Dell PowerVault MD3000i User's Guide - Page 32

Changing the iSCSI Target Authentication 1 Click the iSCSI tab, and then click Change Target Authentication. 2 Select None if no authentication is required for any initiator to access the target. NOTE: If you select None, any initiator can access this target. Use this option only if you do not require secure data. However, if you select both None and CHAP at the same time, the storage array will allow an iSCSI initiator to log on with or without CHAP authentication. 3 Select CHAP if you want any initiator that tries to access the target to provide the target permissions. If CHAP is selected, but no CHAP secret is defined, an error message appears. Click CHAP Secret to see the Enter CHAP Secret dialog (see "Creating CHAP Secrets" on page 32). You can define the permissions in this dialog. NOTE: If an initiator requires mutual (bi-directional) authentication see "Entering Mutual Authentication Permissions" on page 32. Entering Mutual Authentication Permissions Mutual authentication or two-way authentication is a way for a client or a user to verify themselves to a host server, and for the host server to validate itself to the user. This validation is accomplished in such a way that both parties are sure of the other's identity. 1 Click the iSCSI tab, and then click Enter Mutual Authentication Permissions. 2 Select an initiator from the list. The initiator details are shown. 3 Select CHAP Secret to enter the initiator CHAP permissions in the dialog that appears. NOTE: To add, modify, or delete an initiator, click the Modify tab, and then click Edit Host Topology. Creating CHAP Secrets When you set up an authentication method, you can choose to create a Challenge Handshake Authentication Protocol (CHAP) secret. The CHAP secret is a password that is recognized by the initiator and the target. If you are using mutual authentication to configure the MD3000i storage array, you 32 Using iSCSI