LUN security on ports
To protect mission-critical data in your storage system from illegal access, apply security policies
to logical volumes. Use LUN Manager to enable LUN security on ports to safeguard LUs from illegal
access.
If LUN security is enabled on ports, host groups affect which host can access which LUs. Hosts can
access only the LUs associated with the host group to which the hosts belong. Hosts cannot access
LUs associated with other host groups. For example, hosts in the hp-ux host group cannot access
LUs associated with the windows host group. Also, hosts in the windows host group cannot access
LUs associated with the hp-ux host group.
Examples of enabling and disabling LUN security on ports
Enabling LUN security
In the following example, LUN security is enabled on port CL1-A. The two hosts in the
hg-lnx
host group can access only three LUs (00:00:00, 00:00:01, and 00:00:02). The two hosts in the
hg-hpux
host group can access only two LUs (00:02:01 and 00:02:02). The two hosts in the
hg-solar
host group can access only two LUs (00:01:05 and 00:01:06).
Disabling LUN security
Typically, you do not need to disable LUN security on ports. For example, if LUN security is disabled
on a port, the connected hosts can access only the LUs associated with host group 0, and cannot
access LUs associated with any other host group.
184 Managing logical volumes