RFE is open to change current options, these will be confirmed later but would encourage anyone who thinks "Unrestricted Access" is undesirable as the first fallback option in both GUI/CLI, please add to this thread with your comments.
Unrestricted access is seen as a desirable troubleshooting option, perhaps it should only be avaialble as an advanced or hidden feature?
Should default access be "none" or should we force an Initiator Group to be created. Is forcing an IG always possible if you don't yet know the iqn of a new server etc.... Would a default built in "null" IG Group help here?
All comments/suggestions welcome.
I've seen a few customers who have provisioned via the vCenter plugin also (which sets the volume to unrestricted access) and inadvertently left it as such as they haven't realised or gone into the volume access settings to check.
Further to your comments, I think it would be a good idea to provide an option to pick from a list of initiator groups on the system or allow you to create a new one (bearing in mind the points you make regarding knowing the IQN, etc) so in that case even an empty group would be good, which the administrator can populated with the actual IQN later. I think setting the volume to unrestricted access by default is potentially dangerous, therefore better to set the volume with No Access in that instance. I don't believe there is any reason to hide the Unrestricted Access option as it is invaluable for quick troubleshooting.