Manualshelf

Users Guide

ManualsBrandsDell ManualsComputer HardwareEmulex Family of Adapters
119120121122123124125126127128
Broadcom DRVLin-LPe-UG124-100
127
Emulex Drivers for Linux User Guide
Appendix E: FC-SP-2 Authentication (DHCHAP) Support
NOTE:
DHCHAP is available only for physical ports, not for virtual ports.
The authentication driver parameters are only available on local hosts and not for any remote hosts.
Boot from SAN is not supported when DHCHAP authentication is enabled.
DHCHAP is not supported on FA-PWWN ports.
DHCHAP is not supported if Dynamic D_PORT is enabled.
Fibre Channel Security Protocol-2 (FC-SP-2) DHCHAP is a secret based authentication and key management protocol that
uses the CHAP algorithm augmented with an optional Diffie-Hellmann algorithm with hash priority (MD5 and SHA1).
You can configure FC-SP-2 DHCHAP authentication between an adapter and a switch.
FC-SP-2 DHCHAP authentication is disabled by default.
To enable it, the lpfc_enable_auth parameter must be passed to the driver by typing the following command:
insmod lpfc.ko lpfc_enable_auth=1
For a permanent configuration that will persist across system reboots, create the /etc/modprobe.d/elx-lpfc.conf
file, and place the following line into it:
options lpfc lpfc_enable_auth=1
NOTE: Boot from SAN is not supported when FC-SP-2 authentication is enabled.
After DHCHAP has been activated and configured, you can manually initiate authentication per adapter, you can get, set,
update, or delete a password using the Emulex OneCommand Manager application. For more information on manually
initiating authentication, refer to the Emulex OneCommand Manager Application User Guide.