Chapter 12. Administration - iSCSI 271
Draft Document for Review August 30, 2007 12:59 am 7065Admin_iSCSI.fm
From a security perspective, it is recommended to enable CHAP. However, since the
configuration of CHAP adds some complexity, we suggest that you set up and test all
connections with no CHAP, and later implement the security.
Figure 12-2 on page 271 shows both target authentication options checked.
Figure 12-2 DS3000 Storage Manager - iSCSI target authentication
3. If CHAP is enabled, you have to define the CHAP target secret. Click CHAP Secret....
4. Figure 12-3 shows the Enter Target CHAP secret dialog. Enter a CHAP secret that is at
least 12 characters long. Repeat the text to confirm.
Alternatively click Generate Random Secret to generate a 16 character long secret.
Click OK.
Figure 12-3 DS3000 Storage Manager - Target CHAP secret
5. You will return to the Change Target Authentication dialog (Figure 12-2 on page 271).
Click OK to save the modifications.
Note: Only one CHAP target secret can be defined. All initiators using target
authentication must use the same secret.
To Next Page
Loading...
Need help?
General