On Fri, 4 Dec 2009 11:42:40 +0000 "Brian O'Mahony" <[email protected]> wrote:
> Connecting up a rhel4u6 box to one of the SANs here and im seeing > some issues with authentication. > > If I disable chap, and allow connections from the pe2850 im using ofr > testing, everything is fine, and I can see the disk and create > logical volumes, filesystems, mount etc. > > My problem is once I enable chap. > > Here is the iscsi.conf: > > DiscoveryAddress=10.10.10.10 > OutgoingUsername=chap1 > OutgoingPassword=xxxxxxxxxxx > LoginTimeout=15 > > I get the following error on the Equalogic Events log: > > ERROR event from storage array PS6000DUB01 > subsystem: MgmtExec > event: 7.4.3 > time: Thu Dec 3 15:39:36 2009 > > iSCSI login to target '10.10.10.20:3260, > iqn.2001-05.com.equallogic:0-8a0906-8d303fd04-a63000007cf4b151-dubsangrp01volcc' > from initiator '10.10.10.33:32861, > iqn.1987-05.com.cisco:01.d060fab7a4a9' failed for the following > reason: Initiator tried to bypass the security phase but we cannot. > This is a known error, and there is a KB article for this in the Equallogic Support pages. Do a search for "Initiator tried to bypass the security phase but we cannot." on The solution is to restrict discovery of volumes that need chap authentication by IP-Address ACL as well. > I don't understand why its trying to bypass security - anyone got an > idea for me? > > B > > > The information in this email is confidential and may be legally > privileged. It is intended solely for the addressee. Access to this > email by anyone else is unauthorized. If you are not the intended > recipient, any disclosure, copying, distribution or any action taken > or omitted to be taken in reliance on it, is prohibited and may be > unlawful. If you are not the intended addressee please contact the > sender and dispose of this e-mail. Thank you. _______________________________________________ Linux-PowerEdge mailing list [email protected] https://lists.us.dell.com/mailman/listinfo/linux-poweredge Please read the FAQ at http://lists.us.dell.com/faq
