HP P2000 G3 MSA System CLI Reference Guide
47
create chap-record
Description
For iSCSI, creates a CHAP record to authenticate login requests. When CHAP is enabled, the record
enables authentication between the originator (initiator) and recipient (target) of a login request. This
command is permitted whether or not CHAP is enabled.
The CHAP record can specify one name-secret pair to authenticate the originator only (one-way
CHAP) or two pairs to authenticate both the originator and the recipient (mutual CHAP).
For a login request from an iSCSI host to a storage system, the host is the originator and the storage
system is the recipient.
Using this command for a CHAP record name that already exists will modify the existing record.
Please view the existing CHAP records with the
show chap-records
command.
Syntax
create chap-record
name
originator-name
secret
originator-secret
[mutual-name
recipient-name
mutual-secret
recipient-secret
]
Parameters
name
originator-name
The originator name, typically in IQN format. The name can have a maximum of 223 bytes,
including 0–9, lowercase a–z, hyphen, colon, and period.
secret
originator-secret
The secret that the recipient uses to authenticate the originator. The secret is case sensitive and can
include 12–16 bytes.
mutual-name
recipient-name
Optional; for mutual CHAP only. The recipient name, typically in IQN format. The name can have a
maximum of 223 bytes, including 0–9, lowercase a–z, hyphen, colon, and period. To determine a
storage system's IQN, use the
show ports
command to view an iSCSI port Target ID value. This
parameter and
mutual-secret
must be set together.
mutual-secret
recipient-secret
Optional; for mutual CHAP only. The secret that the originator uses to authenticate the recipient. The
secret is case sensitive, can include 12–16 bytes, and must differ from the originator secret. A storage
system's secret is shared by both controllers. This parameter and
mutual-name
must be set
together.
Example
Create a one-way CHAP record to enable a storage system to authenticate a host initiator:
# create chap-record name iqn.1991-05.com.microsoft:myhost.domain secret
123456abcDEF
Success: Command completed successfully.
(iqn.1991-05.com.microsoft:myhost.domain)- A CHAP record was created.
(2012-01-18 12:39:07)
See also
•
delete chap-records
•
set chap-record
•
show chap-records
•
show host-parameters
•
show iscsi-parameters
Summary of Contents for P2000 G3
Page 1: ...HP P2000 G3 MSA System CLI Reference Guide Part number 500912 009 First edition February 2014 ...
Page 14: ...14 About this guide ...
Page 30: ...30 Categorical list of commands ...
Page 199: ...HP P2000 G3 MSA System CLI Reference Guide 199 See also set cache parameters show volumes ...
Page 294: ...294 Alphabetical list of commands See also set volume set vdisk ...
Page 498: ...498 XML API basetype properties PROPERTY name mrc version type uint8 0 PROPERTY OBJECT ...
Page 524: ...524 Glossary ...
Page 532: ...532 Index ...