Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsComputer equipment8/40
11121314151617181920
BCSM IN A NUTSHELL 2008
© 2008 Brocade Communications Systems, Incorporated.
Page 10 of 44
DH-CHAP
Fabric OS v5.3.0 uses DH-CHAP and FCAP protocols for authentication
Protocols use shared secrets and digital certificates to authenticate
By default the switch attempts FCAP authentication first and DH-CHAP second
The switch may be configured to negotiate FCAP, DH-CHAP or both
The AUTH policy supports two types of authentication policies
E_Port authentication (used for switch-switch)
Device authentication (used for device-switch)
EFCM STANDARD - AUTHENTICATION AND ENCRYPTION
A SAN manager can choose from two methods for authentication
A SAN management application
LDAP
Client-to-server authentication is done via Triple DES encryption, not MD5. This has no impact on SSL.
If SSL is turned on, then the user password is sent from the client to the server in Triple DES
encryption under the SSL socket
If SSL is turned off, then the password is sent in Triple DES encryption, but not under SSL socket
The user authentication is never done with passwords sent in clear text across the network.