Server profile iSCSI authentication

iSCSI initiators and targets prove their identity to each other using a challenge handshake authentication protocol (CHAP). The CHAP protocol is designed to prevent unauthorized systems from accessing the data volumes. HPE OneView supports two CHAP options.

CHAP level

Select an iSCSI authentication option:

None

No authentication

CHAP

With this level of security, only the target (storage system) authenticates the initiator (server).

Mutual CHAP

With this level of security, the target and the initiator authenticate each other. A separate secret is set for each target and for each initiator in the SAN.

CHAP name (Target name)

The iSCSI target name to use when the target (storage system) authenticates the initiator (server).

The number of visible (letter, digit, and punctuation) characters in a valid name is generally 1-223 characters. Some server BIOS and storage systems further restrict the length, in some cases to 1-64 characters.

CHAP secret (Target secret)

The iSCSI target secret (password) to use when the target (storage system) authenticates the initiator (server). A valid secret is either 12–16 printable (letter, digit, punctuation, and space) characters with no 0x prefix, or 0x followed by 24–32 hexadecimal (0-9, a-f, and A-F) characters. A hexadecimal secret is only valid with the iSCSI function type.

Mutual CHAP name (Initiator name)

The iSCSI initiator name to use when the initiator (server) authenticates the target (storage system).

The number of visible (letter, digit, and punctuation) characters in a valid name is generally 1-223 characters. Some server BIOS and storage systems further restrict the length, in some cases to 1-64 characters.

Mutual CHAP secret (Initiator secret)

The iSCSI initiator secret (password) to use when the initiator (server) authenticates the target (storage system). This secret must be different than the CHAP secret. A valid secret is either 12–16 printable (letter, digit, punctuation, and space) characters with no 0x prefix, or 0x followed by 24–32 hexadecimal (0-9, a-f, and A-F) characters. A hexadecimal secret is only valid with the iSCSI function type.