The HBAnyware Utility User Manual Page 36
Viewing and Setting Up Authentication (Windows, Solaris LPFC and Solaris SFS)
Use the Authenticate tab to view and set up FC-SP DHCHAP configuration. You can initiate
authentication asynchronously (at will) per HBA. Otherwise, when authentication is enabled, the HBA
will attempt authentication with the switch at fabric login (FLOGI) time per the FC-SP standard.
Authentication is enabled at the driver level. Authentication is disabled by default. To enable DHCHAP
from the Drivers Parameters tab, enable the enable-auth parameter (in Windows) or the auth-mode
parameter (in Solaris LPFC).
Figure 25: Authentication tab
Authenticate Tab Field Definitions
• Source - The HBA identifier.
• Destination - The fabric switch name.
Configuration Data Area
• Mode - The mode of operation. There are three modes: enabled, passive and disabled.
• Enabled - During switch initialization, the software performs the authentication sequence. If
the connecting device does not support DHCHAP authentication, the software continues
with the rest of the initialization sequence.
• Passive - The switch does not initiate DHCHAP authentication, but participates in DHCHAP
authentication if the connecting device initiates DHCHAP authentication.
• Disabled - The switch does not support DHCHAP authentication. Authentication messages
sent to such ports return error messages to the initiating switch. This is the default mode.
• Timeout - During the DHCHAP protocol exchange, if the switch does not receive the expected
DHCHAP message within a specified time interval, authentication failure is assumed (no
authentication is performed). The time value ranges from 20 to 999 seconds.
Note: To successfully authenticate with the switch using DHCHAP, you only need to set the
configuration mode to enabled and set the local password. The local password must
be set to the identical value as the switch for the DHCHAP authentication to succeed.
Caution: Do not forget the password once one has been assigned. Once a password is
assigned to an HBA, subsequent DHCHAP configuration settings for that HBA
including 'default configuration' or new passwords require you to enter the existing
password to validate your request (i.e. no further changes can be made without
the password).