Reply
Highlighted

Grid CRAM authentication

Authority
Posts: 31
2138     0

Hi Team,

 

Establishing GRID between two device Grid Master and Grid Member happens in two phase

Phase 1 : key exchange (udp 2114) 

Phase 2 : VPN tunnel (udp 1194)

 

In first phase Grid Master authenticate member using CRAM.

Is it CRAM mechanism use 'grid name' and 'shared secret' to do authentication?

 

Thanks,

 

Sachin

Highlighted

Re: Grid CRAM authentication

Moderator
Moderator
Posts: 148
2139     0

Hello Sachin,

 

You are correct about Phase 1 & Phase 2.

 

Grid Joining does verify/validate the 'grid name' that you enter.

However, I am not a 100% certain that it uses 'grid name' to do authentication.

Based on what I read, it uses 'challenge_string' and 'shared_secret', where challenge string = current local time + 10 random bytes encoded as Base64.

 

Best Regards,
Bibin Thomas

Showing results for 
Search instead for 
Did you mean: 

Recommended for You

Demo: Infoblox IPAM plug-in integration with OpenStack Newton