completion notice displays 3 Click OK to acknowledge the notice and close the message Sending a test SNMP trap Procedure 1 Click the SNMP tab The SNMP tab displays the current settin...

Страница 183: ...ou execute the batch file in step 3 model identification number Use the format 83 model name serial number where model name is one of the following VSP G200 2000 VSP G400 or VSP F400 VSP G600 or VSP F600 4000 VSP G800 or VSP F800 6000 For example for a VSP G600 that has the serial number 400102 the value is 834000400102 3 Execute the following batch file eventlog bat action monitoring period actio...

Страница 184: ...e Tools Event Viewer 2 Click Windows Logs Application in the left pane Output example of the failure information The storage system delivers a report after you send failure information to the event log The storage system failure information will look similar to the following example Viewing the Windows event log Chapter 6 Alert notifications System Administrator Guide for VSP Gx00 models and VSP F...

Страница 185: ...l name and serial number of the storage system Refcode Reference code Detail Detailed failure information ActionCode Includes action code expected failure parts and location A maximum of 8 failure information can be shown 3 Log name Displays the log type This is always displayed as Application Output example of the failure information Chapter 6 Alert notifications System Administrator Guide for VS...

Страница 186: ...ays displayed as N A 8 OpCode This is always displayed as blank 9 Logged Displays the date and time when the event log was registered 10 Task category This is always displayed as None 11 Keywords This is always displayed as Classic 12 Computer Displays the computer name on which the event occurred For reference code failure details and alert level see the SNMP failure trap reference code section i...

Страница 187: ...e key install the prerequisite software and then enable the key License key types To use software you must install the license key provided when you purchase that software You can use software with licensed capacity for a term key by installing a term key and overwriting a permanent key as long as the term key is valid If the term key expires when the system is being used and the capacity needed f...

Страница 188: ...stalled Not Enough License or Grace Period displays in the status field of the License Keys window You can enable or disable the term key for each software application Unlike the temporary key and the emergency key the number of days the term key is enabled is counted as the number of effective days of the term key rather than the number of elapsed days from the installation date The number of eff...

Страница 189: ...e the emergency key can be reinstalled during the effective term the effective term can be restored to 30 days In other scenarios the emergency key can be installed only once Cautions on license capacities in license related windows License capacities are displayed not only in license related windows but also in the Pools window and the Replication window When you install or overwrite a temporary ...

Страница 190: ... groups you must purchase physical capacity of the pool for the license capacity Mounted capacity usable capacity The licensed capacity is estimated by using the capacity of all the volumes in the storage system When you estimate for the capacity of the accelerated compression enabled parity groups the physical capacity of the parity group is the maximum of the estimated capacity even if you creat...

Страница 191: ...plicator Table 11 Software bundle licensed capacity for VSP F400 F600 F800 Software bundle VSP F400 F600 F800 Hitachi Storage Virtualization Operating System SVOS Unlimited Hitachi Remote Replication Unlimited Hitachi Encryption Key Unlimited Hitachi Disaster Recovery Extended Unlimited Calculating licensed capacity for a normal volume A normal volume is a volume that is not blocked or protected T...

Страница 192: ...least 6 TB Calculating licensed capacity for an external volume Use the following equation to calculate the licensed capacity for an external volume External Volume Capacity KB Volume Capacity number of blocks X 512 bytes 1 024 Calculating pool capacity The license capacity of Dynamic Provisioning is calculated using the total capacity of the Dynamic Provisioning pool If you use Dynamic Provisioni...

Страница 193: ...maintenance utility to install and uninstall block license keys Use NAS Manager to install and enable both block and file license keys on VSP Gx00 models with NAS modules Using NAS Manager you can install both block and file licenses but only remove file licenses To remove block licenses you must use the maintenance utility Caution If you use Dynamic Provisioning the licensed capacity might become...

Страница 194: ...nager you can install both block and file licenses but only remove file licenses To remove block licenses you must use the maintenance utility Adding a license key Adding a license key can enable services or increase the capabilities of your system To add a license key Procedure 1 Navigate to Home Server Settings License Keys 2 Click add The following table describes the fields on this page Field ...

Страница 195: ... Follow the instructions to reboot the system if necessary Installing block licenses using maintenance utility Before you begin You must have the Storage Administrator Initial Configuration role to perform this task Note If you do not install the prerequisite software before you install the license key software the software will install correctly but will be disabled To enable a license key instal...

Страница 196: ...click License Keys to open the License Keys window 2 Select the license to disable You can select from one to all of the licenses listed in window the at the same time 3 Click Disable to display the License Keys window 4 Click Finish 5 Check the settings and click Apply Removing a software license You can remove a software license that is in disabled status Before you begin You must have the Stora...

Страница 197: ...gs so that the logical volumes are usable as S VOLs 4 Uninstall the Data Retention Utility Examples of license information The following table provides examples of license information displayed in the License Keys table of the maintenance utility License key status example Status Key type Licensed capacity Term Days Not installed Not installed blank Blank Blank Installed with the permanent key Ins...

Страница 198: ...h the permanent or term key then reinstalled with the emergency key Installed emergency Permitted and Used Number of remaining days before expiration License key expiration If the license key for software A expires the license key for software B is also disabled if software B requires an enabled software A In this scenario Installed Disabled is shown for software B in the Status column of the Lice...

Страница 199: ...you begin You must have the Audit Log Administrator View Modify role to perform this task Procedure 1 In the maintenance utility Administration tree select Audit Log Settings 2 Click Set Up Syslog Server 3 Select the desired Transfer Protocol 4 Enable or disable the Primary Server 5 Enable or disable the Secondary Server 6 Enable or disable the Output Detailed Information 7 Click Apply to save the...

Страница 200: ...le 6 To use one of the two settings in steps 3 through 5 when you export an another auditlog txt file click Do this automatically for files like this from now on 7 Click OK 8 Browse to the directory where you want to save the file Use the default file name auditlog txt or change the file name as desired Click Save The file is saved and the dialog box closes 9 Browse to the directory where you want...

Страница 201: ...t Log Settings 2 Click Send Test Message to Syslog Server The following message box opens 3 Click OK to close the message box Check the syslog server messages and verify that the test message was received and is on the server Send test message to syslog server Chapter 8 Configuring audit logs System Administrator Guide for VSP Gx00 models and VSP Fx00 models 201 ...

Страница 202: ...Chapter 8 Configuring audit logs System Administrator Guide for VSP Gx00 models and VSP Fx00 models 202 ...

Страница 203: ... summary of the system data and configuration ports channel adapters and disk adapters You can save reports in CSV files or HTML files Tables in the HTML version of the configuration reports are sortable Before making changes to a storage system create reports of your storage system s physical configurations and logical settings Make a similar report after the changes and then compare the reports ...

Страница 204: ...dy created 20 reports delete unnecessary reports first and then create a new report Note If you use the configuration setting raidcom command of CCI to create parity groups and LDEVs click File Refresh All to update the configuration information before creating a configuration report Before you begin You must have Storage View permission to perform this task Procedure 1 Open the Create Configurati...

Страница 205: ...p includes all information about the SVP and the storage system Select this when Device Manager Storage Navigator has a serious problem for example Device Manager Storage Navigator does not start or when you need to determine if the storage system has a problem Before you begin You must be logged into the SVP Device Manager Storage Navigator must be running The configuration information must be re...

Страница 206: ...the folder name should be C Result_832000400001 When the tool is being executed is displayed in the command prompt When the execution is completed is displayed Executing zSv_AutoDump exe is completed 5 A completion message box displays Press any key to acknowledge the message and close the message box hdcp tgz This is the dump file Give this file to the maintenance personnel If you save too many d...

Страница 207: ...ollowing figure provides examples of reports in table format The icons are displayed before the names of the reports in table view If the icons are not displayed correctly update the window To sort data in table reports click any column header While a table is reading a large amount of data the table columns cannot be manipulated sorted or resized However you can view previously displayed items se...

Страница 208: ...of the iSCSI target Disk Boards report The following figure shows an example of a Disk Boards report The table following the figure describes the items in the report Item Description DKB Location of the disk board External is displayed when the storage system has an external storage system External FICON DM is displayed when the storage system has volumes for FICON DM CHAP Users report Appendix A ...

Страница 209: ...he logical volumes belonging to the parity groups that the disk board controls Unallocated LDEV Capacity MB Total capacity of the logical volumes that are inaccessible from the host and belong to the parity groups controlled by the disk board Host Groups iSCSI Targets report The following figure shows an example of a Host Groups iSCSI Targets report The table following the figure describes the ite...

Страница 210: ...EVs Port Security Security of the port Authentication Method iSCSI target method authentication settings CHAP None Comply with Host Setting Authentication Mutual CHAP Enable or disable the iSCSI target mutual CHAP Enabled Disabled Authentication User Name Authenticated iSCSI target user name Authentication Number of Users The number of authenticated users registered in the iSCSI target Host Mode H...

Страница 211: ...n When more than one host mode option is specified they are separated by semicolons Host Name Name of the host that can access the LU path through the port HBA WWN iSCSI Name Host WWN host iSCSI name The name is in 16 digit hex format Logical Devices report The following figure shows an example of a logical volumes report The table following the figure describes the items in the report Logical Dev...

Страница 212: ...where the logical volume belongs A hyphen is displayed as RPM when the drive is SSD 1 Drive Type Code Type code of the drive of the parity group where the logical volume belongs1 Drive Capacity Capacity of the drive of the parity group where the logical volume belongs 1 PG Members List of the drive locations of the parity group where the logical volume belongs1 Allocated Information about whether ...

Страница 213: ...r the command device A hyphen displays when Attribute is not CMDDEV Command Device Device Group Definition Indicates whether Device Group Definition is specified as the attribute for the command device A hyphen displays when Attribute is not CMDDEV Encryption Indicates whether the parity group to which the LDEV belongs is encrypted For internal volumes Enabled encrypted or Disabled not encrypted F...

Страница 214: ...ns are separated by semicolons when more than one option is specified LUN Logical unit number LDEV ID Logical volume number Emulation Type Emulation type of the logical volume Capacity MB Capacity of the logical volume Asymmetric Access State Asymmetric access status Active Optimized Prioritized Active Non Optimized Lower priority MP Units report The following figure shows an example of an MP unit...

Страница 215: ... includes volumes for FICON DM Number of Resources Total The total number of resources that the MP unit controls It is the total of Number of Resources LDEV Number of Resources Journal and Number of Resources External Volume MP Unit Details report The following figure shows an example of an MP unit details report The table following the figure describes the items in the report MP Unit Details repo...

Страница 216: ...the report Item Description PG Parity group number If the number starts with E for example E1 1 the parity group contains external volumes Hitachi Universal Volume Manager User Guide If the number starts with M for example M1 1 the parity group contains volumes for FICON DM DKB Name of the disk board that controls the parity group1 RAID Level RAID level of the parity group1 Resource Group Name Nam...

Страница 217: ... of the drive in the parity group1 RAID Concatenation 0 The number indicating a parity group 0 connected to this parity group1 2 RAID Concatenation 1 The number indicating a parity group 1 connected to this parity group1 2 RAID Concatenation 2 The number indicating a parity group 1 2 connected to this parity group1 2 Encryption Indicates whether the parity group is encrypted For internal volumes E...

Страница 218: ...ity group of physical devices Emulation Type Parity group of physical devices Drive type Drive type of physical devices SAS SSD RPM Revolutions per minute RPM in the parity group 8000 15000 A hyphen is displayed instead of the RPM when the drive type is an SSD Drive Type Code Type code of the drive in the parity group Output example SLR5B M200SS SFB5A M200SS if multiple drive types are set Drive S...

Страница 219: ...g a parity group 1 connected to this parity group Output example 2 1 3 1 4 1 RAID Concatenation 2 Number indicating a parity group 2 connected to this parity group Output example 2 1 3 1 4 1 Resource Group Name Name of resource group to which the parity group of physical devices belong Resource Group ID ID 0 to 1023 binary Encryption Enable or disable status of the parity group to which the physic...

Страница 220: ...ettings Point to Point FC AL IPv4 IP Address IPv4 address of the port Output example 192 168 0 100 IPv4 Subnet Mask IPv4 subnet mask of the port Output example 255 255 255 0 IPv4 Default Gateway IPv4 default gateway of the port Output example 255 255 255 0 IPv6 Mode IPv6 settings of the port Enabled Disabled IPv6 Link Local Address IPv6 link local address of the port 16 digit hexadecimal IPv6 Glob...

Страница 221: ...VLAN Enabled Disabled VLAN ID Number of VLAN set to the port 1 to 4 094 CHAP User Name User name for the CHAP authentication iSNS Server Mode iSNS mode settings ON OFF iSNS Server IP Address IP address of the iSNS server 30 to 65 535 iSNS Server TCP Port Number Number of the TCP port used in iSNS binary Address Loop ID Fibre port address and Loop ID of the port Port Security Security of the port E...

Страница 222: ...ort Number of PGs The number of the parity groups having the logical volumes that can be accessed through the port Number of DKBs The number of the disk boards controlling the parity group that contains the logical volumes that can be accessed through the port Power Consumption report The following figure shows an example of a power consumption report A record is created every two hours for each p...

Страница 223: ...ster1 Maximum degrees C Maximum temperature of DKC0 CL1 TEMP DKC0 Cluster1 Minimum degrees C Minimum temperature of DKC0 CL1 TEMP DKC0 Cluster2 Average degrees C Average temperature of DKC0 CL2 TEMP DKC0 Cluster2 Maximum degrees C Maximum temperature of DKC0 CL2 TEMP DKC0 Cluster2 Minimum degrees C Minimum temperature of DKC0 CL2 Table 14 Power Consumption report Item Description Date and Time Dat...

Страница 224: ...mat TEMP DB XX DBPS XX CL Average Maximum or Minimum Temperature in degrees Celsius XX DB number 00 to 07 VSP G200 00 to 23 VSP G400 G600 VSP F400 F600 00 to 47 VSP G800 or VSP F800 CL Cluster number 1 or 2 Spare Drives report The following figure shows an example of a spare drives report The table following the figure describes the items in the report Item Description Drive Capacity Capacity of t...

Страница 225: ...items in the report Item Description Drive Type Code Type code of the SSD Drive Capacity Capacity of the SSD Location Location of the SSD Used Endurance Indicator Used endurance of the SSD SSD Endurance report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 225 ...

Страница 226: ...ual report includes several more rows of information The table following the figure describes the items in the report Figure 1 Storage System Summary report VSP G200 Storage System Summary report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 226 ...

Страница 227: ...ary report VSP G200 Figure 3 Storage System Summary report VSP G400 VSP G600 Storage System Summary report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 227 ...

Страница 228: ...ary report VSP G400 VSP G600 Figure 5 Storage System Summary report VSP G800 Storage System Summary report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 228 ...

Страница 229: ...System Type Type of the storage system Serial Number Serial number of the storage system IP Address IP address of the SVP Storage System Summary report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 229 ...

Страница 230: ...he Number of DKBs The number of disk boards on the module System Options List of the system options specified for the storage system Drive Capacity TB Total capacity of drives in the storage system except for external volumes Spare Drive Capacity TB Total capacity of the spare drives in the storage system Free Drive Capacity GB Total capacity of the free drives in the storage system Volume Capacit...

Страница 231: ...lay as graphics icons are displayed before the names of reports in graphical view If the icons or graphics are not displayed properly update the window Cache Memories report This report shows cache memory data including shared memory main board and DIMM capacity The total cache memory is displayed for each module Figure 7 Cache Memories report VSP G200 Reports in graphical view Appendix A Examples...

Страница 232: ...igure 8 Cache Memories report VSP G400 G600 VSP F400 F600 Cache Memories report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 232 ...

Страница 233: ...e keys show which channel boards are installed green keys and which channel boards are not installed gray keys If a PCIe channel board installed in the DKC is connected to a channel board box the status of the channel board box is displayed If a NAS module is mounted on a channel board the status of the module is displayed Channel Boards report Appendix A Examples of storage configuration reports ...

Страница 234: ...el Boards report VSP G400 G600 VSP F400 F600 Figure 12 Channel Boards Report when a NAS module is mounted Channel Boards report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 234 ...

Страница 235: ...VSP G800 VSP F800 Figure 14 Channel Boards report when a channel board box is connected Channel Boards report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 235 ...

Страница 236: ...lso shows the storage system type serial number and software version You can check the legend for disk units such as SAS SSD Spare Free or Not Installed If a PCIe channel board installed in the DKC is connected to a channel board box the status of the channel board box is displayed Physical View report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 mod...

Страница 237: ...Figure 16 Physical View report VSP G200 Physical View report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 237 ...

Страница 238: ...igure 17 Physical View report VSP G400 G600 VSP F400 F600 Physical View report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 238 ...

Страница 239: ...igure 18 Physical View report when a NAS module is mounted Physical View report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 239 ...

Страница 240: ...Figure 19 Physical View report VSP G800 VSP F800 Physical View report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 240 ...

Страница 241: ... 20 Physical View report when a channel board box is connected Physical View report Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 241 ...

Страница 242: ...ge Navigator reports appear in CSV format This topic describes reports that are saved in CSV format AllConf csv This is the concatenated file of all the csv files CSV files Appendix A Examples of storage configuration reports System Administrator Guide for VSP Gx00 models and VSP Fx00 models 242 ...

Страница 243: ...pacity that cannot be used as data cache memory in the total cache memory capacity inside of the controller board The capacity per cluster is displayed Includes the shared memory capacity cache directory capacity and the fixed capacity Fixed capacity is the cache memory capacity that is used for controlling the storage system with the controller board VSP G200 0 to 18944 VSP G400 G600 or VSP F400 ...

Страница 244: ...iSCSI Target ID2 The iSCSI number of the target 00 to fe hexadecimal Notes 1 If the character string contains a comma the comma is converted to a tab 2 For the target information see the record information with the same iSCSI target ID in IscsiTargetInfo csv ChaStatus csv This CSV file contains information about the status of each channel board CHB A record is created for each CHB Table 17 ChaStat...

Страница 245: ...e For example For DKCPS DKCPS 00 For DKUPS DKUPS000 1 For Battery BATTERY 1BA For SVP SVP BASIC Equip Status Equipment status of the device Equipped Not Equipped Status Status of the device Normal Abnormal Blank if Equip Status is Not Equipped DkaInfo csv This CSV file contains information about disk boards DKBs A record is created for each DKB Table 19 DkaInfo csv file Title DKB Information Item ...

Страница 246: ...the format BEPORT XXYY where XX BE controller number 2 digit hexadecimal YY BE port number 2 digit hexadecimal Notes 1 1 Normal 0 Abnormal DkcInfo csv This CSV file contains information about the DKC A record is created for each module When Module 1 is not installed the record for Module 1 is not created Table 21 DkcInfo csv file Title DKC Information Item Content Storage System Type Storage syste...

Страница 247: ...o csv on page 282 VSP G400 Install is Disabled for both Model upgrade license and All Flash Array VSP F400 Install is Disabled for Model upgrade license and Install is Enabled for All Flash Array VSP G600 Install is Enabled for Model upgrade license and Install is Disabled for All Flash Array VSP F600 Install is Enabled for both Model upgrade license and All Flash Array To determine whether the mo...

Страница 248: ...e An item name is displayed as DBxx DBPSxxy The names are listed in ascending order of the DB number See DkuTempInfo csv on page 248 for locations and values for DBxx and DBPSxxy DkuTempInfo csv This CSV file contains information about DB temperature for every two hours A record is DB temperature information obtained from the environment monitor A record output to the first line shows the latest t...

Страница 249: ...s up to DB23 DBPS232 DB47 DBPS472 Temperature maximum value Maximum temperature C for the two hour period of DB47 DBPS472 For VSP G200 item shows up to DB07 DBPS072 For VSP G400 VSP G600 VSP F400 VSP F600 item shows up to DB23 DBPS232 DB47 DBPS472 Temperature minimum value Minimum temperature C for the two hour period of DB47 DBPS472 For VSP G200 item shows up to DB07 DBPS072 For VSP G400 VSP G600...

Страница 250: ...easured by DBPS items are displayed in this unit DkuTempMaxInfo csv shows the maximum temperature as DB temperature data The total number of items depends on the following model VSP G200 17 VSP G400 VSP G600 VSP F400 VSP F600 49 VSP G800 VSP F800 97 The DB temperature data displayed in DkuTempAveInfo csv average temperature only DkuTempMaxInfo csv maximum temperature only and DkuTempMinInfo csv mi...

Страница 251: ...ormation obtained from the environment monitor A record output to the first line shows the latest temperature information Because DB temperature information is measured by DBPS items are displayed in this unit DkuTempMinInfo csv shows the minimum temperature as DB temperature data The total number of items depends on the following model VSP G200 17 VSP G400 VSP G600 VSP F400 VSP F600 49 VSP G800 V...

Страница 252: ...he local and the external storage systems For details of external volumes see Hitachi Universal Volume Manager User Guide Information about the NAS module is not displayed in this CSV file Table 27 ELunInfo csv file Title External LUN Information Item Content VDEV Virtual device number to which the external volume is mapped Characteristic1 Identification number of the external volume1 Characterist...

Страница 253: ...ame Product name of the external storage system Serial Number Serial product number of the external storage system Path Mode Mode which indicates how the paths between local and external storage systems operate Multi Single ALUA Port Name of a local port from which the external path is connected to the external storage system WWN Port identifier number of the external storage system Blank if Packa...

Страница 254: ...l volume Normal Round robin Extended Round robin Disabled A hyphen is displayed if Single is specified in Path Mode Path Mode on Profile Path mode on profile information of the external storage system Multi Single ALUA Settable Indicates whether ALUA mode can be set as path mode on the external storage system Yes ALUA mode can be set No ALUA mode cannot be set ALUA Permitted Indicates whether ALUA...

Страница 255: ...ted to a tab EnvMonInfo csv This CSV file contains information about the power and temperature of the storage system Power and temperature measurements from the environment monitor are recorded every two hours No records are created during a system power failure or if the breakers are turned off If the system is in maintenance mode or the SVP is rebooted up to two hours of records could be lost If...

Страница 256: ...e of CL2 C DKC0 CL2 Temperature maximum value DKC0 Maximum temperature of CL2 C DKC0 CL2 Temperature minimum value DKC0 Minimum temperature of CL2 C FcSpNameInfo csv This CSV file contains information about Fibre Channel Security Protocols FCSPs A record is created for each initiator host For details of port setting see the Provisioning Guide Information about the NAS module is not displayed in th...

Страница 257: ...me interval in seconds before retrying authentication in case of failure in authentication Refusal Intvl Min Time interval in minutes before starting next authentication in case of failure in authentication for the number of times displayed by Refusal Freq Counts Refusal Freq Counts Number of times of authentication allowable for connection to a port Switch Port Username WWN information about the ...

Страница 258: ...tInfo csv This CSV file contains information about iSCSI Initiator Host set to the channel board port A record is created for each iSCSI Host Initiator target Information about the NAS module is not displayed in this CSV file Table 32 IscsiHostInfo csv file Title iSCSI Host Information Item Content Port Port name iSCSI Name iSCSI host name Host Name Nickname for iSCSI host name iSCSI Target ID1 iS...

Страница 259: ... local address Output example xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx hexadecimal Output example Auto Auto is displayed if the link local address is automatically set Blank if IPv6 Mode is Disabled IPv6 Global Address IPv6 global address of the port Output example xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx hexadecimal Output example Auto Auto is displayed if the global address is automatically set Bl...

Страница 260: ...s 64KB 128KB 256KB 512KB 1024KB iSNS Server Mode iSNS mode settings On Off iSNS Server IP Address IP address of the iSNS server IPv4 xxx xxx xxx xxx decimal IPv6 xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx hexadecimal Blank if iSNS Server Mode is Off iSNS Server TCP Port Number Port number of TCP used for iSNS 1 to 65535 Blank if iSNS Server Mode is Off VLAN Tagging Mode VLAN tagging mode set to the p...

Страница 261: ...iSCSI target information set to the channel board port A record is created for each iSCSI target Information about the NAS module is not displayed in this CSV file Table 34 IscsiTargetInfo csv file Title iSCSI Target Information Item Content Port Port name iSCSI Target Alias iSCSI target alias iSCSI Target ID Number of the iSCSI target 00 to fe hexadecimal iSCSI Target Name Name of the iSCSI targe...

Страница 262: ...v This CSV file contains information about journals A record is created for each journal Table 35 JnlInfo cvs file Title JNL Information Item Content JNL Journal number in hexadecimal Current MPU Number and name of MP unit currently controlling the journal MPU 10 MPU 11 MPU 20 MPU 21 Setting MPU Number and name of MP unit configured to control the journal MPU 10 MPU 11 MPU 20 MPU 21 LdevCapaInfo c...

Страница 263: ...file contains information about the number of logical devices LDEVs A record is created for each of the classifications shown in Volume Kind Table 37 LdevCountInfo csv file Title LDEV Count Information Item Content Volume Kind The following classifications are output Internal Volumes External Volumes Total Volumes Allocated OPEN LDEVs The number of allocated open system volumes LDEVs Unallocated O...

Страница 264: ...re the LDEV belongs Output example X Y decimals If the number starts with E for example E1 1 the parity group contains external volumes If LDEV Type is Dynamic Provisioning or Thin Image a hyphen is output LDEV LDEV number 00 00 00 to 00 3f ff LDEV Name LDEV name1 LDEV Emulation LDEV emulation type LDEV Type LDEV type Basic Dynamic Provisioning External Thin Image ALU LdevInfo csv Appendix A Examp...

Страница 265: ...parity group to be concatenated to parity group 0 identified by ECC Group Blank if the parity group is not concatenated to another parity group RAID Concatenation 1 Number of parity group to be concatenated to parity group 1 identified by ECC Group Blank if the parity group is not concatenated to another parity group RAID Concatenation 2 Number of parity group to be concatenated to parity group 2 ...

Страница 266: ...MDDEV CmdDevUserAuth Indicates whether User Authentication is specified as the attribute for the command device Enabled User authentication setting is set Disabled User authentication setting is not set Blank LDEV Attribute is not CMDDEV CmdDevDevGrpDef Indicates whether Device Group Definition is specified as the attribute for the command device Enabled Device group definition setting is set Disa...

Страница 267: ...ssion a blank space is displayed Also for external volumes a blank is displayed Notes 1 If the character string contains a comma the comma is converted to a tab LdevStatus csv This CSV file contains information about the status of logical devices LDEVs A record is created for each LDEV Table 39 LdevStatus csv file Title LDEV Status Item Content VDEV Virtual device number in which the LDEV is defin...

Страница 268: ...e size allocated to this CLPR in MB ECC Group Number of parity group allocated to this CLPR If the number starts with E for example E1 1 the parity group contains external volumes If the type of the LDEV is a Dynamic Provisioning or Thin Image virtual volume a hyphen is output Refer to LdevInfo csv for information about the LDEV type LDEV V VOL LDEV number allocated to this CLPR VSP G200 00 00 00 ...

Страница 269: ...evice Information about whether the LDEV is a command device On Command Device On Remote Command Device Off Others Command Security Information about whether the command device is secured On Off CVS Information about whether the LDEV is a custom sized volume On Customized volume Off Other volumes CHB Location Name of the CHB on which this port is installed CHB 1A 1B 1C 1D or CHB 2A 2B 2C 2D if Pac...

Страница 270: ...Asymmetric access status output only for an open system CHA that is Fibre or FCoE Indicates the asymmetric access status Active Optimized Prioritized Active Non Optimized Lower priority Blank if Package Type is iSCSI LunPortInfo csv This CSV file contains information about LU path definition A record is created for each port For details of LU path definition see the Provisioning Guide Table 42 Lun...

Страница 271: ...ibre topology settings Point to Point FC AL Blank if Package Type is iSCSI or NAS module Channel Speed Channel Speed of this port 1 Gbps 2 Gbps 4 Gbps 8 Gbps 10 Gbps 16 Gbps 32 Gbps Auto Blank if Package Type is NAS module WWN WWN of this port hexadecimal number Blank if Package Type is iSCSI or NAS module CHB Location CHB on which the port is installed CHB 1A 1B 1C 1D or CHB 2A 2B 2C 2D if Packag...

Страница 272: ...AIN The version of the firmware for the RAID storage system 10 digits ROM BOOT ROM BOOT firmware version 6 digits RAM BOOT RAM BOOT firmware version 6 digits Config Config version 8 digits HDD HDD firmware version 4 digits HDD version in the format HDD device type code version If an HDD drive is not installed only a colon is displayed Expander Expander firmware version 6 digits CFM CFM firmware ve...

Страница 273: ...This CSV file contains information about endurance information of MLC A record is created for each MLC endurance information If you change the SVP time 1 month or more the history acquisition months will not be in order Table 44 MlcEnduranceInfo csv file Title MLC Endurance Information Item Content ECC Group Number of parity group of which this MLC including FMD and FMC is a component If it is a s...

Страница 274: ...0 120 months ago ModePerLpr csv This CSV file contains information about system option modes A record is created for each system option mode Table 45 ModePerLpr csv file Title System Option Mode Per LPR Item Content System Option Mode System option mode 0 to 2047 decimal number LPR 0 LPR 1 LPR 31 System option mode for LPR 0 to LPR 31 If the system option mode is on On If the system option mode is...

Страница 275: ... or MPU 01 03 is blank if Unified Mode of DkcInfo csv is On For VSP G200 MPU 00 00 to 03 only CMG 00 00 to 01 CMG 01 00 to 01 Path status1 with the cache module for the CTL number CMG XX YY XX I path YY CMG For VSP G200 CMG 00 00 to 01 only MPU 00 00 to 03 MPU 01 00 to 03 Path status1 with the MP unit number for the CTL number MPU XX YY XX I path YY MPU For VSP G200 MPU 00 00 to 03 only The displa...

Страница 276: ...0 01 VSP G400 G600 or VSP F400 F600 MP 00 01 03 VSP G800 or VSP F800 MP 00 01 07 Note 1 1 Normal 0 Abnormal PcbRevInfo csv This CSV file contains information about revisions of packages such as channel boards CHBs and others A record is created for each package Table 48 PcbRevInfo csv file Title PCB Revision Information Item Content Cluster Cluster number 1 2 Location Name of the part FRU number P...

Страница 277: ...s CSV file contains information about physical devices PDEVs A record is created for each PDEV Table 50 PdevInfo csv file Title PDEV Item Content ECC Group Number of parity group of which this PDEV is a component Spare Drive For spare drives Free Drive For free drives Emulation Type Emulation type for the parity group indicated by ECC Group Blank ECC Group is Spare Drive Free Drive ECC Group is Fr...

Страница 278: ...erial number of this drive RAID Level RAID level of the parity group indicated by ECC Group Blank if the ECC Group is Spare Drive or Free Drive RAID Concatenation 0 Number of parity group to be concatenated to parity group 0 identified by ECC Group 1 RAID Concatenation 1 Number of parity group to be concatenated to parity group 1 identified by ECC Group 1 RAID Concatenation 2 Number of parity grou...

Страница 279: ...e status of physical devices PDEVs A record is created for each PDEV Table 51 PdevStatus csv file Title PDEV Status Item Content CR C and R 2 digit hexadecimal numbers which identify the PDEV Output in the format XX YY where XX C YY R Pdev Status PDEV status1 Port0 Status Status of Port 0 on this PDEV1 Port1 Status Status of Port 1 on this PDEV1 Pdev Location Location name of this PDEV Notes 1 1 N...

Страница 280: ...tem Content CHB Location CHB name CHB 1A 1B 1C 1D or CHB 2A 2B 2C 2D if Package Type is NAS module Port Number of the port installed on the CHB 2 digit hexadecimal number Port Name of port installed on the CHB Package Type CHB type indicated on the CHB Location Fibre 8FC4 CHB 16FC2 CHB 32FC4R CHB iSCSI 10iSCSI2o CHB 10iSCSI2c CHB NAS module NAS module CHB SFP Kind SFP Small Form factor Pluggable K...

Страница 281: ...CSI or NAS module Resource Group ID Port Resource group ID of port 0 to 1023 decimal number Resource Group Name Port Resource group name of the port Port Internal WWN Port WWN Blank if Package Type is iSCSI or NAS module T10 PI Mode Indicates whether the T10 PI mode can be applied to the port Enabled Disabled Blank if Package Type is not 16FC2 CHB or 32FC4R CHB SFP Data Transfer Rate Maximum trans...

Страница 282: ...ry Emergency Term If no license key is installed Not Installed is output Permitted Volumes TB Permitted volume capacity for this software in TB If no upper limit value is set for the capacity Unlimited is output Expiration Date Expiration date of the software The format is mm dd yyyy Month Day Year Status License key status of the software Installed Not Enough License Grace Period Expired Not Inst...

Страница 283: ... about SSDs A record is created for each SSD Table 56 SsdDriveInfo csv file Title SSD Drive Status Item Content ECC Group Number of the parity group of which this SSD is a component Spare Drive The SSD is a spare drive Free Drive The SSD is a free drive CR C and R 2 digit hexadecimal numbers which identify the PDEV Output in the format XX YY where XX C YY R PDEV Location Drive type code of the PDE...

Страница 284: ... Battery Life Indicator Used battery life 0 to 100 Blank if SSD is other than FMD SsidInfo csv This CSV file contains information about SSIDs A record is created for each SSID Table 57 SsidInfo csv file Title Subsystem ID Item Content DEV Start First LDEV number for the SSID DEV End Last LDEV number for the SSID SSID Subsystem ID hexadecimal SysoptInfo csv This CSV file contains information about ...

Страница 285: ...tput example modeXXXX 0 to 2047 decimal number Link Failure Threshold Threshold to notify the link failure 0 to 255 decimal WwnInfo csv This CSV file contains information about hosts A record is created for each host For details about the host setting see the Provisioning Guide Table 59 WwnInfo csv file Title World Wide Name Information Item Content Port Port name Host Group Host group name iSCSI ...

Страница 286: ...is iSCSI CHB Location Name of port installed on the CHB CHB 1A 1B 1C 1D or CHB 2A 2B 2C 2D if Package Type is NAS module Package Type CHB type indicated on the CHB Location Fibre 8FC4 CHB 16FC2 CHB 32FC4R CHB iSCSI 10iSCSI2o CHB 10iSCSI2c CHB NAS module NAS module CHB T10 PI Mode Indicates whether the T10 PI mode can be applied to the port Enabled Disabled Blank if Package Type is not 16FC2 CHB or...

Страница 287: ...are set on the service processor SVP by your service representative Review the SOMs for your storage system and work with your service representative to ensure that the appropriate SOMs for your operational environment are configured on your storage system The following table lists and describes the SOMs for firmware version 83 05 01 Note The SOM information might have changed since this document ...

Страница 288: ...ring or Auto Correction Mode is used because host I Os conflict with copy processing the I O watching time is 30 seconds even when this SOM is set to ON 3 Even though SOM 15 is set to ON the function does not apply to SATA or NL SAS drives 4 When SOM 771 or SOM 797 is set to ON the setting of SOM 771 797 is prioritized for the read I O watching time 5 When this SOM is applied SOM 142 is disabled 6...

Страница 289: ...INs by using the PIN recovery flow and then perform the correction copy or the drive copy again One of the controlling option for correction drive copy OFF None 80 ShadowImage In response to the Restore instruction from the host if neither Quick nor Normal is specified the following operation is performed Mode 80 ON Normal Restore Reverse Copy is performed Mode 80 OFF default Quick Restore is perf...

Страница 290: ...ting For details about pairsplit pairresync command behavior contact customer support see SOM122 sheet Notes 1 Executing the pairresync command from CCI may be related to the SOM 87 setting 2 When performing At Time Split from CCI set this SOM to OFF or specify the environment variable HORCC_SPLT for Quick Otherwise Pairsplit may turn timeout 3 This SOM becomes effective after specifying Split Res...

Страница 291: ...e out is changed to the half of the normal threshold Mode 142 OFF The threshold value of blocking a drive port due to command time out does not change The default setting for this SOM depends on the microcode level Default ON 83 03 28 and later within 83 03 2x range 83 04 03 and later Default OFF earlier than 83 03 28 earlier than 83 04 03 within 83 04 0x range Notes 1 This SOM should always be se...

Страница 292: ... more longer than the average response time of the parity group excluding the slow drive 3 The drive is in one of the following statuses Normal A source drive or a target drive spare drive during drive copy A target drive not spare drive during copy back A target drive spare drive during correction copy Mode 144 OFF Checking for delayed drives is not performed The default setting for this SOM depe...

Страница 293: ...re occurs when this SOM is set to ON the time until MPB blockage is determined is shorter than usual OFF 448 Universal Replicator When the SVP detects a blocked path Mode 448 ON An error is assumed and the mirror is immediately suspended Mode 448 OFF default If the path does not recover within a specified period of time an error is assumed and the mirror is suspended Note SOM 448 setting is availa...

Страница 294: ... of communication failures between the MCU and RCU in UR configuration is required 2 When this SOM is set to ON SOM 448 does not work 3 This SOM setting is not changed by microcode upgrade 4 This SOM is not effective for remote paths between an Initiator port on the MCU and a Target port on the RCU 5 While a path from the RCU to MCU is disconnected if the UR pair remains in Suspending or Deleting ...

Страница 295: ...ing would be accelerated depending on CLPR with high workload when the workload in a specific CLPR increases the risk of host I O halt would be reduced Therefore set SOM 454 to OFF in most cases Mode 454 ON The amount of the entire destage processing is periodically determined by using the workload of the entire system b The larger the workload is the larger the amount of the entire destage proces...

Страница 296: ...er CLPRs When the UR function is used if user volumes and journal volumes are defined in different CLPRs when the CLPR to which the journal volumes are assigned overflows the user volumes become inaccessible Therefore it is recommended to set this SOM to OFF 2 Because the destage processing will have a lower priority in the overloaded CLPR the overloaded state of the overloaded CLPR is not removed...

Страница 297: ...orage Navigator GUI If the LDEV is not written with data 0 before performing the function the LDEV format might fail After the format processing make sure to set SOM 457 to OFF Mode 457 OFF default High speed LDEV format for external volumes and support for mainframe control block write GUI are not available OFF Both 459 ShadowImage When the S VOL of an SI SIz pair is an external volume the transa...

Страница 298: ...ure proper system operation for data transfer speeds of at least 10 Mbps Mode 466 ON Data transfer speeds of 10 Mbps and higher are supported The JNL read is performed with 4 multiplexed read size of 256 KB Mode 466 OFF default For conventional operations Data transfer speeds of 100 Mbps and higher are supported The JNL read is performed with 32 multiplexed read size of 1 MB by default Note The da...

Страница 299: ...or larger Caution This SOM must always be set to ON when using an external volume as the secondary volume of any of the applicable replication products Notes 1 It takes longer to finish the copy processing because it stops for prioritizing the host I O performance 2 This SOM supports background copy only The processing to copy the pre update data to the S VOL which occurs when overwriting data to ...

Страница 300: ...enance personnel The SIM RCs reported by setting the SOM to ON are 601xxx Pool utilization threshold exceeded 603000 SM space warning Mode 471 ON These SIM RCs are reported to maintenance personnel Mode 471 OFF These SIM RCs are not reported to maintenance personnel Note Set this SOM to ON when it is required to inform maintenance personnel of these SIM RCs OFF System option modes Appendix B Syste...

Страница 301: ...P VOL are copied to the S VOL With less than the full amount of data in the P VOL being copied the initial copy completes in a shorter time which might not be improved with SOM 474 Notes 1 Set this SOM for both primary and secondary storage systems 2 When this SOM is set to ON Execute all pair operations from CCI BCM Use a dedicated script Initial copy operation is prioritized over update I O Ther...

Страница 302: ...set to OFF If SOM 1091 is set to ON set it to OFF first and then set SOM 474 to ON 506 Universal Replicator This SOM is used to enable Delta Resync with no host update I O by copying only differential JNL instead of copying all data The UR Delta Resync configuration is required Mode 506 ON Without update I O Delta Resync is enabled With update I O Delta Resync is enabled Mode 506 OFF Without updat...

Страница 303: ...e 589 ON For each external volume progress is updated only when the progress rate is 100 Mode 589 OFF default Progress is updated when the progress rate exceeds the previous level Notes 1 Set this SOM to ON when disconnecting an external volume while the specific host IO operation is online and its performance requirement is severe 2 Whether the disconnecting status for each external volume is pro...

Страница 304: ...This SOM should be set when requested by the user 4 Setting this SOM to ON is recommended when GAD is installed as the performance degradation is more likely to occur due to active active I Os 5 If the write pending status remains at 60 or higher on the RCU for a long time it takes extra time for the initial copy and resync copy to be completed due to the slower copy operations 6 Do not set this S...

Страница 305: ...to be completed by making up for the prevented copy operation 4 If the Write Pending status long keeps 60 or more on RCU the pair status may become Suspend due to the JNL Vol being full 5 When USP NSC is used on the P VOL side this SOM cannot be used If this SOM is set to ON SSB 8E08 on the P VOL side and SSB C8D1 on the S VOL side might be output frequently OFF RCU 696 Open This SOM is available ...

Страница 306: ...e is other thanUSP NSC 3 When this SOM is set to ON it takes longer time to complete the logical unit discovery The amount of time depends on external storages 4 With this SOM OFF if searching for external devices with VMA ia set the VMA information cannot be read 5 When this SOM is set to ON while the following conditions are met the external volume is blocked An external volume to which Nondisru...

Страница 307: ...sing is scheduled with lower priority than host I O Mode 704 OFF default Copy processing requested is not registered into a newly created queue Only the existing queue is used Notes 1 Apply this SOM when the load of host I O to an ECC that uses ShadowImage or Volume Migration is high and the host I O processing is delayed 2 If the PDEV is highly loaded the priority of Read Write processing made by...

Страница 308: ... is uninstalled or installed the operation is as before the LED of the drive is illuminated and the drive must be unmounted and remounted Notes 1 When the RAID level or emulation type is changed for the existing parity group this SOM should be applied only if the drive mounted position remains the same at the time of the parity group uninstallation or installation 2 After the operation using this ...

Страница 309: ... this SOM is recommended when the above condition 1 is not met and SUN storage is used as an external storage 3 Applying this SOM is recommended when the above condition 1 is not met and EMC CX series or Fujitsu Fibre CAT CX series is used as an external storage 4 Applying this SOM is recommended if the above condition 1 is not met and a maintenance operation such as firmware update causing contro...

Страница 310: ...for example 95 and the pool may be full File system is used Data Retention Utility is installed 2 Since the Protect attribute is set for V VOL the Read operation cannot be allowed as well 3 When Data Retention Utility is not installed the desired effect is not achieved 4 Protect attribute can be released from the Data Retention window of Device Manager Storage Navigator after releasing the full st...

Страница 311: ...DEV related maintenance is suspended Notes 1 Note that behavior when this SOM is set to ON and OFF is reversed between USP V VM and VSP HUS VM and later 2 This SOM should be applied to perform Volume Migration or Quick Restore during maintenance operation 3 Set SOM 733 to ON if you want to prioritize the Volume Migration or Quick Restore operation over maintenance activities In this case maintenan...

Страница 312: ...arning system or depletion Once the pool usage rate falls below the pool threshold and then exceeds again the SIM is reported again The SIM is not reported while the pool usage rate continues to exceed the warning threshold and the depletion threshold Notes 1 This SOM is turned ON to prevent the write I O operation from being unavailable due to pool full 2 If the exceeding pool threshold SIM occur...

Страница 313: ...t reported to the service personnel Notes 1 This SOM is set to ON to have SIM for users reported to the service personnel For the system where SNMP and E mail notification are not set If Device Manager Storage Navigator is not periodically activated 2 When SOM 734 is turned OFF SIM RC625000 is not reported accordingly the SIM is not reported to the service personnel even though this SOM is ON OFF ...

Страница 314: ...default Notes 1 This SOM is applied when the EMC SYMMETRIX is connected using UVM 2 Enable the setting of EMC SCSI Flag SC3 for the port of the EMC SYMMETRIX storage connected with the storage system and disable the setting of Flag SPC2 If the setting of EMC SCSI Flag SC3 is not enabled or the setting of Flag SPC2 is enabled the effect of this SOM may not be achieved 3 If you want to enable this S...

Страница 315: ...talled pool volumes 3 When 0 data discarding is executed load may be unbalanced among pool volumes 4 Pool VOL deletion while this SOM is set to ON fails To delete pool VOLs set this SOM to OFF OFF 757 Common Enables disables output of in band audit logs Mode 757 ON Output is disabled Mode 757 OFF default Output is enabled Notes 1 Mode 757 applies to the sites where outputting the In band audit log...

Страница 316: ...ccordance with the TC or GAD specification Notes 1 This SOM is applied to the environment where Mainframe host MIH time is set to 15 seconds 2 This SOM is applied to the environment where OPEN host time out time is set to 15 seconds or less 3 This SOM is applied to reduce RI O MIH time to 5 seconds 4 This function is available for all the TC and GAD pairs on the storage system unable to specify th...

Страница 317: ...cro program downgrade to an unsupported version cannot be executed unless all the TC and GAD pairs are suspended or deleted 13 For operational specifications in each combination of MCU and RCU of TC contact customer support see SOM784 sheet 14 For GAD pairs this SOM is effective if the microcode version supports GAD 15 This SOM does not support iSCSI paths between storage systems When iSCSI is use...

Страница 318: ... the DRU attribute is set to Protect for the V VOL a read I O is also disabled 3 If Data Retention Utility is not installed the expected effect cannot be achieved 4 The Protect attribute of DRU for the DP V VOL can be released on the Data Retention window of Device Manager Storage Navigator after recovering the blocked pool VOL 5 With 83 01 21 x0 00 and later the Virtual Volume Protection VVP func...

Страница 319: ...t The copy processing is stopped when the amount of dirty data is over 60 For details contact customer support see SOM855 sheet Notes 1 This SOM is applied when all the following conditions are met ShadowImage is used with SOM 467 set to ON Write pending rate of an MP blade that has LDEV ownership of the copy target is high Usage rate of a parity group to which the copy target LDEV belongs is low ...

Страница 320: ...to within the prescribed capacity Prescribed capacity VSP G800 VSP HUS VM 128 GB VSP G400 G600 64 GB VSP G200 16 GB Notes 1 This SOM is applied to stabilize the performance by preventing paging of PM control information from occurring For details refer to the section of Virtual Partition Manager in the guideline 2 The cache hit rate may decrease 3 The cache allocation capacity per MPB MPU is limit...

Страница 321: ... format of the DP VOL is performed with 0 data writing The default is OFF for VSP HUS VM and VSP Fx00 models and VSP Gx00 models with firmware 83 03 xx and earlier Notes 1 This SOM is applied from factory shipment 2 Do not change the setting of this SOM during DP VOL format 3 If the setting of this SOM is changed during DP VOL format the change is not reflected to the format of the DP VOL being ex...

Страница 322: ...n is enabled because up to 42 MB s of ECCG performance is used local copy performance may degrade by about 10 Therefore confirm whether the 10 performance degradation is acceptable or not before enabling the function 3 When a Dynamic Provisioning VOL on an external storage system which is used as an external VOL is used as a pool VOL if the external pool on the external storage side becomes full d...

Страница 323: ... this SOM when the upper tier usage is low and lower tier usage is high 2 This SOM must be used with SOM 898 3 Narrowing the gray zone increases the number of pages to migrate between tiers per relocation 4 When Tier1 is SSD while SOM 901 is set to ON the effect of SOM 897 and 898 to the gray zone of Tier1 and Tier2 is disabled and the SOM 901 setting is enabled instead In addition the settings of...

Страница 324: ...his SOM when the usage of upper tier is low and that of lower tier is high 2 This SOM must be used with SOM 897 3 Narrowing the gray zone increases the number of pages to migrate between tiers per relocation 4 When Tier1 is SSD while SOM 901 is set to ON the effect of SOM 897 and 898 to the gray zone of Tier1 and Tier2 is disabled and the SOM 901 setting is enabled instead In addition the settings...

Страница 325: ...d Mode 899 OFF default SOM 900 is ON I O synchronous copy starts when the number of retries reaches half of the threshold of Volume Migration retry SOM 900 is OFF Volume Migration is retired and I O synchronous copy is not executed Notes 1 This SOM is applied when improvement of Volume Migration success rate is desired under the condition that there are many updates to a migration source volume of...

Страница 326: ...gration retry Mode 900 OFF default SOM 899 is ON I O synchronous copy starts when the threshold of Volume Migration retry is exceeded Recommended SOM 899 is OFF Volume Migration is retired and I O synchronous copy is not executed Notes 1 This SOM is applied when improvement of Volume Migration success rate is desired under the condition that there are many updates to a migration source volume of V...

Страница 327: ...he point when the performance limitation is reached pages are not allocated any more even there is free space When the capacity of tier1 reaches the threshold value the minimum value of the tier range is set to the boundary value and the maximum value of the lower tier range is set to a value of boundary value 110 5 IOPH Notes 1 This SOM is applied when pages with the maximum capacity need to be a...

Страница 328: ...e 904 ON The number of pages to be migrated at tier relocation is set to up to one page per second Mode 904 OFF default No restriction on the number of pages to be migrated at tier relocation existing specification Notes 1 This SOM is applied when the requirement for response time is severe 2 The number of pages to be migrated per unit time at tier relocation decreases OFF System option modes Appe...

Страница 329: ... Example a A CLPR only for UR JNLG b A configuration where MPBs and CLPRs are separately used for Open and Mainframe systems 2 Since CM capacity allocated to MPBs with low load is small the performance is affected by a sudden increase in load 3 SOM 908 cannot be used with SOM 933 When SOM 933 is set to ON the function of SOM 908 is canceled even though SOM 908 is ON 4 This SOM is effective for a C...

Страница 330: ...rformed For details about interactions with SOM 755 contact customer support see SOM930 sheet Notes 1 This SOM is applied when stopping or disabling zero data page reclamation by user request is required 2 When this SOM is set to ON the zero data page reclamation does not work at all Zero data page reclamation by Write Same and UNMAP and IO synchronous page reclamation can work 3 When downgrading ...

Страница 331: ...n shared memory for HDT must be installed For details contact customer support see SOM937 sheet 4 If monitoring data collection is performed without shared memory for HDT installed an error is reported and the monitoring data collection fails 5 Before removing the shared memory for HDT set this SOM to OFF and wait for 30 minutes 6 Tier relocation with monitoring data collected when this SOM is set...

Страница 332: ... contact customer support see SOM1069 sheet OFF 973 Common By setting this SOM THP Page Size in Inquiry Page E3h is changed THP Page Size varies depending on the combination of SOM972 and 973 settings For details contact customer support see SOM972_973 sheet Notes 1 This SOM is applied when a delay in host I O response due to reclamation processing occurs in a customer environment 2 When this SOM ...

Страница 333: ...when a delta resync is performed in a 3DC multi target configuration Notes 1 The pair status changes directly to PAIR Duplex when this SOM is OFF default Set this SOM to ON only when the status change to COPY Pending and then PAIR Duplex is required 2 Set this SOM on the site of TC S VOL in TC UR 3DC configuration If site switch by delta resync might occur set this SOM on both TC primary and secon...

Страница 334: ...he UR pair and then retry the microcode replacement 1021 Universal Volume Manager This SOM can enable or disable the auto recovery for external volumes of an EMC storage system Mode 0121 ON An external volume that is blocked due to Not Ready status can be recovered automatically regardless of the type of external storage system Mode 1021 OFF default An external volume that is blocked due to Not Re...

Страница 335: ...f the journals accumulated are the same in a consistency group containing multiple journals Mode 1043 OFF default The journal copy is not disabled Notes 1 This SOM applies when one of the following conditions is met a Multiple journals are registered in a consistency group of CCI b Multiple journals are registered in an extended consistency group c Journals are accumulated at the secondary site ca...

Страница 336: ...not effective for any of the CLPRs 5 Set SOM 1043 to ON when journals are not accumulated at the RCU If journals have already been accumulated at the RCU journal copy does not start until the journal usage rate becomes 0 If you need to set SOM 1043 to ON while journals are accumulated set Purge Suspend and then perform resync System option modes Appendix B System option modes System Administrator ...

Страница 337: ...s microcode downgrade at sites where only 1 mirror is used in URxUR multi target configuration without delta resync and cascade configuration L or R site in multi target and P or R site in cascade but the following phenomena occur after microcode downgrade Make sure that the target storage system does not contain pairs of URxUR configuration Phenomena 1 When the microcode is downgraded at S site l...

Страница 338: ...D consistency group CTG Mode 1070 ON The status change of all pairs in a consistency group is performed for 50 msec Mode 1070 OFF default The status change of all pairs in a consistency group is performed for 1 msec Notes 1 This SOM is applied when reducing the time to complete status change of all pairs in a consistency group at a group operation suspension and resync operation with the GAD CTG f...

Страница 339: ...n that supports the Proprietary ANCHOR command to a version that does not support the command 2 Whether the Proprietary ANCHOR command can be run or not varies depending on the setting combination of SOM 1079 and HMO 97 as follows a SOM 1079 setting ON HMO 97 setting ON Proprietary ANCHOR command Unavailable b SOM 1079 setting ON HMO 97 setting OFF Proprietary ANCHOR command Unavailable c SOM 1079...

Страница 340: ... share the Target port with the quorum disk on the external system If a response to ABTS is delayed for 12 seconds or longer the quorum disk may be blocked Mode 1080 OFF default The time to run a reset command for the quorum disk when performance of a path degrades is 3 seconds so that a retry is performed by an alternate path to avoid quorum disk blockage Notes 1 This SOM is applied if avoiding i...

Страница 341: ... cannot be guaranteed OFF 1086 Dynamic Provisioning Universal Volume Manager This SOM enables or disables the performance improvement for Dynamic Provisioning volumes that are Universal Volume Manager volumes used as pool volumes Mode 1086 ON default The performance improvement is enabled Mode 1086 OFF The performance improvement is disabled Notes 1 This SOM is applied when the IOPS performance of...

Страница 342: ...om a version that supports pool reduction rate correction to a version that does not support the function is disabled OFF 1097 Common This SOM disables the warning LED to blink when specific SIMs are reported Mode 1097 ON When SIM 452XXX 462XXX 3077XY 4100XX or 410100 is reported the warning LED does not blink Mode 1097 OFF default When SIM 452XXX 462XXX 3077XY 4100XX or 410100 is reported the war...

Страница 343: ... term total number of pages is the number of pages assigned within each specific tier Examples 1 In an HDP pool if the usage rates of PG1 PG2 and PG3 are 50 40 and 30 respectively it is not determined as unbalanced Because the average parity group usage rate is 50 40 30 3 40 and the difference in the rate between each parity group and the average is 10 at the maximum 2 In an HDP pool if the usage ...

Страница 344: ...40 30 2 35 and the difference in the rate between the parity group and the average is 5 at the maximum Note This SOM is applied when balancing the usage rate is required at a customer site where the usage rate is not even System option modes Appendix B System option modes System Administrator Guide for VSP Gx00 models and VSP Fx00 models 344 ...

Страница 345: ...d pool volume in a pool to which a virtual volume whose capacity saving setting is Compression belongs For the information of setting timing refer to the procedure for blocked pool volume recovery in the Maintenance Manual 2 The processing time increases with increase in pool capacity Estimate of processing time Processing time minutes ceiling pool capacity TB 40 5 ceiling The value enclosed in ce...

Страница 346: ...CTLS CTLSE or an ENC board the reuse function does not work but SIM CF12XX is reported and the ENC is blocked Mode 1118 OFF default When a failure occurs in the Expander chip mounted on a controller board CTLS CTLSE or an ENC board the reuse function works If the ENC is reusable SIM CF12XX and then CF14XX are reported and the ENC is reused If the ENC is not reusable SIM CF12XX is reported and the ...

Страница 347: ... added with 83 04 21 when capacity saving is enabled to enable microcode downgrade Mode 1119 ON The control information is not used when capacity saving is enabled Mode 1119 OFF default The control information is used when capacity saving is enabled Notes 1 Set this SOM to ON when the microcode downgrade described above is performed even if capacity saving is not currently in use but has been used...

Страница 348: ...gement devices are reserved while there is no TI pool in the storage system all cache management devices are released Mode 1120 OFF default No action Notes 1 Set this SOM to ON when the microcode downgrade described above is performed while there is a DP pool in the storage system 2 Set this SOM to ON only when downgrading the microcode 3 Before setting this SOM to ON delete all TI pairs in DP poo...

Страница 349: ... 3DC multi target configuration A array See disk array audit log Files that store a history of the operations performed from Device Manager Storage Navigator and the commands that the storage system received from hosts and data encryption operations B back end director BED The hardware component that controls the transfer of data between the drives and cache A BED feature consists of a pair of boa...

Страница 350: ... volumes in which one volume contains original data and the other volume contains the copy of the original Copy operations can be synchronous or asynchronous and the volumes of the copy pair can be located in the same storage system local copy or in different storage systems remote copy A copy pair can also be called a volume pair or just pair A pair created by Compatible FlashCopy is called a rel...

Страница 351: ...OPEN V disaster recovery A set of procedures to recover critical application data and processing after a disaster or other failure disk array Disk array or just array is a complete storage system including the control and logic devices storage devices HDD SSD connecting cables and racks disk controller DKC The hardware component that manages front end and back end storage operations The term DKC c...

Страница 352: ...ware module that is used by a storage system but runs on a separate platform external volume A logical volume whose data resides on drives that are physically located outside the Hitachi storage system F FC Fibre Channel FlashCopy FC AL fibre channel arbitrated loop FCP fibre channel protocol FCSP fibre channel security protocol FICON Fibre Connectivity flash drive A data drive that uses a solid s...

Страница 353: ... provides snapshots of logical volumes that are stored and managed as virtual volumes V VOLs See also remote replication initiator An attribute of the port that is connected to the port with RCU target attribute internal volume A logical volume whose data resides on drives that are physically located within the storage system See also external volume J JNL journal journal volume A volume that reco...

Страница 354: ...y not contain any data and may or may not be defined to any hosts Each LDEV has a unique identifier or address within the storage system composed of the logical disk controller LDKC number control unit CU number and LDEV number The LDEV IDs within a storage system do not change An LDEV formatted for use by mainframe hosts is called a logical volume image LVI An LDEV formatted for use by open syste...

Страница 355: ...iew mode O OPEN V A logical unit LU of user defined size that is formatted for use by open systems hosts OPEN x A logical unit LU of fixed size for example OPEN 3 or OPEN 9 that is used primarily for sharing data between mainframe and open systems hosts using Hitachi Cross OS File Exchange P P VOL This term is used only in the earlier version of the Device Manager Storage Navigator GUI still in us...

Страница 356: ...on the P VOL is duplicated synchronously or asynchronously on the secondary volume S VOL The following Hitachi products use the term P VOL Thin Image Copy on Write Snapshot ShadowImage TrueCopy Universal Replicator Universal Replicator for Mainframe and High Availability Manager See also secondary volume prio priority mode Used in Cache Residency Manager Q quick format The quick format feature in ...

Страница 357: ...ort A fibre channel port that is configured to receive remote I Os from an initiator port on another storage system remote control unit RCU A storage system at a secondary or remote site that is configured to receive remote I Os from one or more storage systems at the primary or main site remote copy See remote replication resync resynchronize RMI Remote Method Invocation S S VOL See secondary vol...

Страница 358: ... memory batteries while the data is copied to the cache flash memory SSDs shredding See volume shredding SIM See service information message size Generally refers to the storage capacity of a memory module or cache Not usually used for storage of data on disk or flash drives SM shared memory SMTP simple mail transfer protocol snapshot A point in time virtual copy of a Hitachi Thin Image primary vo...

Страница 359: ...lume from which an open systems host boots system option mode SOM Additional operational parameters for the RAID storage systems that enable the storage system to be tailored to unique customer operating requirements SOMs are set on the service processor T T VOL See target volume target An attribute of the port that is connected to the host target port A fibre channel port that is configured to re...

Страница 360: ...d future use Tier 4 systems are not supported total capacity The aggregate amount of storage space in a data storage system TPF Transaction Processing Facility V V VOL virtual volume VDEV See virtual device view mode The mode of operation of Device Manager Storage Navigator that allows viewing only of the storage system configuration The two Device Manager Storage Navigator modes are view mode and...

Страница 361: ... to one or more hosts as a single data storage unit An open systems volume is called a logical unit LU and a mainframe volume is called a logical volume image LVI volume shredding Deleting the user data on a volume by overwriting all data in the volume with dummy data Glossary System Administrator Guide for VSP Gx00 models and VSP Fx00 models 361 ...

Страница 362: ...Glossary System Administrator Guide for VSP Gx00 models and VSP Fx00 models 362 ...

Страница 363: ...ates obtaining 149 changing 52 55 changing a user s password 81 Changing assigned resource groups 92 changing permissions 82 changing the date and time controller settings 48 SVP clock 48 Channel Boards report 233 cipher suite 153 client computer Windows requirements 32 command suite 41 Configuration files creating 116 configure storage system 31 configuring Active Directory groups 166 configuring...

Страница 364: ...9 license keys expiration 198 overview 187 permanent 188 term 188 types 187 viewing information 197 License keys disabling 196 emergency 189 enabling 196 installing 195 managing 193 194 removing a software license 196 temporary 188 logging in 38 Logical Devices report 211 login message 50 LUNs report 213 M maintenance utility starting 40 management client setup 31 management software 31 management...

Страница 365: ...esource groups continued resource lock 97 rules restrictions and guidelines 98 system configuration 94 user groups 97 Resource groups changing 92 resource lock 94 97 resources 27 restoring user account information 74 roles 65 87 Roles 85 S secondary window 35 security 145 156 Security certificates 153 self signed certificate 149 Servers connecting authentication and authorization servers 159 sessi...

Страница 366: ...his website s security certificate 153 time 55 TLSv1 0 156 TLSv1 1 156 TLSv1 2 156 U unified management overview 21 UNIX 34 UNIX requirements 34 user accounts creating 77 90 deleting 83 disabling 83 managing 77 user administration overview 75 User Administration 130 user groups deleting 93 names 91 roles 85 87 90 User groups permissions 92 V viewing a report 203 W Web browser configuring 35 Window...

Страница 367: ......

Страница 368: ...39 USA www HitachiVantara com community HitachiVantara com Regional Contact Information Americas 1 866 374 5822 or info hitachivantara com Europe Middle East and Africa 44 0 1753 618000 or info emea hitachivantara com Asia Pacific 852 3189 7900 or info marketing apac hitachivantara com ...

Результаты поиска

Содержание Virtual Storage Platform F400

Отзывы:

Похожие инструкции для Virtual Storage Platform F400

Бренды по названию

Популярные бренды

Hitachi Virtual Storage Platform F400, Руководство системного администратора

Результаты поиска

Содержание Virtual Storage Platform F400

Отзывы:

Похожие инструкции для Virtual Storage Platform F400

Бренды по названию

Популярные бренды