beautypg.com

Port settings and connection results, Fibre channel switch authentication – HP XP P9500 Storage User Manual

Page 152

background image

Port settings and connection results

The following table shows the relationships between host group settings and the connection results
in authentication of hosts. Unless otherwise noted, connection results are as described regardless
of whether the host is configured for authentication by ports with CHAP.

Connection results

Host settings

Port settings

User information
of host

Authentication at host
group

Connected if the authentication of the host
succeeded

Registered

Registered

Enabled

Failed to be authenticated and cannot be
connected

Not registered

Registered

Enabled

Failed to be authenticated and cannot be
connected

Registered

Not registered

Enabled

Connected without authentication of the host

---

---

Disabled

If a host is configured for authentication by ports
with CHAP, authentication of the host will fail.
To allow such a host to connect to the port
without authentication, do not configure it for
authentication by ports with CHAP.

---: This item does not affect the connection results, or cannot be specified.

Fibre channel switch authentication

When a host attempts to connect to the storage system, the connection results of the authentication
of the fibre channel switch differs depending on the fibre channel switch setting related to each
port.

The following figure illustrates the flow of authentication between fibre channel switch settings and
the connection results. The setting of fibre channel switch authentication is independent from the
setting of host authentication. The connection use cases are detailed below the diagram.

Each case in the flow is explained below.

Authenticating fibre channel switches by ports (Cases A, B, and C)

If the user information of the fibre channel switch is registered on the port, and authentication
of the fibre channel switch is enabled (Case A)

Each port authenticates the fibre channel switch. If the authentication of the fibre channel
switch ends successfully, either of the following actions occurs:

When the fibre channel switch is configured for mutual authentication, processing continues
to authentication of the port.

When the fibre channel switch is not configured for mutual authentication, the fibre channel
switch connects to the storage system.

152

Managing logical volumes

See also other documents in the category HP Storage: