I've setup a iSCSI target server (using tgt) and inititator (open-iscsi) both running on Ubuntu 22.04 LTS. Mutual CHAP authentication works like a charm, but have hit a snag with the session auth algo.
Default is MD5 (oof) but based on the initiator iscsi.conf file it is possible to add node.session.auth.chap_algs = SHA3-256,SHA256,SHA1,MD5, thereby defining a preferential list of hash algos.
I've edited the NODE conf file on the initiator except using anything other than MD5 the authentication fails. Have tried with the comma separated list, and just SHA1 but get the same result. Has to be MD5.
My guess is that it has something to do with the target server/tgt config, but cannot for the life of me find any info on how to reconfigure the target to accept something other than MD5.
Hoped there might be something in /usr/doc/tgt but no luck.
Anyone have any pointers?
