Cisco 9134 - MDS Multilayer Fabric Switch Troubleshooting Manual page 413
Mds 9000 family
Hide thumbs
Also See for 9134 - MDS Multilayer Fabric Switch:
- Release notes (10 pages) ,
- Configuration manual (1484 pages) ,
- Installation manual (108 pages)
Table of Contents
Advertisement
Chapter 20
Troubleshooting IP Storage Services
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
switch#
switch# Mar
Mar
authentication
Mar
Mar
Mar
Mar
Mar
operation:success
Mar
Mar
Mar
Mar
Mar
Mar
Mar
user002
Mar
Mar
authentication
Mar
Mar
Mar
Mar
Mar
operation:success
Mar
Mar
Mar
Mar
Mar
Mar
Mar
user002
Mar
Mar
Mar
user002
The previous example shows that the iSCSI client has been authenticated three times, first for the switch
login, and the second and third times for the iSCSI driver login. The switch sends RADIUS attributes
1, 3, 4, 5, 6, 60 and 61 to the RADIUS server. The RADIUS server only needs to respond with request
accept or request reject.
The following example shows a RADIUS authentication.
639 2003y3m14d 15h12m48s ------------------------------------------------
640 2003y3m14d 15h12m48s Message Type=Access_Request
641 2003y3m14d 15h12m48s ID=243, Length=90
642 2003y3m14d 15h12m48s User name=user002
643 2003y3m14d 15h12m48s NAS IP address=2887147911
644 2003y3m14d 15h12m48s CHAP password=‰j÷<¸Wøøë-K–ëÙ<]
645 2003y3m14d 15h12m48s CHAP challenge=n8NÝgø§"__Ó4}Ôx
646 2003y3m14d 15h12m48s NAS port=1426
647 2003y3m14d 15h12m48s NAS port type=5
648 2003y3m14d 15h12m48s Service type=8
649 2003y3m14d 15h12m48s User (user002) authenticate OK.
650 2003y3m14d 15h12m54s ------------------------------------------------
651 2003y3m14d 15h12m54s Message Type=Access_Request
652 2003y3m14d 15h12m54s ID=60, Length=90
653 2003y3m14d 15h12m54s User name=user002
654 2003y3m14d 15h12m54s NAS IP address=2887147911
OL-9285-05
4 23:16:20 securityd: received CHAP authentication request for user002
4 23:16:20 securityd: RADIUS is enabled, hence it will be tried first for CHAP
4 23:16:20 securityd: reading RADIUS configuration
4 23:16:20 securityd: opening radius configuration for group:default
4 23:16:20 securityd: opened the configuration successfully
4 23:16:20 securityd: GET request for RADIUS global config
4 23:16:20 securityd: got back the return value of global radius configuration
4 23:16:20 securityd: closing RADIUS pss configuration
4 23:16:20 securityd: opening radius configuration for group:default
4 23:16:20 securityd: opened the configuration successfully
4 23:16:20 securityd: GETNEXT request for radius index:0 addr:
4 23:16:20 securityd: got some reply from 171.71.49.197
4 23:16:20 securityd: verified the response from:171.71.49.197
4 23:16:20 securityd: RADIUS server sent accept for authentication request for
4 23:16:25 securityd: received CHAP authentication request for user002
4 23:16:25 securityd: RADIUS is enabled, hence it will be tried first for CHAP
4 23:16:25 securityd: reading RADIUS configuration
4 23:16:25 securityd: opening radius configuration for group:default
4 23:16:25 securityd: opened the configuration successfully
4 23:16:25 securityd: GET request for RADIUS global config
4 23:16:25 securityd: got back the return value of global radius configuration
4 23:16:25 securityd: closing RADIUS pss configuration
4 23:16:25 securityd: opening radius configuration for group:default
4 23:16:25 securityd: opened the configuration successfully
4 23:16:25 securityd: GETNEXT request for radius index:0 addr:
4 23:16:25 securityd: got some reply from 171.71.49.197
4 23:16:25 securityd: verified the response from:171.71.49.197
4 23:16:25 securityd: RADIUS server sent accept for authentication request for
4 23:16:25 securityd: got some reply from 171.71.49.197
4 23:16:25 securityd: verified the response from:171.71.49.197
4 23:16:25 securityd: RADIUS server sent accept for authentication request for
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
iSCSI Issues
20-39
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
