|
|
HP-UX iSCSI Software Initiator Support Guide: HP-UX 11i v1 & 11i v2 > Appendix A Login
Key ConfigurationConfiguring iSCSI Login Keys |
|
In accordance with the iSCSI protocol, an iSCSI initiator must negotiate iSCSI login keys with each iSCSI target to:
All of the iSCSI login keys configured by default by the iSCSI Software Initiator apply to all of the targets connected to the iSCSI host node. Currently, there are three iSCSI login keys that may be configured by the user on a per target basis. The three user configurable login keys are:
The default value for HeaderDigest is:
The default value for DataDigest is:
The default value for AuthMethod is:
The user configurable login keys may be configured in one of the following ways:
The usage to configure the login values for the user configurable login keys is as follows:
The order in which the login values are listed in this command defines the order in which the iSCSI initiator proposes them to the target. The login keys and values are not case-sensitive. The configurable login keys currently available are: The order of precedence of login key configuration is as follows:
Configuration of login keys at the Discovery target level is not possible, because Discovery targets are not identified by iSCSI target names. Configuration of login keys for Discovery target addresses does not involve defining the iSCSI target names. For Operational targets (addresses), the target names should be defined.
Configure the HeaderDigest key with "None,CRC32C" as the value for all targets: # iscsiutil -t headerdigest None CRC32C Configure the DataDigest key with "CRC32C,None" as the value for a particular Discovery Target Address which is already configured: # iscsiutil -t datadigest CRC32C None -I 192.1.1.58 -M 2 Configure the DataDigest key with "CRC32C,None" as the value for an Operational Target: # iscsiutil -t datadigest CRC32C None -T iqn.2003-11.com. hp.stor:iSCSI.Storage Configure the HeaderDigest key with "CRC32C" as the value for an Operational Target Address: # iscsiutil -t headerdigest CRC32C -I 192.1.1.58 -M 2 -T iqn.2003-11.com.hp.stor:iSCSI.Storage Configure both the HeaderDigest and the DataDigest keys with "CRC32C" as the value for an Operational Target Address: # iscsiutil -t bothdigest CRC32C -I 192.1.1.58 -M 2 -T iqn. 2003-11.com.hp.stor:iSCSI.Storage Configure the AuthMethod key with "CHAP,None" as the value for all Targets: # iscsiutil -t authmethod CHAP None Configure the AuthMethod key with "CHAP" as the value for a particular Discovery Target Address, which is already configured: # iscsiutil -t authmethod CHAP -I 192.1.1.58 -M 2 Configure the AuthMethod key with "None,CHAP" as the value for an Operational Target: # iscsiutil -t authmethod None CHAP -T iqn.2003-11.com.hp. stor:iSCSI.Storage Configure the AuthMethod key with "CHAP" as the Authentication Method for an Operational Target Address: # iscsiutil -t authmethod CHAP -I 192.1.1.58 -M 2 -T iqn.2003-11.com.hp.stor:iSCSI.Storage
To verify the login key configuration, execute any of the following login key display commands. To display login keys common to all Targets: # iscsiutil -l To display login keys of all Discovery Targets: # iscsiutil -pD To display login keys of all Operational Targets: # iscsiutil -pO To display login keys of all Sessions: # iscsiutil -pS To display login keys of a particular Operational Target identified by its Target Name: # iscsiutil -p -T <target-name> Among the various login keys displayed by the commands described above, the parameters of interest are:
Displaying Negotiated Login Key Values After executing the "ioscan" command, which initiates a login negotiation, the following command can be executed to display the negotiated login keys for all sessions (provided login negotiation is successful): # iscsiutil -pVS |
|