121
To enable the CHAP authentication, select the “
Request Discovery CHAP
Authentication
” checkbox to activate the feature.
CHAP stands for Challenge Handshake Authentication protocol. With this protocol,
networked computers use the encrypted password to authenticate each other remotely.
The CHAP security method can be used to build a secure iSCSI network.
The server supports one-way or two-way (mutual) CHAP authentication. With two-way
CHAP, a separate three-way handshake is initiated between an iSCSI initiator and storage
host port. The initiator side (for example, Microsoft initiator software), CHAP logon is
designated as an option with selectable initiator IQN name and that of the target secret (to
which the CHAP authentication call will be issued; namely, the host port on your server).
The user name here applies to the one-way or Mutual CHAP authentication. Identical
names and passwords must be configured here and on the initiator software or HBA
configuration utility.
User/target name and password are used for the inbound authentication processes
between the called and calling parties. Names and passwords are identical here and on
the initiator side.
User name should contain at least 12 characters.
The user password here applies to a one-way CHAP configuration for inbound
authentication. Note that some CHAP configuration utilities may use “secret” instead of
“password.”
Using CHAP Authentication