Setting authentication methods – HP StorageWorks 2.32 Edge Switch User Manual

Edge Switch Element Manager user guide

87

If you applied the same user settings to multiple products, the product list displays multiple

product names that were selected from the Apply To dialog box. By default, the product that was

selected from the top table for configuration is highlighted. The content of Detailed Changes

table changes as you click through different products from the product list.
The differences between the to-be-populated setting and current settings on each individual

product are displayed, because the Apply To dialog box takes changes made on user settings

for one product, and generalizes them to multiple products whose user settings can be totally

different. The new settings replace the existing settings on other products.
To thoroughly check the new changes, click the different products on the product list and view

the detailed changes.

NOTE:

Populating user related settings to multiple products, causes the new settings to override the

existing settings completely.

Clicking Start causes HAFM to populate changes to the switch or director specified in the

products list. Close is always enabled. If the user clicks on the Close button during the process, a

message is displayed to ask the user whether to abort the changes or not.
The bottom Status window displays the status of each product. If all changes are successfully

populated to a product, the status displays the product name and a successful message.
If there are no security settings being changed, the Security Change Confirmation and Status is

displayed with the Detailed Changes table displaying a message that no changes were found.

Clicking Start displays a Status window message that the security settings are identical and that

there are no changes to apply.

Setting Authentication Methods

Several tabs require you to specify the method the switch or director uses to authenticate the user’s

credentials, Local Only, Radius then Local, and Radius Only.

NOTE:

In this context, a user can be a user, a software ID, or another device.

•

Local Only—Each switch or director uses its local user database for authentication.

•

Radius then Local—the switch or director uses the Radius server, if available, to authenticate

users. If the Radius server is not available, then the local database is used.

•

Radius Only—Radius server is used to authenticate users. If the Radius server is not available,

then users cannot connect. Radius is acknowledged as being an industry standard and is

convenient to use because all passwords can be managed from a central location. There are

some disadvantages. Note the following:
• If a Radius Only method is used, the ability to authenticate is directly related to the quality of

the IP network being used to communicate with the Radius server. If you are authenticating

E_Ports, the stability of the fabric is dependent on the stability of the IP network. The risk is

smaller, if you use Radius then Local or Local Only.