HP StorageWorks 8/80 HP StorageWorks Fabric OS 6.2 administrator guide (5697-0 - Page 322
iSCSI initiator-to-VT authentication configuration
View all HP StorageWorks 8/80 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 322 highlights
Name: dd-host001 Status: Defined Num. Members: 2 iqn.1991-05.com.microsoft:host001.brocade.com iqn.2006-10.com.example:disk001 Creating and enabling a discovery domain sets 1. Connect and log in to the switch. 2. Enter the iscsiCfg --create ddset command with the -n and -d options to create a new DDSet: switch:admin> iscsicfg --create ddset -n ddset-engineering -d dd-host001 The operation completed successfully. 3. Enter the iscsiCfg --show ddset command with the -v option to verify that the DDSet. switch:admin> iscsicfg --show ddset -v Number of records found: 1 Name: ddset-engineering State/Status: disabled/Defined Num. members: 1 dd-host001 iqn.1991-05.com.microsoft:host001.brocade.com iqn.2006-10.com.example:disk001 4. Enter the iscsiCfg --enable ddset command with the -n option to enable the DDSet: switch:admin> iscsicfg --enable ddset -n ddset-engineering This will enable the DDSet specified. Continue (yes, y, no, n) [n]: y The operation completed successfully. iSCSI initiator-to-VT authentication configuration Fabric OS 5.2.0 or later supports both one-way and mutual CHAP authentication for iSCSI initiator-to-iSCSI VT target sessions. The authentication method (CHAP or none) is set on a per-iSCSI VT basis. Setting the user name and shared secret Authentication depends on a user name and a shared secret. When an iSCSI VT authenticates an iSCSI initiator, it checks the user name and shared secret against all configured CHAP values. To enforce authentication of iSCSI initiators, set each iSCSI VT authentication to CHAP. The iSCSI initiator can use any user name and shared secret for any iSCSI VT configured on the fabric. 1. Connect and log in to the switch. 2. Enter the iscsiCfg --create auth command with the -u and -s options to configure a user name and shared secret: switch:admin> iscsicfg --create auth -u username0001 -s usersecret0001 The operation completed successfully. 3. Enter the iscsiCfg --modify tgt command with the -t and -a options to set CHAP as the authentication method: switch:admin> iscsicfg --modify tgt -t iqn.2006-10.com.brocade:example-disk001 -a CHAP The operation completed successfully. 320 iSCSI gateway service