Access to virtual devices through iSCSI can be secured by adding user credentials to the devices using CHAP (Challenge Handshake Authentication Protocol) authentication.
Note
For security purposes, it is recommended that iSCSI device access credentials using CHAP is defined by default, as soon as the VTL software is installed.
Procedure
-
Edit the following file:
/commvaultvtl/etc/commvault.conf
-
Add the following entries to add the credentials:
IncomingUser=<add_user> IncomingPasswd=<add_password>-
User name should be greater then 8 characters and less than 256 characters and can include 0-9, a-z, A-Z, _ (underscore), and - (hyphen).
-
Passwords should NOT include spaces, : (colon), = (equal sign), \ (backslash), ' (single quotation mark), and " (double quotation mark).
If a special character is used, it should be enclosed within single quotation marks (' ').
-
-
Reload the file using the following command:
# /commvaultvtl/bin/vtconfig --reload
Result
These default CHAP credentials will apply to each VTL library and drive created.