0 Replies Latest reply: Feb 27, 2013 6:48 PM by SWATHI.GANGISETTY RSS

Chap secret generated by iscsi security generate does not work when host tries to authenticate

SWATHI.GANGISETTY Novice
Currently Being Moderated

I'm using CHAP to authenticate a linux host against Netapp system. On the filer I added an authentication rule for the host. I used a password generated by iscsi security generate

 

> iscsi security generate

Generated Random Secret: 0x1e4d158531d2f6468ed68fe34aab7f72

> iscsi security add -i iqn.1994-05.com.redhat:561ad03657ce -s CHAP -p 0x1e4d158531d2f6468ed68fe34aab7f72 -n foobar

 

I set the iscsi connection parameter on the linux host using iscsiadm utility. However the host fails to connect to Netapp with authentication failure

 

iscsiadm: Could not login to [iface: default, target: iqn.XYZ.142251821, portal: X.X.X.X,3260].

iscsiadm: initiator reported error (24 - iSCSI login failed due to authorization failure)

iscsiadm: Could not log into all portals

 

I tried setting the same CHAP password using System Manager GUI and I get the error "Non Hexadecimal character found". 

 

The CHAP authentication works fine when a non hex value (such as any string without the leading 0x) is set as the password. This makes me wonder if I correctly understand the CHAP mechanism employed by Netapp. Does anyone have an insight?

 

Thanks

More Like This

  • Retrieving data ...

Legend

  • Correct Answers - 10 points
  • Helpful Answers - 5 points