NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.

Home
Advice and Troubleshooting
Data Storage Systems
E-Series Storage Array
How to Configure iSCSI CHAP secrets with E-Series on a Linux Host

How to Configure iSCSI CHAP secrets with E-Series on a Linux Host

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 139

Visibility:: Public

Votes:: 5

Category:: e-series-santricity-storage-manager

Specialty:: esg

Last Updated:

Applies to

Netapp E-Series
Linux

Description

CHAP, Challenge Handshake Authentication Protocol, is a 3 way handshake between two devices in a network to ensure security.

Used with Ethernet based authentication.
CHAP can be either One Way Authentication CHAP or bidirectional CHAP.

One Way (Target) Authentication CHAP

Initiator device validates the target.
Initiator and target save a local secret.
These secrets produce a one way hash.

Two Way (Mutual) Authentication CHAP

Same as One Way Authentication but will then have the target validate the initiator.
Can only be configured after One Way Authentication CHAP has been configured.
Similar secret configuration to One Way Authentication CHAP
Adds an additional secret which must be different then the One Way Authentication secret.