This topic describes how to decide whether you want to mask client LUNs.
LUN masking gives you the ability to exclusively assign LUNs to one or more clients. Only those clients that are assigned to the LUN can access it. All LUNs that are not assigned to a client are hidden from that client.
You would use LUN masking, for example, if you were to install a user application in the global namespace to limit the use of that application.
Parent topic: Planning the security strategy