Lines Matching +full:user +full:- +full:defined

47 .Bd -literal -offset indent
50 .No auth-group Ar name No {
51 .Dl chap Ar user Ar secret
55 .No portal-group Ar name No {
57 .\".Dl listen-iser Ar address
58 .Dl discovery-auth-group Ar name
63 .Dl auth-group Ar name
64 .Dl portal-group Ar name
72 .Bl -tag -width indent
73 .It Ic auth-group Ar name
75 .Sy auth-group
77 defining a new auth-group,
91 .It Ic portal-group Ar name
93 .Sy portal-group
95 defining a new portal-group,
112 .It Ic isns-server Ar address
114 .It Ic isns-period Ar seconds
118 .It Ic isns-timeout Ar seconds
122 .Ss auth-group Context
123 .Bl -tag -width indent
124 .It Ic auth-type Ar type
131 .Qq Ar chap-mutual .
134 .Sy auth-group .
135 .It Ic chap Ar user Ar secret
138 .Sy auth-group ,
142 .Sy chap-mutual
144 .It Ic chap-mutual Ar user Ar secret Ar mutualuser Ar mutualsecret
147 .Sy auth-group ,
151 .Sy chap-mutual
153 .It Ic initiator-name Ar initiator-name
155 Only initiators with a name matching one of the defined
157 If not defined, there will be no restrictions based on initiator
159 .It Ic initiator-portal Ar address Ns Op / Ns Ar prefixlen
162 Only initiators with an address matching one of the defined
164 If not defined, there will be no restrictions based on initiator
167 .Ss portal-group Context
168 .Bl -tag -width indent
169 .It Ic discovery-auth-group Ar name
170 Assign a previously defined authentication group to the portal group,
173 .Sy auth-group
177 .Sy auth-group ,
178 .Qq Ar no-authentication ,
181 .It Ic discovery-filter Ar filter
186 .Qq Ar portal-name ,
188 .Qq Ar portal-name-auth .
196 .Sy initiator-portal .
198 .Qq Ar portal-name ,
200 .Sy initiator-portal
202 .Sy initiator-name .
204 .Qq Ar portal-name-auth ,
206 .Sy initiator-portal ,
207 .Sy initiator-name ,
210 or if the CHAP user and secret used during discovery match those
213 .Qq Ar portal-name-auth ,
215 .Sy discovery-auth-group
221 .\".It Ic listen-iser Ar address
226 .Sy portal-group .
230 The CTL-specific port options passed to the kernel.
235 .Sy portal-group
238 .Sy initiator-name
240 .Sy initiator-portal
243 Unique 16-bit tag value of this
244 .Sy portal-group .
248 .Sy portal-group
254 well-defined
268 .Bl -tag -width indent
270 Assign a human-readable description to the target.
272 .It Ic auth-group Ar name
273 Assign a previously defined authentication group to the target.
278 .Sy initiator-name ,
281 .Sy auth-group
285 .Sy auth-group ,
286 .Qq Ar no-authentication ,
291 .Sy portal-group
293 .It Ic auth-type Ar type
300 .Qq Ar chap-mutual .
305 .Sy auth-group ;
308 .It Ic chap Ar user Ar secret
311 .Sy auth-group , chap , No or Sy chap-mutual ;
313 .It Ic chap-mutual Ar user Ar secret Ar mutualuser Ar mutualsecret
316 .Sy auth-group , chap , No or Sy chap-mutual ;
318 .It Ic initiator-name Ar initiator-name
320 Only initiators with a name matching one of the defined
322 If not defined, there will be no restrictions based on initiator
325 .Sy auth-group ;
328 .It Ic initiator-portal Ar address Ns Op / Ns Ar prefixlen
331 Only initiators with an address matching one of the defined
333 If not defined, there will be no restrictions based on initiator
336 .Sy auth-group ;
341 .Sy auth-type ,
343 .Sy chap-mutual ,
344 .Sy initiator-name ,
346 .Sy initiator-portal
348 .Sy auth-group
349 defined separately, useful in the common case of authentication settings
351 .It Ic portal-group Ar name Op Ar ag-name
352 Assign a previously defined portal group to the target.
358 .Sy auth-group
361 .Sy auth-group
367 This is used to export the target through a specific physical - eg Fibre
368 Channel - port, in addition to portal-groups configured for the target.
382 Export previously defined
394 .Bl -tag -width indent
408 .It Ic ctl-lun Ar lun_id
412 .It Ic device-id Ar string
414 .It Ic device-type Ar type
419 The CTL-specific options passed to the kernel.
420 All CTL-specific options are documented in the
442 .Bl -tag -width ".Pa /etc/ctl.conf" -compact
449 .Bd -literal
450 auth-group ag0 {
451 chap-mutual "user" "secret" "mutualuser" "mutualsecret"
452 chap-mutual "user2" "secret2" "mutualuser" "mutualsecret"
453 initiator-portal 192.168.1.1/16
456 auth-group ag1 {
457 auth-type none
458 initiator-name "iqn.2012-06.com.example:initiatorhost1"
459 initiator-name "iqn.2012-06.com.example:initiatorhost2"
460 initiator-portal 192.168.1.1/24
461 initiator-portal [2001:db8::de:ef]
464 portal-group pg0 {
465 discovery-auth-group no-authentication
471 target iqn.2012-06.com.example:target0 {
473 auth-group no-authentication
486 target iqn.2012-06.com.example:target1 {
487 auth-group ag0
488 portal-group pg0
505 .Bd -literal
506 auth-group {
508 chap-mutual = [
510 user = "user"
512 mutual-user = "mutualuser"
513 mutual-secret = "mutualsecret"
516 user = "user2"
518 mutual-user = "mutualuser"
519 mutual-secret = "mutualsecret"
525 auth-type = none
526 initiator-name = [
527 "iqn.2012-06.com.example:initiatorhost1",
528 "iqn.2012-06.com.example:initiatorhost2"
530 initiator-portal = [192.168.1.1/24, "[2001:db8::de:ef]"]
534 portal-group {
536 discovery-auth-group = no-authentication
568 "iqn.2012-06.com.example:target0" {
570 auth-group = no-authentication
576 "iqn.2012-06.com.example:target1" {
577 auth-group = ag0
578 portal-group { name = pg0 }