跳转到主内容

在连接到SolidFire阵列时、三端存储如何处理CHAP密钥

Views:
Visibility:
Public
Votes:
0
Category:
astra_trident
Specialty:
solidfire
Last Updated:

适用场景

三叉

问题解答

在为 SolidFire配置CHAP以使其向SolidFire阵列进行身份验证时、CHAP密钥来自CHAP帐户。  创建帐户时会自动定义CHAP。属于该帐户的所有卷都使用在该帐户中配置的密码。如果此卷不在任何卷访问组 (VAG)中、则会 验证CHAP密钥

分配了Pod的工作节点上、通过CHAP信息设置iSCSI静态发现条目。然后、完成iSCSI登录并挂载卷、以便Pod可以访问永久性卷

需要访问卷的容器不会直接挂载SolidFire卷、主机客户端会 使用标准iSCSI命令挂载SolidFire卷

  • SolidFire帐户名称为租户名称
  • 创建帐户时会自动生成CHAP密钥
  • 通过TRIdent创建的卷属于此帐户
  • 在创建三元数据卷时、三元数据通过Element API调用从SolidFire集群获取CHAP密码
    • 通过  使用 后端文件中设置的凭据来运行SolidFire Element API (例如GetAccountByName)来获取帐户信息

 

创建帐户示例:

在连接到SolidFire阵列时、三进位处理CHAP密钥

帐户详细信息示例:

在连接到SolidFire阵列时、三进位处理CHAP密钥

 

创建后端文件时,请将 UseCHAP设置 为true

后端文件示例:

{ "version": 1, "storageDriverName": "solidfire-san", "Endpoint": "https://<user>:<password>@<mvip>/json-rpc/8.0", "SVIP": "<svip>:3260", "TenantName": "<tenant>", "labels": {"k8scluster": "dev1", "backend": "dev1-element-cluster"}, "UseCHAP": true, "Types": [{"Type": "Bronze", "Qos": {"minIOPS": 1000, "maxIOPS": 2000, "burstIOPS": 4000}}, {"Type": "Silver", "Qos": {"minIOPS": 4000, "maxIOPS": 6000, "burstIOPS": 8000}}, {"Type": "Gold", "Qos": {"minIOPS": 6000, "maxIOPS": 8000, "burstIOPS": 10000}}] }

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.