Dell PowerVault MD3800i User Manual download pdf (Page 48)

NOTE: When using CHAP authentication, you should configure it on both the storage array (using

MDSM) and the host server (using the iSCSI initiator) before preparing virtual disks to receive data. If

you prepare disks to receive data before you configure CHAP authentication, you lose visibility to

the disks once CHAP is configured.

CHAP Definitions

To summarize the differences between target CHAP and mutual CHAP authentication, see the following

table:

Table 5. CHAP Types Defined

CHAP Type Description

Target CHAP Sets up accounts that iSCSI initiators use to

connect to the target storage array. The target

storage array then authenticates the iSCSI initiator.

Mutual CHAP Applied in addition to target CHAP, mutual CHAP

sets up an account that a target storage array uses

to connect to an iSCSI initiator. The iSCSI initiator

then authenticates the target.

Step 5: Configure CHAP Authentication on the Storage

Array (Optional)

If you are configuring CHAP authentication of any kind (either target-only or target and mutual), you

must complete this step.

If you are not configuring any type of CHAP, skip these steps and go to “Connect to the Target Storage

Array From the Host Server".

NOTE: If you choose to configure mutual CHAP authentication, configure target CHAP first.

In terms of iSCSI configuration, the term target always refers to the storage array.

Configuring Target CHAP Authentication On The Storage Array

1. From MDSM, click the iSCSI tab and then click Change Target Authentication.

Select one of the CHAP settings described in table.

2. To configure a CHAP secret, select CHAP and select CHAP Secret.

3. Enter the Target CHAP Secret (or Generate Random Secret). Confirm it in Confirm Target CHAP

Secret and click OK.

Although the storage array allows sizes from 12 to 57 characters, many initiators only support CHAP

secret sizes up to 16 characters (128-bit).

NOTE: A CHAP secret is not retrievable after it is entered. Ensure that you record the secret in

an accessible place. If Generate Random Secret is used, copy and paste the secret into a text

file for future reference since the same CHAP secret is used to authenticate any new host

servers you may add to the storage array. If you forget this CHAP secret, you must disconnect

all existing hosts attached to the storage array and repeat the steps in this chapter to re-add

them.

1 2 ... 43 44 45 46 47 48 49 50 51 52 53 ... 58 59

No comments

Dell PowerVault MD3800i User Manual Page 48