Chapter 5: Setting up security
This chapter describes how to set up security on your storage system.
Setting up TCP/IP for a firewall
To connect the management client and the SVP through a rewall, congure the rewall
so that the TCP/IP port for the protocol you use becomes available.
When attaching
Device Manager - Storage Navigator to multiple storage systems, the
installer must log in to the SVP of each storage system using separate Device Manager -
Storage Navigator sessions and separate web browser instances.
For details about setting up the SVP, see the Hardware Installation and Reference Guide for
your storage system.
Working with certificates
A digital certicate can be thought of as an electronic passport that allows the SVP and
storage system to exchange information securely over the Internet using the public key
infrastructure (PKI).
You can use a Secure Sockets Layer (SSL) certicate, HCS certicate, or both to create a
secure, encrypted connection between the SVP and the storage system.
Managing HCS certificates
This topic explains how to set or delete certicates for Hitachi Command Suite (HCS) that
ar
e used to check the server's reliability when SSL communication for HCS external
authentication is performed.
Registering HCS certificates
To check the server reliability during SSL communication for HCS external authentication,
upload an HCS public key certicate to the web server to register the certicate.
Note: Ensur
e that you register or delete the correct certicate. Otherwise,
HCS external authentication will not return.
Before you begin
■
You must be logged into the SVP.
■
The private key le on the HCS server must be current. Update it if necessary.
■
The certicate le must have a .crt extension. Rename the le if necessary.
Chapter 5: Setting up security
System Administrator Guide for VSP Gx00 models and VSP Fx00 models 145
To Next Page
Loading...
