Use StorSimple Device Manager to manage access control records for StorSimple Virtual Array

Članak
01/03/2022
3 min. za čitanje

Overview

Access control records (ACRs) allow you to specify which hosts can connect to a volume on the StorSimple Virtual Array (also known as the StorSimple on-premises virtual device). ACRs are set to a specific volume and contain the iSCSI Qualified Names (IQNs) of the hosts. When a host tries to connect to a volume, the device checks the ACR associated with that volume for the IQN name, and if there is a match, then the connection is established. The Access control records blade within the Configuration section of your Device Manager service displays all the access control records with the corresponding IQNs of the hosts.

Manage access control records

This tutorial explains the following common ACR-related tasks:

Get the IQN
Add an access control record
Edit an access control record
Delete an access control record

Important

When assigning an ACR to a volume, take care that the volume is not concurrently accessed by more than one non-clustered host because this could corrupt the volume.
When deleting an ACR from a volume, make sure that the corresponding host is not accessing the volume because the deletion could result in a read-write disruption.

Get the IQN

Perform the following steps to get the IQN of a Windows host that is running Windows Server 2012.

To get the IQN of a Windows host

Start the Microsoft iSCSI initiator on your Windows host. Click Start > Administrative Tools > iSCSI initiator.
In the iSCSI Initiator Properties window, on the Configuration tab, select and copy the string from the Initiator Name field.
Save this string.

Add an ACR

You use Access control records blade within the Configuration section of your StorSimple Device Manager service to add ACRs. Typically, you associate one ACR with one volume.

For information about associating an ACR with a volume, go to add a volume.

Important

When assigning an ACR to a volume, take care that the volume is not concurrently accessed by more than one non-clustered host because this could corrupt the volume.

Perform the following steps to add an ACR.

To add an ACR

On the service landing page, select your service, double-click the service name, and then within the Configuration section, click Access control records.
In the Access control records blade, click Add.
In the Add ACR blade, do the following:
1. Supply a Name for your ACR.
2. Under iSCSI Initiator Name, provide the IQN name of your Windows host. To get the IQN of your Windows Server host, do the following:
3. Start the Microsoft iSCSI initiator on your Windows host. In the iSCSI Initiator Properties window, on the Configuration tab, select and copy the string from the Initiator Name field. Paste this string in the IQN field in the Add ACR blade.
4. Click Add to add the ACR.
The tabular listing is updated to reflect this addition.

Edit an ACR

You use the Access control records blade within the Configuration section of your Device Manager service in the Azure portal to edit ACRs.

Note

You should not modify an ACR that is currently in use. To edit an ACR associated with a volume that is currently in use, you should first take the volume offline.

Perform the following steps to edit an ACR.

To edit an ACR

On the service landing page, select your service, double-click the service name, and then within the Configuration section, Access control records.
In the Access control records blade, from the tabular listing of the access control records, double-click the ACR that you wish to modify.
In the Edit access control records blade, do the following:
1. Supply the IQN for the ACR.
2. Click Save at the top of the blade to save the modified ACR. You see the following confirmation message:

Delete an access control record

You use the Configuration page in the Azure portal to delete ACRs.