Manualshelf

Cisco Nexus 5000 Series Switch Fabric Manager Software Configuration Guide, NX-OS 4.0 (OL-16598-01, June 2008)

ManualsBrandsHP ManualsStorageCisco MDS 8/24c Fabric Switch for HP BladeSystem c-Class
301302303304305306307308309310
Send comments to nx5000-docfeedback@cisco.com
23-2
Nexus 5000 Series Switch Fabric Manager Software Configuration Guide
OL-16598-01
Chapter 23 Configuring FC-SP and DHCHAP
DHCHAP
Nexus 5000 Series switches support authentication features to address physical security (see
Figure 23-1).
Figure 23-1 Switch and Host Authentication
DHCHAP
DHCHAP is an authentication protocol that authenticates the devices connecting to a switch. Fibre
Channel authentication allows only trusted devices to be added to a fabric, which prevents unauthorized
devices from accessing the switch.
Note The terms FC-SP and DHCHAP are used interchangeably in this chapter.
DHCHAP is a mandatory password-based, key-exchange authentication protocol that supports both
switch-to-switch and host-to-switch authentication. DHCHAP negotiates hash algorithms and DH
groups before performing authentication. It supports MD5 and SHA-1 algorithm-based authentication.
Storage
Subsytems
Unauthorized
hosts and switches
FC-SP
(DH-CHAP)
FC-SP
(DH-CHAP)
Trusted hosts
RADIUS server
105209