Access management method between plural devices constituted by hierarchical relation, management computer, and computer system
First Claim
1. An access management method in a management computer that manages:
- a host computer;
a storage system that has an actual data storage area storing data used by the host computer;
a first device that is associated with the actual data storage area and provides the host computer with a virtualized data storage area, and a fabric that is connected to any one of the host computer, the first device, and the storage system via a communication path, the access management method comprising;
defining a first access permission path including a path between the host computer and the first device via the fabric and a second access permission path including a path between the first device and the storage system via the fabric, and when the first access permission path is set in the fabric, setting the first access permission path in the fabric in association with the second access permission path.
1 Assignment
0 Petitions
Accused Products
Abstract
In a computer system that includes plural host computers and plural data storage apparatuses (storage systems) and performs, in particular, virtualization of a data storage area, unless zoning is performed correctly to activate a zone between a data storage apparatus holding a virtualized data storage area and a device holding a data storage area storing actual data, the storage area storing actual data cannot be used from the host computers. The present invention provides a mechanism for grasping a relation between the virtualized data storage area and the data storage area storing actual data, configuring a zone between data storage apparatuses holding the data storage areas as a special zone, and always activating the special zone at the time of zoning configuration. The invention further provides a mechanism for grasping a relation between the virtualized data storage area and the data storage area storing actual data, associating a zone for connecting the host computers and a first-tier data storage apparatus and a zone for connecting the first-tier data storage apparatus and a second-tier data storage apparatus, and activating a second zone according to switching activating first zone.
42 Citations
20 Claims
-
1. An access management method in a management computer that manages:
- a host computer;
a storage system that has an actual data storage area storing data used by the host computer;
a first device that is associated with the actual data storage area and provides the host computer with a virtualized data storage area, and a fabric that is connected to any one of the host computer, the first device, and the storage system via a communication path, the access management method comprising;
defining a first access permission path including a path between the host computer and the first device via the fabric and a second access permission path including a path between the first device and the storage system via the fabric, and when the first access permission path is set in the fabric, setting the first access permission path in the fabric in association with the second access permission path. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- a host computer;
-
9. A computer system comprising:
-
a host computer;
a second-tier storage system that has an actual data storage area storing data used by the host computer;
a first-tier storage system that provides the host computer with a virtualized data storage area associated with the actual data storage area;
a switch connected to the host computer, the first-tier storage system, and the second-tier storage system via a communication path; and
a management computer connected to the host computer, the first-tier storage system, the second-tier storage system, and the switch via a network, wherein the switch has plural ports connected to the host computer, the first-tier storage system, and the second-tier storage system, respectively, the management computer includes;
a memory that holds configuration information of plural zones permitting communication in the computer system via at least one port provided in the switch; and
a control unit that, when any one of the zones is a first zone permitting communication between the host computer and a virtualized data storage area provided to the host computer, extracts a second zone permitting communication with an actual data storage area associated with the virtualized data storage area from the memory and instructs the switch to configure the second zone in association with the first zone via a network. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A switch comprising:
-
plural switch ports connected to a host computer and plural devices via a communication path;
a memory that holds zone configuration information that defines zones permitting communication including at least one of a path between plural devices or a path between the host computer and the devices; and
a CPU that is connected to the memory and the switch ports, wherein the CPU reads out the zone configuration information from the memory, holds a first zone, which includes a switch port connected to a first device receiving a request from a host computer and a switch port connected to a second device storing the data, as a special zone among the zones defined by the zone configuration information, configures a second zone defined by a zone including the switch port connected to the first device in association with the first zone serving as the special zone, and permits communication among the switch ports. - View Dependent Claims (17, 18, 19, 20)
-
Specification