6.5
Table Of Contents
- vSphere Command-Line Interface Concepts and Examples
- Contents
- About This Book
- vSphere CLI Command Overviews
- Introduction
- List of Available Host Management Commands
- Targets and Protocols for vCLI Host Management Commands
- Supported Platforms for vCLI Commands
- Commands with an esxcfg Prefix
- ESXCLI Commands Available on Different ESXi Hosts
- Trust Relationship Requirement for ESXCLI Commands
- Using ESXCLI Output
- Connection Options for vCLI Host Management Commands
- Connection Options for DCLI Commands
- vCLI Host Management Commands and Lockdown Mode
- Managing Hosts
- Managing Files
- Managing Storage
- Introduction to Storage
- Examining LUNs
- Detach a Device and Remove a LUN
- Reattach a Device
- Working with Permanent Device Loss
- Managing Paths
- Managing Path Policies
- Scheduling Queues for Virtual Machine I/O
- Managing NFS/NAS Datastores
- Monitor and Manage FibreChannel SAN Storage
- Monitoring and Managing Virtual SAN Storage
- Monitoring vSphere Flash Read Cache
- Monitoring and Managing Virtual Volumes
- Migrating Virtual Machines with svmotion
- Configuring FCoE Adapters
- Scanning Storage Adapters
- Retrieving SMART Information
- Managing iSCSI Storage
- iSCSI Storage Overview
- Protecting an iSCSI SAN
- Command Syntax for esxcli iscsi and vicfg-iscsi
- iSCSI Storage Setup with ESXCLI
- iSCSI Storage Setup with vicfg-iscsi
- Listing and Setting iSCSI Options
- Listing and Setting iSCSI Parameters
- Enabling iSCSI Authentication
- Set Up Ports for iSCSI Multipathing
- Managing iSCSI Sessions
- Managing Third-Party Storage Arrays
- Managing Users
- Managing Virtual Machines
- Managing vSphere Networking
- Introduction to vSphere Networking
- Retrieving Basic Networking Information
- Troubleshoot a Networking Setup
- Setting Up vSphere Networking with vSphere Standard Switches
- Setting Up Virtual Switches and Associating a Switch with a Network Interface
- Retrieving Information About Virtual Switches
- Adding and Deleting Virtual Switches
- Checking, Adding, and Removing Port Groups
- Managing Uplinks and Port Groups
- Setting the Port Group VLAN ID
- Managing Uplink Adapters
- Adding and Modifying VMkernel Network Interfaces
- Managing VMkernel Network Interfaces with ESXCLI
- Add and Configure an IPv4 VMkernel Network Interface with ESXCLI
- Add and Configure an IPv6 VMkernel Network Interface with ESXCLI
- Managing VMkernel Network Interfaces with vicfg-vmknic
- Add and Configure an IPv4 VMkernel Network Interface with vicfg-vmknic
- Add and Configure an IPv6 VMkernel Network Interface with vicfg-vmknic
- Setting Up vSphere Networking with vSphere Distributed Switch
- Managing Standard Networking Services in the vSphere Environment
- Setting the DNS Configuration
- Manage an NTP Server
- Manage the IP Gateway
- Setting Up IPsec
- Manage the ESXi Firewall
- Monitor VXLAN
- Monitoring ESXi Hosts
- Index
Table 5‑1. Supported Levels for CHAP
Level Description Supported
chapProhibited
Host does not use CHAP
authentication. If authentication is
enabled, specify chapProhibited to
disable it.
Software iSCSI
Dependent hardware iSCSI
Independent hardware iSCSI
chapDiscouraged
Host uses a non-CHAP connection,
but allows a CHAP connection as
fallback.
Software iSCSI
Dependent hardware iSCSI
chapPreferred
Host uses CHAP if the CHAP
connection succeeds, but uses non-
CHAP connections as fallback.
Software iSCSI
Dependent hardware iSCSI
Independent hardware iSCSI
chapRequired
Host requires successful CHAP
authentication. The connection fails if
CHAP negotiation fails.
Software iSCSI
Dependent hardware iSCSI
Returning Authentication to Default Inheritance
The values of iSCSI authentication seings associated with a dynamic discovery address or a static
discovery target are inherited from the corresponding seings of the parent. For the dynamic discovery
address, the parent is the adapter. For the static target, the parent is the adapter or discovery address.
n
If you use the vSphere Web Client to modify authentication seings, you must deselect the Inherit from
Parent check box before you can make a change to the discovery address or discovery target.
n
If you use vicfg-iscsi, the value you set overrides the inherited value.
n
If you use esxcli iscsi commands, the value you set overrides the inherited value. You can set CHAP
at the following levels.
n
esxcli iscsi adapter auth chap [get|set]
n
esxcli iscsi adapter discovery sendtarget auth chap [get|set]
n
esxcli iscsi adapter target portal auth chap [get|set]
Inheritance is relevant only if you want to return a dynamic discovery address or a static discovery target to
its inherited value. In that case, use one of the following commands.
n
Dynamic discovery
esxcli iscsi adapter discovery sendtarget auth chap set --inherit
n
Static discovery
esxcli iscsi adapter target portal auth chap set --inherit
N You can set target-level CHAP authentication properties to be inherited from the send target level
and set send target level CHAP authentication properties to be inherited from the adapter level. Reseing
adapter-level properties is not supported.
Command Syntax for esxcli iscsi and vicfg-iscsi
In vSphere 5.0 and later, you can manage iSCSI storage by using either esxcli iscsi commands or vicfg-
iscsi options.
For details, see the vSphere Command-Line Interface Reference. “esxcli iscsi Command Syntax,” on page 74
and “vicfg-iscsi Command Syntax,” on page 75.
Chapter 5 Managing iSCSI Storage
VMware, Inc. 73