Filter
Top Products
The HBAnyware Utility User Manual Page 61
auth-cfgparms Controller
Specific
Description and Values: This is the DH-CHAP related driver property for
FC-SP support. It is only valid when driver property enable-auth is set to 1.
This driver property is ignored when enable-auth is set to 0.
The format of this property is:
"LWWN|RWWN|atov|amod|dir|tlist|hlist|dhgplist|raintval"
LWWN: The WWPN of the local entity, i.e. HBA port. Use the form of
NNNNNNNNNNNNNNNN, where NNNNNNNNNNNNNNNN is a 16 digit
representation of the host port World Wide Port Name. Or use
0000000000000000 to refer to the local port WWPN.
RWWN: The WWPN of the remote entity, i.e. fabric controller or any remote
Nport. Use the form of NNNNNNNNNNNNNNNN, where
NNNNNNNNNNNNNNNN is a 16 digit representation of the fabric controller
or Nport FFFFFFFFFFFFFFFF as generic remote fabric port WWPN.
atov: The authentication timeout value in seconds. The atov range is 20 to
999 seconds in hexidecimal. For example, enter 45 seconds as 002d.
amod: The authentication mode. The valid modes are specified as 01
(Disabled), 02 (Enabled) and 03 (Passive). For detailed description of the
mode, refer to the Emulex HBAnyware (3.4) utility help page.
dir: The bi-directional authentication parameter. When set to 01, bi-
directional authentication is enabled. When set to 00, bi-directional
authentication is disabled. When bidirectional authentication is enabled, the
key associated with remote entity must be specified in driver property auth-
keys.
tlist: The authentication type list. Currently Emulex LPFC driver only
supports DH-CHAP, always set tlist to 01000000.
hlist: The authentication hash list. Currently the Emulex LPFC driver only
supports MD5 and SHA1. 01 refers to MD5, 02 refers to SHA1. For example:
01020000 means MD5, SHA1 in order of preference. 01000000 means MD5
only.
dhgplist: The DH-CHAP group list in order of preference. Currently Emulex
LPFC driver supports NULL DH-CHAP algorithm and non-NULL DH-CHAP
algorithm such as DH group 1024, group 1280, group 1536 and group 2048.
For example: 0102030405000000 means NULL, group 1024,1280, 1536
and 2048 in order of preference.
raintval: Reauthentication heart beat interval in minutes. For example,
0000012c means the host side will do the reauthentication every 300
minutes. When set to 00000000 then reauthentication heartbeat is disabled.
You can use lpfcX-auth-cfgparms to specify the per HBA instance DH-CHAP
authentication parameters setup. Any valid setup in this way will overwrite
the auth-cfgparms setup.
Table 3: LPFC.conf Parameters (Continued)
Property Name Scope Default Min Max Dynamic Comments