Chap With Local Password Database; Chap With External Radius Server - HP Cisco MDS 9216 - Fabric Switch Configuration Manual
Cisco mds 9000 family fabric manager configuration guide, release 3.x (ol-8222-10, april 2008)
Hide thumbs
Also See for Cisco MDS 9216 - Fabric Switch:
- Update manual (9 pages) ,
- Configuration manual (1444 pages)
Table of Contents
Advertisement
Chapter 50
Configuring iSCSI
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
CHAP with Local Password Database
To configure authentication using the CHAP option with the local password database, follow these steps:
Set the AAA authentication to use the local password database for the iSCSI protocol:
Step 1
a.
b.
c.
Step 2
Set the iSCSI authentication method to require CHAP for all iSCSI clients.:
a.
b.
c.
Configure the user names and passwords for iSCSI users:
Step 3
a.
b.
c.
Verify the global iSCSI authentication setup:
Step 4
a.
b.
CHAP with External RADIUS Server
To configure authentication using the CHAP option with an external RADIUS server, follow these steps:
:Configure the password for the Cisco MDS switch as RADIUS client to the RADIUS server:
Step 1
a.
b.
c.
Configure the RADIUS server IP address:
Step 2
a.
b.
c.
d.
e.
Step 3
Create a RADIUS server group and add the RADIUS server to the group:
a.
b.
OL-16184-01, Cisco MDS SAN-OS Release 3.x
In Fabric Manager, choose Switches > Security > AAA in the Physical Attributes pane.
Click the Applications tab in the Information pane.
Check the Local check box for the iSCSI row and click Apply Changes.
In Fabric Manager, choose End Devices > iSCSI in the Physical Attributes pane.
Click the Globals tab in the Information pane.
Set the AuthMethod drop-down menu to chap and click Apply Changes.
In Device Manager, choose Security > iSCSI.
Set the Username, Password and Confirm Password fields.
Click Create to save these changes.
In Fabric Manager, choose End Devices > iSCSI in the Physical Attributes pane.
Click the Globals tab in the Information pane.
In Fabric Manager, choose Switches > Security > AAA > RADIUS in the Physical Attributes pane.
Click the Default tab in the Information pane.
Set the AuthKey field to the default password and click the Apply Changes icon.
In Fabric Manager, choose Switches > Security > AAA > RADIUS in the Physical Attributes pane.
Click the Server tab in the Information pane and click Create Row.
Set the Index field to a unique number.
Set the IP Type radio button to ipv4 or ipv6.
Set the Name or IP Address field to the IP address of the RADIUS server and click Create.
In Fabric Manager, choose Switches > Security > AAA in the Physical Attributes pane.
Select the Server Groups tab in the Information pane and click Create Row.
iSCSI Authentication Setup Guidelines and Scenarios
Cisco MDS 9000 Family CLI Configuration Guide
50-57
Advertisement
Table of Contents
Troubleshooting
