Emulex 3.3 The HBAnyware Utility User Manual Page 54

The HBAnyware Utility User Manual Page 54

auth-cfgparms Controller

Specific Description and Values: This is the DH-CHAP related driver property for

FC-SP support. It is only valid when driver property enable-auth is set to 1.

This driver property should be ignored when enable-auth is set to 0.

The format of this property is:

LWWN: The WWPN of the local entity, i.e. HBA port. You should use the

form of NNNNNNNNNNNNNNNN, where NNNNNNNNNNNNNNNN is a 16

digit representation of the Host port World Wide Port Name. Or you could

use 0000000000000000 to refer to local port WWPN.

RWWN: The WWPN of the remote entity, i.e. Fabric con troller or any

remote nport. You should use the form of NNNNNNNNNNNNNNNN, where

NNNNNNNNNNNNNNNN is a 16 digit representation of the Fabric

Controller or nport FFFFFFFFFFFFFFFF as generic remote fabric port

WWPN.

atov: The authentication timeout value in seconds. The atov range is 20 to

999 seconds in hexidecimal. For example, 45 seconds would be entered as

002d.

amod: The authentication mode. The valid modes are specified as 01

(Disabled), 02 (Enabled) and 03 (Passive). For detailed description of the

mode, please refer to the Emulex HBAnyware (3.3) utility help page.

dir: The bi-directional authentication parameter. When set to 01, bi-

directional authentication is enabled. When set to 00, bi-directional

authentication is disabled. When bidirectional authentication is enabled, the

key associated with remote entity must be specified in driver property auth-

keys.

tlist: The authentication type list. Currently Emulex lpfc driver only support

DH-CHAP, tlist should always be set to 01000000.

hlist: The authentication hash list. Currently Emulex lpfc driver only support

MD5 and SHA1. 01 refers to MD5, 02 refers to SHA1. For example:

01020000 means MD5, SHA1 in order of preference. 01000000 means MD5

only.

dhgplist: The DH-CHAP group list in order of preference. Currently Emulex

lpfc driver supports NULL DH-CHAP algorithm and non-NULL DH-CHAP

algorithm such as DH group 1024, group 1280, group 1536 and group 2048.

For example: 0102030405000000 means NULL, group 1024,1280, 1536

and 2048 in order of preference.

raintval: Reauthentication heart beat interval in minutes. For example,

0000012c means the host side will do the reauthentication every 300

minutes. When set to 00000000 then reauthentication heartbeat is disabled.

You can use lpfcX-auth-cfgparms to specify the per HBA instance DH-CHAP

authentication parameters setup. Any valid setup in this way will overwrite

the auth-cfgparms setup.

Table 3: LPFC.conf Parameters (Continued)

Property Name Scope Default Min Max Dynamic Comments