Chap definitions – Dell PowerVault MD3800i User Manual

Page 48

Advertising
background image

NOTE: When using CHAP authentication, you should configure it on both the storage array (using
MDSM) and the host server (using the iSCSI initiator) before preparing virtual disks to receive data. If
you prepare disks to receive data before you configure CHAP authentication, you lose visibility to
the disks once CHAP is configured.

CHAP Definitions

To summarize the differences between target CHAP and mutual CHAP authentication, see the following
table:

Table 5. CHAP Types Defined

CHAP Type

Description

Target CHAP

Sets up accounts that iSCSI initiators use to
connect to the target storage array. The target
storage array then authenticates the iSCSI initiator.

Mutual CHAP

Applied in addition to target CHAP, mutual CHAP
sets up an account that a target storage array uses
to connect to an iSCSI initiator. The iSCSI initiator
then authenticates the target.

Step 5: Configure CHAP Authentication on the Storage

Array (Optional)

If you are configuring CHAP authentication of any kind (either target-only or target and mutual), you
must complete this step.
If you are not configuring any type of CHAP, skip these steps and go to “Connect to the Target Storage
Array From the Host Server".

NOTE: If you choose to configure mutual CHAP authentication, configure target CHAP first.

In terms of iSCSI configuration, the term target always refers to the storage array.

Configuring Target CHAP Authentication On The Storage Array

1.

From MDSM, click the iSCSI tab and then click Change Target Authentication.
Select one of the CHAP settings described in table.

2. To configure a CHAP secret, select CHAP and select CHAP Secret.
3. Enter the Target CHAP Secret (or Generate Random Secret). Confirm it in Confirm Target CHAP

Secret and click OK.
Although the storage array allows sizes from 12 to 57 characters, many initiators only support CHAP
secret sizes up to 16 characters (128-bit).

NOTE: A CHAP secret is not retrievable after it is entered. Ensure that you record the secret in
an accessible place. If Generate Random Secret is used, copy and paste the secret into a text
file for future reference since the same CHAP secret is used to authenticate any new host
servers you may add to the storage array. If you forget this CHAP secret, you must disconnect
all existing hosts attached to the storage array and repeat the steps in this chapter to re-add
them.

48

Advertising
This manual is related to the following products:

PowerVault MD3820i

Popular Brands
Popular manuals