Setting an isid value, Enabling chap authentication, Setting an isid value enabling chap authentication – HP NC550SFP Dual Port 10GbE Server Adapter User Manual
Page 23
Configuring and managing iSCSI targets 23
A unique ISID value is needed if you are connecting dual sessions to the same target portal group.
You can enter a number up to 65535. See "Setting an ISID value (on page
)."
4.
If you want to enable the Header Digest, tab to Header Digest and press Yes.
When set to Yes and the iSCSI Initiator is set accordingly, the integrity of an iSCSI PDUs’ header
segment is protected by CRC32C checksum. No, is the default.
5.
If you want to enable the Data Digest, tab to Data Digest and press Yes.
When set to Yes and the iSCSI Initiator is set accordingly, the integrity of an iSCSI PDUs’ data
segment is protected by CRC32C checksum. No, is the default.
6.
If you want to select an authentication method to use when logging into the target, tab to
Authentication Methods and select an authentication method. See "Enabling CHAP authentication
(on page
)."
7.
If you want to verify your target connection, tab to Ping and press Enter. See "Pinging a target (on
page
)."
8.
If you want to view more target properties, tab to Advanced and press Enter. See "Displaying
advanced target properties (on page
)."
9.
To save your changes, tab to Save/Login and press Enter. The iSCSI Target Configuration menu
displays with target information.
Setting an ISID value
The ISID Qualifier is a unique ISID value that is used if connecting dual sessions to the same target portal
group.
This value ensures that you are not logging into the same session twice. A combination of the initiator
name, ISID Qualifier, target name, and target portal group defines an iSCSI session. For the ISID
Qualifier, enter a number up to 65535.
1.
From the Controller Configuration menu, select iSCSI Target Configuration, and select Add New iSCSI
Target.
2.
From the Add/Ping iSCSI Target menu, tab to ISID Qualifier and type in a number value.
For more information on when an ISID value should be used, see "Setting up an iSCSI MPIO Boot
configuration (on page
)."
Enabling CHAP authentication
HP NC-Series ServerEngines iSCSISelect uses the Challenge Handshake Authentication Protocol (CHAP) to
authenticate initiators and targets for added network security.
By using a challenge/response security mechanism, CHAP periodically verifies the identity of the initiator.
This authentication method depends on a secret known only to the initiator and the target.
Although the authentication can be One-Way, you can negotiate CHAP in both directions by using the
same secret set for Mutual authentication. However, you must ensure that the configuration on the target
matches the configuration on the initiator.
One-Way CHAP
With one-way CHAP authentication, the target authenticates the initiator for a one-way
challenge/response security method.