vserver iscsi security default

Configure the default authentication settings

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.

Description

This command defines a default iSCSI authentication method for your Vserver. If you do not configure the initiator to use a user-defined authentication method, the system assigns the default authentication method automatically to the initiator. Use the vserver iscsi security create command if you want to configure a user-defined authentication method.

The outbound CHAP user name and password are optional. If you want a bi-directional handshake, provide the outbound user name and you will be prompted for the corresponding password.

You cannot use the same password for inbound and outbound settings.

Parameters

-vserver <Vserver Name> - Vserver
Specifies the Vserver.
-auth-type | -s {CHAP|deny|none} - Authentication Method
Specifies the authentication type:
  • CHAP - Authenticates using a CHAP user name and password.
  • none - The initiator can access the Vserver without authentication.
  • deny - The initiator cannot access the Vserver.
[-user-name | -n <text>] - Inbound CHAP User Name
Specifies the inbound CHAP user name. CHAP user names can be one to 128 bytes. A null user name is not allowed. If provided, you will be prompted to provide the corresponding inbound CHAP password.
{ [-outbound-user-name | -m <text>] - Outbound CHAP User Name
Specifies the outbound CHAP user name. CHAP user names can be one to 128 bytes. If provided, you will be prompted to enter the corresponding outbound CHAP password.
| [-clear-outbound [true]]} - Clear Outbound CHAP Parameters
Removes the outbound user name and the outbound password information from the default authentication method. After you clear the outbound information, you no longer have a bi-directional handshake.

Examples

cluster1::> vserver iscsi security default -vserver vs1 -security chap -user-name bob -outbound-user-name bob_out

Password:

Outbound Password: