How to Configure iSCSI CHAP secrets with E-Series on a Linux Host
- Views:
- 139
- Visibility:
- Public
- Votes:
- 5
- Category:
- e-series-santricity-storage-manager
- Specialty:
- esg
- Last Updated:
Applies to
- Netapp E-Series
- Linux
Description
CHAP, Challenge Handshake Authentication Protocol, is a 3 way handshake between two devices in a network to ensure security.
- Used with Ethernet based authentication.
- CHAP can be either One Way Authentication CHAP or bidirectional CHAP.
One Way (Target) Authentication CHAP
- Initiator device validates the target.
- Initiator and target save a local secret.
- These secrets produce a one way hash.
Two Way (Mutual) Authentication CHAP
- Same as One Way Authentication but will then have the target validate the initiator.
- Can only be configured after One Way Authentication CHAP has been configured.
- Similar secret configuration to One Way Authentication CHAP
- Adds an additional secret which must be different then the One Way Authentication secret.