US 9,811,358 B2
Securing peer zoning
Eran Brown, Givatayim (IL)
Assigned to INFINIDAT LTD., Herzliya (IL)
Filed by Infinidat LTD., Herzliya (IL)
Filed on Mar. 1, 2015, as Appl. No. 14/634,839.
Prior Publication US 2016/0253186 A1, Sep. 1, 2016
Int. Cl. G06F 9/445 (2006.01); G06F 13/40 (2006.01); G06F 21/62 (2013.01); H04L 29/08 (2006.01)
CPC G06F 9/44505 (2013.01) [G06F 13/4022 (2013.01); G06F 21/6218 (2013.01); H04L 67/1097 (2013.01)] 13 Claims
OG exemplary drawing
1. A method, comprising:
receiving, by a storage system, storage system configuration information that is indicative of access permissions of multiple host computer ports to storage logical units that are associated with a certain set of storage system ports;
requesting, by the storage system, in response to the storage system configuration information from at least a first switch of a group of switches that is coupled to the storage system, to add access permissions for allowing the multiple host computer ports to access the certain set of storage system ports via at least the first switch;
determining, by the storage system, to revoke an access permission from a certain host computer port of the multiple host computer hosts, if the certain host computer port was not logged to a second switch of the group of switches during a certain time period; wherein the access permission is one of the access permissions requested to be added; and
sending, by the storage system and to at least the second switch, a request to revoke the access permission of the certain host computer port via at least the second switch.