beautypg.com

Host authentication, Figure 7 flow of port authentication, 7 flow of port authentication – HP StorageWorks XP Remote Web Console Software User Manual

Page 24

background image

24

LUN Manager for the XP1024/XP128

Host authentication

When a host attempts to connect to the disk array, the connection results of the host’s authentication

depend on the port settings.

Figure 7

illustrates the relationship between port settings and the connection

results.

Figure 7

Flow of port authentication

Each case in

Figure 7

is explained below.

When connecting via a port that performs host authentication:
• If the user information of the host is registered on the port and host authentication is enabled (Case

A): The port authenticates the user information sent from the host. If the host authentication is

successful, then:
If the host is configured for mutual authentication, processing continues with port authentication. If

the host is not configured for port authentication using CHAP, the authentication fails and the host

cannot connect to the disk array.
If the host is not configured for mutual authentication, the host connects to the disk array.

• If the user information of the host is registered on the port but host authentication is disabled (Case

B): The port does not perform host authentication. Irrespective of whether the host is configured for

port authentication using CHAP, the host connects to the disk array.

CAUTION:

If a host uses Microsoft iSCSI Initiator and is configured for port authentication using

CHAP, host authentication will fail. To allow such a host to connect to the port without

authentication, do not configure it for port authentication using CHAP.

• If the user information of the host is not registered on the port (Case C): Irrespective of the setting

on the host, the port performs host authentication and it fails. The host cannot connect to the disk

array.

When connecting via a port that does not perform host authentication (Case D): The host can connect

to the disk array without host authentication irrespective of whether the host is configured for port

authentication using CHAP. In this case, registering the user information of the host on the port is not

required.

This manual is related to the following products: