Skip to main content
NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.
NetApp Knowledge Base

How to Configure iSCSI CHAP secrets with E-Series on a Linux Host

Views:
139
Visibility:
Public
Votes:
5
Category:
e-series-santricity-storage-manager
Specialty:
esg
Last Updated:

Applies to

  • Netapp E-Series
  • Linux

Description

CHAP, Challenge Handshake Authentication Protocol, is a 3 way handshake between two devices in a network to ensure security. 

  • Used with Ethernet based authentication. 
  • CHAP can be either One Way Authentication CHAP or bidirectional CHAP. 

 

One Way (Target) Authentication CHAP

  • Initiator device validates the target. 
  • Initiator and target save a local secret. 
  • These secrets produce a one way hash. 

 

Two Way (Mutual) Authentication CHAP

  • Same as One Way Authentication but will then have the target validate the initiator. 
  • Can only be configured after One Way Authentication CHAP has been configured.
  • Similar secret configuration to One Way Authentication CHAP
  • Adds an additional secret which must be different then the One Way Authentication secret. 
Scan to view the article on your device