Security for logical unit in storage subsystem
First Claim
1. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
- a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller having an access management map, wherein said access management map includes an identification of a host group having some of said host computers selected from said host computers by an user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical unit numbers, and is used to control access from said host group to said logical units.
0 Assignments
0 Petitions
Accused Products
Abstract
Tables (FIGS. 11 and 12) for stipulating information (WWN: WorldWide Name) for primarily identifying computers, information (GID: Group ID) for identifying a group of the computers and a logical unit number (LUN) permitting access from the host computer inside storage subsystem, in accordance with arbitrary operation method by a user, and for giving them to host computer. The invention uses management table inside the storage subsystem and gives logical unit inside storage subsystem to host computer group arbitrarily grouped by a user in accordance with the desired form of operation of the user, can decide access approval/rejection to the logical unit inside the storage subsystem in the group unit and at the same time, can provide the security function capable of setting interface of connection in the group unit under single port of storage subsystem without changing existing processing, limitation and other functions of computer.
37 Citations
48 Claims
-
1. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
-
a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller having an access management map, wherein said access management map includes an identification of a host group having some of said host computers selected from said host computers by an user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical unit numbers, and is used to control access from said host group to said logical units. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
-
a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller having an access management table, wherein said access management table includes an identification of a host group having some of said host computers selected from said host computers by an user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical unit numbers, and is used to control access from said host group to said logical units. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
-
a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller controlling read/write of data from/to said disk drives in response to access from said host computers to said logical units, wherein said controller has an access management map which includes an identification of a host group having some of said host computers selected from said host computers by a user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical unit numbers, and is used to control access from said host group to said logical units. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
-
a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller controlling read/write of data from/to said disk drives in response to accesses from said host computers to said logical units, wherein said controller has an access management table which includes an identification of a host group having some host computers selected from said host computers by a user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical unit numbers, and is used to control access from said host group to said logical units. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32)
-
-
33. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
-
a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller controlling read/write of data from/to said disk drives in response to accesses from said host computers to said logical units;
wherein said controller includes an access management map which includes an identification of a host group having some of said host computers selected from said host computers by a user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical units, and is used to control access from said host group to said logical units, and wherein said controller controls access from said host group to said logical unit in accordance with said access management map. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40)
-
-
41. A storage system adapted to be coupled to a plurality of host computers, said storage system comprising:
-
a plurality of disk drives storing data from said host computers, said disk drives forming a plurality of logical units, said logical units each having a logical unit number; and
a controller controlling read/write of data from/to said disk drives in response to accesses from said host computers to said logical units;
wherein said controller includes an access management table includes an identification of a host group having some host computers selected from said host computers by a user and a plurality of virtual logical unit numbers each being a renumbered identification of one of said logical units, and is used to control access from said host group to said logical units, and wherein said controller controls access from said host group to said logical unit in accordance with said access management table. - View Dependent Claims (42, 43, 44, 45, 46, 47, 48)
-
Specification