IPS: iSCSI MIB last call

To: IPS <ips@ece.cmu.edu>
Subject: IPS: iSCSI MIB last call
From: Mark Bakke <mbakke@cisco.com>
Date: Tue, 22 Oct 2002 16:10:19 -0500
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=us-ascii
Sender: owner-ips@ece.cmu.edu


Since I haven't seen any other last call comments on the
iSCSI MIB yet, I have one (technical) comment:

The iscsiTgtAuthAttributesTable is used to match up iSCSI
targets with lists of identities in the Auth MIB to which
the target will allow access.  Currently, any identity in
the list for a target will be authorized to have presumable
full access to the iSCSI target, other than anything that
may be enforced at higher layers (SCSI).  One thing we might
want to consider is to allow these entries to specify
whether the identity will be given read-only or read-write
access to the target, perhaps something like:

iscsiTgtAuthReadWrite OBJECT-TYPE
    SYNTAX        TruthValue
    MAX-ACCESS    read-write
    STATUS        current
    DESCRIPTION
        "A truth value that specifies whether the referenced
        AuthIdentity will be allowed write access to the target.
        False (=No) indicates that only read operations may be
        performed.  True (=Yes) indicates that all access is
        allowed."
    DEFVAL        { true }
::= { iscsiNodeAttributesEntry 13 }

Thoughts?

-- 
Mark A. Bakke
Cisco Systems
mbakke@cisco.com
763.398.1054

Follow-Ups:
- Re: IPS: iSCSI MIB last call
  - From: Bill Studenmund <wrstuden@wasabisystems.com>
- Re: IPS: iSCSI MIB last call
  - From: Paul Koning <ni1d@arrl.net>

Prev by Date: RE: iSCSI: question on reserve and release !
Next by Date: RE: iSNS: Last Call comments
Prev by thread: FW: Protocol Action: Preparation of Internationalized Strings ('stringprep') to Proposed Standard
Next by thread: Re: IPS: iSCSI MIB last call
Index(es):
- Date
- Thread

Home

Last updated: Wed Oct 23 13:19:04 2002
11969 messages in chronological order