Table of ContentsView in Frames

Cluster peer security using authentication passphrases

When creating a cluster peer relationship, a passphrase is used by the administrators of the two clusters to authenticate the relationship. This ensures that the cluster to which you send data is the cluster to which you intend to send data.

A part of the cluster peer creation process is to use a passphrase to authenticate the cluster peers to each other. The passphrase is used when creating the relationship from the first cluster to the second and, again, when creating the relationship from the second cluster to the first. The passphrase is not exchanged on the network by Data ONTAP, but each cluster in the cluster peer relationship recognizes the passphrase when Data ONTAP creates the cluster peer relationship.

When you create the cluster peer relationship from the first cluster to the second, the first cluster waits for the administrator of the second cluster to create the cluster peer relationship. The administrator of the second cluster must create the cluster peer relationship before the waiting period expires, one hour by default, but can be shortened. If the cluster peer relationship is not created from the second cluster to the first before the waiting period expires, the cluster peer relationship is not created and the administrators must start again.