In general, Cornelis recommends that you update to the latest versions of CN5000 Omni-Path firmware and software to obtain the most recent functional and security updates. Refer to the Cornelis Customer Center.

One of the most important sets of features configurable in the Fabric Manager are those related to security for in-band and out-of-band communications.

The goal of this added security is to prevent would-be attackers from destabilizing or compromising the integrity of the fabric through an FM external socket connection or by using a compromised node within the fabric. An administrator can control the additional level of security they want the Fabric Manager to enforce on top of the security provided by the Omni-Path Architecture hardware.

This section is divided into two sub-sections. In-band security details the security options within the FM when managing the fabric through Omni-Path Architecture hardware. Out-of-band security provides details on the configurable options for socket-based connections to the FM's Fabric Executive (FE) for a specific set of services.

The following table summarizes the security procedures that can be found in this chapter for quick reference.