Hp EVA P6000 Storage Bedienungsanleitung Seite 131
- Seite / 316
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Setting up authentication
Challenge Handshake Authentication Protocol (CHAP) is an authentication protocol used for secure
logon between the iSCSI Initiator and iSCSI target. CHAP uses a challenge-response security
mechanism for verifying the identity of an initiator without revealing a secret password that is
shared by the two entities. It is also referred to as a three-way handshake. An important concept
of CHAP is that the initiator must prove to the target that it knows a shared secret without actually
revealing the secret. (Sending the secret across the wire could reveal it to an eavesdropper.) CHAP
provides a mechanism for doing this.
NOTE: Setting up authentication for your iSCSI devices is optional. If you require authentication,
HP recommends that you configure it after you have properly verified installation and operation
of the iSCSI implementation without authentication.
In a secure environment, authentication may not be required, access to the targets is limited only
to trusted initiators.
In a less secure environment, the target cannot determine if a connection request is truly from a
given host. In that case, the target can use CHAP to authenticate an initiator.
When an initiator contacts a target that uses CHAP, the target (called the authenticator) responds
by sending the initiator a challenge. The challenge is a piece of information that is unique for this
authentication session. The initiator then encrypts this information, using a previously-issued password
that is shared by both initiator and target. The encrypted information is then returned to the target.
The target has the same password and uses it as a key to encrypt the information it originally sent
to the initiator. It compares its results with the encrypted results sent by the initiator. If they are the
same, the initiator is assumed to be authentic
These schemes are often called proof of possession protocols. The challenge requires that an entity
prove possession of a shared key or one of the key pairs in a public key scheme.
This procedure is repeated throughout the session to verify that the correct initiator is still connected.
Repeating these steps prevents someone from stealing the initiator’s session by replaying information
that was intercepted on the line.
There are sever alInternet RFCs that cover CHAP in more detail:
• RFC 1994 (PPP Challenge Handshake Authentication Protocol, August 1996
• RFC 2433 (Microsoft PPP CHAP Extensions, October 1998)
• RFC 2759 (Microsoft PPP CHAP Extensions version 2, January 2000)
CHAP restrictions
The CHAP restrictions are as follows:
• Maximum length of 100 characters
• Minimum length of 1 character
• No restriction on the type of characters that can be entered
• Entering an IQN using the HP P6000 Command View add host tab requires the iSCSI initiator
to have been registered by the iSCSI or iSCSI/FCoE module's initiator database. Implying
that the initiator's target discovery has completed.
Microsoft Initiator CHAP secret restrictions
• Maximum length of 16 characters
• Minimum length of 12 characters
• No restriction on the type of characters that can be entered
• When an initiator uses iSNS for target discovery, only normal session CHAP applies
Set up the iSCSI Initiator 131
- User Guide 1
- Contents 3
- 4 Contents 4
- Contents 5 5
- 6 Contents 6
- Contents 7 7
- 8 Contents 8
- Contents 9 9
- 10 Contents 10
- Contents 11 11
- 12 Contents 12
- 1 P63x0/P65x0 EVA hardware 13
- Rear view 14
- Drive bay numbering 14
- Front view 14
- Disk drives 15
- Front status and UID module 16
- Power supply module 17
- Fan module 17
- I/O module 18
- Rear power and UID module 19
- Controller enclosure 21
- Controller status indicators 24
- Controller status LEDs 25
- Battery module 27
- Management module 28
- HSV controller cabling 29
- Storage system racks 30
- Power distribution units 31
- 1. Power receptacles 32
- 2. AC power connector 32
- 32 P63x0/P65x0 EVA hardware 32
- Moving and stabilizing a rack 33
- 34 P63x0/P65x0 EVA hardware 34
- 1. Hex nut 35
- 2. Leveler foot 35
- 2 P63x0/P65x0 EVA operation 36
- Implicit LUN transition 38
- Recovery CD 39
- Handling fiber optic cables 39
- Powering on disk enclosures 40
- Powering off disk enclosures 41
- Starting the storage system 41
- 42 P63x0/P65x0 EVA operation 42
- Using the management module 43
- 3. Reset button1. Status LEDs 44
- 2. Ethernet jack 44
- 44 P63x0/P65x0 EVA operation 44
- 46 P63x0/P65x0 EVA operation 46
- 48 P63x0/P65x0 EVA operation 48
- Overview 50
- Clustering 50
- Multipathing 50
- Adding hosts 51
- Scanning the bus 52
- HP-UX 53 53
- Accessing IBM AIX utilities 54
- Driver failover mode 55
- Installing a QLogic driver 55
- Upgrading Linux components 56
- Using the source RPM 57
- Console LUN ID and OS unit ID 59
- Adding OpenVMS hosts 59
- Oracle Solaris 63 63
- Fabric setup and zoning 65
- 50001fe1002709e9,5 68
- Oracle Solaris 69 69
- Configuring an ESX server 70
- VMware 71 71
- System prerequisites 73
- Installing the VAAI Plug-in 74
- VMware 75 75
- VMware 79 79
- Uninstalling the VAAI Plug-in 80
- VMware 81 81
- 4 Replacing array components 82
- Replaceable parts 83
- Replacement instructions 85
- 86 Replacing array components 86
- Figure 25 FCoE support 88
- Supported IP network adapters 93
- IP network requirements 93
- Set up the iSCSI Initiator 94
- Set up the iSCSI Initiator 95 95
- Set up the iSCSI Initiator 97 97
- Figure 37 Add Features page 101
- Figure 48 Select status 108
- Assigning device names 112
- Target bindings 113
- Mounting file systems 114
- Unmounting file systems 114
- MPxIO overview 118
- Edit the sgen.conf file 119
- Create an sgen driver alias 120
- # iscsiadm list target-param 121
- 1.01.50014380025da538 121
- Requirements 129
- Setting up authentication 131
- CHAP restrictions 131
- 6 Single path implementation 149
- Supported configurations 150
- HP-UX configuration 152
- HBA configuration 153
- Limitations 154
- Oracle Solaris configuration 155
- OpenVMS configuration 157
- Xen configuration 158
- Linux (32-bit) configuration 159
- Linux (Itanium) configuration 160
- IBM AIX configuration 162
- VMware configuration 163
- Mac OS configuration 164
- Failure scenarios 164
- Windows Servers 165
- Oracle Solaris 165
- 7 Troubleshooting 169
- Is the fan LED amber? 171
- Compromised fault tolerance 171
- 172 Troubleshooting 172
- Handling disk drive failures 173
- Figure 86 Beacon on command 174
- Issues and solutions 175
- 176 Troubleshooting 176
- 8 Error messages 180
- 9 Support and other resources 197
- Typographic conventions 198
- Customer self repair 198
- Rack stability 199
- FCC rating label 200
- European Union notice 201
- Japanese notices 202
- Korean notices 202
- Taiwanese notices 203
- Turkish recycling notice 203
- Laser compliance notices 204
- German laser notice 205
- Italian laser notice 205
- Japanese laser notice 205
- Recycling notices 206
- Hungarian recycling notice 208
- Italian recycling notice 208
- Latvian recycling notice 208
- Lithuanian recycling notice 208
- Polish recycling notice 208
- Portuguese recycling notice 209
- Romanian recycling notice 209
- Slovak recycling notice 209
- Spanish recycling notice 209
- Swedish recycling notice 209
- Battery replacement notices 210
- German battery notice 211
- Italian battery notice 211
- Japanese battery notice 212
- Spanish battery notice 212
- Internal component envelope 213
- EIA310-D standards 213
- Airflow and Recirculation 214
- Configuration Standards 214
- UPS Selection 214
- C Command reference 217
- Example: : 222
- Initiator 223
- Example 2: 224
- Example 3: 224
- Example 4: 224
- Example: 225
- Admin sessionAuthority 228
- 228 Command reference 228
- Set alias 232
- Set CHAP 233
- Set features 234
- Set iSCSI 235
- Set iSNS 236
- Set Mgmt 236
- Set properties 237
- Set SNMP 238
- Set system 239
- Set VPGroups 239
- Show CHAP 242
- Show features 244
- Show initiators 244
- Show initiators LUN mask 246
- Show iSCSI 247
- 248 Command reference 248
- Show iSNS 249
- Show logs 249
- Show LUNinfo 250
- Show LUNs 251
- Show lunmask 252
- Show memory 252
- Show mgmt 253
- Show NTP 253
- Show perf 254
- Show presented targets 255
- 256 Command reference 256
- Commands 257 257
- Show properties 258
- Show SNMP 259
- Show stats 259
- 260 Command reference 260
- Show system 261
- Show targets 262
- Show VPGroups 262
- Shutdown 263
- Traceroute 264
- D Using the iSCSI CLI 265
- 266 Using the iSCSI CLI 266
- SNMP parameters 269
- Management Information Base 270
- FC port table 272
- Initiator object table 273
- LUN table 275
- VP group table 277
- Sensor table 278
- Notifications 279
- System information objects 280
- Notification objects 280
- Agent startup notification 281
- Agent shutdown notification 281
- FC port down notification 281
- Sensor notification 283
- Generic notification 283
- Glossary 298
- 300 Glossary 300
- 302 Glossary 302
- 304 Glossary 304
- 306 Glossary 306
- 308 Glossary 308
- 310 Glossary 310
- 312 Index 312
- 314 Index 314
- 316 Index 316
Verwandte Produkte und Handbücher für Lager Hp EVA P6000 Storage
(59 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 1.741 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern