chiscsistorageport

Use the chiscsistorageport command to change authentication parameters, such as setting authentication credentials, removing authentication parameters, or updating credentials.

Syntax

chiscsistorageport [ -noauth ] [ -usernametarget_user_name ] [ -chapsecrettarget_chap ] lsiscsistorageport-rowid

Parameters

-noauth
(Optional) Clears all authentication parameters for a session.
Note: The -noauth parameter cannot be used with other parameters.
-usernametarget_user_name
(Optional) Specifies the target controller user name. The value must be an alphanumeric string up to 256 characters.

If the target controller requires a target_user_name and target_chap for discovery, the user name for the target controller must be specified.

Warning: Changing the -username for a target controller can be a disruptive operation, so exercise caution when you change the authentication details for the session. Be sure to make the controller side authentication credentials changes before you change the authentication credentials for the session.

Some controllers might require that you use the iSCSI qualified name (IQN) user name for discovery. The IQN of each node is picked up automatically and used if required.

-chapsecrettarget_chap
(Optional) Specifies the Challenge-Handshake Authentication Protocol (CHAP) secret target_chap required for discovery of the target iSCSI controller. The value must be an alphanumeric string up to 80 characters. This keyword is required when not using the -noauth parameter.
Warning: Changing the -chapsecret for a target controller can be a disruptive operation, so exercise caution when you change the authentication details for the session. Be sure to make the controller side authentication credentials changes before you change the authentication credentials for the session.
lsiscsistorageport-rowid
(Required) Specifies the row ID of an existing lsiscsistorageport output row.

Description

The chiscsistorageport command operates on a row ID specified by the output of lsiscsistorageport command. Because some storage controllers do not drop the existing active session after you change the authentication credentials, this command forces the session to drop and reconnect to confirm that the changed authentication credentials work.

Note: You cannot change the session mode between target-specific authentication and initiator node-specific authentication by using this command.

An invocation example to clear authentication for an iSCSI session

This example shows how to clear the authentication details of a session. For example, first specify lsiscsistorageport to list iSCSI port information:

lsiscsistorageport
id   port_id target_ipv4 target_ipv6 target_iscsiname controller_id controller_name iogroup_list status site_id site_name
5     2      10.10.10.1              IQN1             1             ctlr1           1:1:1:1      full
The following example shows how to clear authentication where the target has a single user name or CHAP secret.
chiscsistorageport -noauth 5
The result is clearing the authentication of iSCSI sessions from all initiator nodes.

An invocation example to change an existing user name

The following example shows how to change an existing user name where the target has a single user name or CHAP secret. The -username parameter requires the -chapsecret parameter.
chiscsistorageport -username superman -chapsecret abcd 5
The result is changing the authentication of iSCSI sessions from all initiator nodes.

An invocation example to change an existing CHAP secret

The following example shows how to change an existing -chapsecret where the target has a single user name or CHAP secret.
chiscsistorageport -chapsecret batman 5
The result is changing the authentication of iSCSI sessions from all initiator nodes.

An invocation example to change an existing user name and CHAP secret

This example shows how to change an existing -username and -chapsecret where the target has a single user name or CHAP secret.
chiscsistorageport -username superman -chapsecret batman 5
The result is changing authentication of iSCSI sessions from all initiator nodes.