Go to main content

Managing Devices in Oracle^® Solaris 11.3

Exit Print View

» ...Documentation Home » Oracle Solaris 11.3 Information Library » Managing Devices in Oracle^® ... » Configuring Storage Devices With COMSTAR » Configuring Storage Devices With COMSTAR » How to Configure CHAP Authentication for an ...

Updated: April 2018

Managing Devices in Oracle^® Solaris 11.3

Document Information

Using This Documentation

Chapter 1 Managing Devices in Oracle Solaris

Chapter 2 Dynamically Configuring Devices

Chapter 3 Using InfiniBand Devices

Chapter 4 Managing Disks in Oracle Solaris

Chapter 5 Managing the Use of System's Disks

Chapter 6 Administering the System's Disks

Chapter 7 Setting Up ZFS on Disks

Chapter 8 Configuring Storage Devices With COMSTAR

Overview of COMSTAR Features

Configuring Storage Devices With COMSTAR Task Map

COMSTAR Terminology

Configuring Dynamic or Static Target Discovery

Configuring Storage Devices With COMSTAR

How to Enable the STMF Service

How to Back Up and Restore a COMSTAR Configuration

How to Create a Logical Unit

How to Configure CHAP Authentication for an iSCSI Target

How to Configure a RADIUS Server for an iSCSI Target

How to Create an iSCSI Target

How to Enable iSNS Discovery for the Target Device

How to Configure an IB HCA for iSER

Creating iSCSI Target Portal Groups

How to Access iSCSI Disks

Making SCSI Logical Units Available

How to Make a Logical Unit Available to All Systems

How to Restrict Logical Unit Access to Selected Systems

How to Perform ZFS Rollback

Configuring Fibre Channel Devices With COMSTAR

Configuring Fibre Channel Ports With COMSTAR

Making Logical Units Available for FC and FCoE

Configuring FCoE Devices With COMSTAR

Configuring FCoE Ports

Enabling 802.3x PAUSE and Jumbo Frames on the Ethernet Interface

How to Create FCoE Target Ports

How to Verify That an FCoE Target Port Is Working

How to Delete FCoE Target Ports

Configuring SRP Devices With COMSTAR

Using COMSTAR Views With SRP

How to Enable the SRP Target Service

How to Verify SRP Target Status

Chapter 9 Configuring and Managing the Oracle Solaris Internet Storage Name Service (iSNS)

Chapter 10 The Format Utility Reference

Chapter 11 Managing Tape Drives Tasks

Chapter 12 Writing CDs and DVDs

Chapter 13 Managing USB Devices

Chapter 14 Managing Removable Media

Appendix A Commonly Used Commands for Administering Storage Devices

Language:

How to Configure CHAP Authentication for an iSCSI Target

You can set up either bidirectional or unidirectional CHAP authentication. This procedure assumes that you are logged in to the local system that contains the iSCSI targets.

Become an administrator.
For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.3.
Configure the target to require that initiators identify themselves by using CHAP authentication.
```
target# itadm modify-target -a chap target-iqn
```
Create an initiator context that describes the initiator with initiator's full node name and initiator's CHAP secret key.
```
target# itadm create-initiator -s initiator-iqn
Enter CHAP secret: ************
Re-enter secret: ************
```
If the initiator uses an alternate CHAP name, then configure the initiator-context with the alternate name.
```
target# itadm modify-initiator -u initiator-CHAP-name initiator-iqn
```
This step completes the setup of unidirectional CHAP authentication. Continue with the remaining steps if you want to set up bidirectional CHAP authentication.

Set the target device secret key that identifies this target.

target# itadm modify-target -s target-iqn
Enter CHAP secret: ************
Re-enter secret: ************

If the target uses an custom CHAP user name, set the CHAP name that identifies the target.
By default, the target's CHAP name is set to the target node name (iqn). If the target uses a custom name, set the CHAP name that identifies the target.
```
target# itadm modify-target -u target-CHAP-name target-iqn
```

Copyright © 2004, 2018, Oracle and/or its affiliates. All rights reserved.