Go to main content

Managing Serial Networks Using UUCP and PPP in Oracle^® Solaris 11.3

Exit Print View

» ...Documentation Home » Oracle Solaris 11.3 Information Library » Managing Serial Networks Using UUCP and PPP in ... » Setting Up Point-to-Point Protocol Authentication » Configuring CHAP Authentication » How to Create a CHAP Credentials Database ...

Updated: October 2017

Managing Serial Networks Using UUCP and PPP in Oracle^® Solaris 11.3

Document Information

Using This Documentation

Chapter 1 About Solaris Point-to-Point Protocol 4.0

Chapter 2 Planning for the Point-to-Point Protocol Link

Chapter 3 Setting Up a Dial-up Point-to-Point Protocol Link

Chapter 4 Setting Up a Leased-Line Point-to-Point Protocol Link

Chapter 5 Setting Up Point-to-Point Protocol Authentication

Configuring PPP Authentication (Task Map)

Configuring PAP Authentication

Configuring CHAP Authentication

Setting Up CHAP Authentication (Task Maps)

Configuring CHAP Authentication on the Dial-in Server

How to Create a CHAP Credentials Database (Dial-in Server)

Modifying the PPP Configuration Files for CHAP (Dial-in Server)

How to Add CHAP Support to the PPP Configuration Files (Dial-in Server)

Configuring CHAP Authentication for Trusted Callers (Dial-out Machines)

How to Configure CHAP Authentication Credentials for the Trusted Callers

Adding CHAP to the Configuration Files (Dial-out Machine)

How to Add CHAP Support to the PPP Configuration Files (Dial-out Machine)

Chapter 6 Setting Up a PPP Over Ethernet Tunnel

Chapter 7 Troubleshooting Common Point-to-Point Protocol Problems

Chapter 8 Oracle Solaris PPP 4.0 (Reference)

Chapter 9 Migrating From Asynchronous Oracle Solaris PPP to Oracle Solaris PPP 4.0 (Tasks)

Chapter 10 About UNIX-to-UNIX Copy Program

Chapter 11 Administering UUCP

Chapter 12 UUCP Files

Language:

How to Create a CHAP Credentials Database (Dial-in Server)

Assemble a list that contains the user names of all trusted callers.
Trusted callers include all people who have been granted permission to call the private network.

Assign each user a CHAP secret.
Note - Be sure to choose a good CHAP secret that is not easily guessed. No other restrictions are placed on the CHAP secret's contents.
The method for assigning CHAP secrets depends on your site's security policy. Either you have the responsibility for creating the secrets, or the callers must create their own secrets. If you are not responsible for CHAP secret assignment, be sure to get the CHAP secrets that were created by, or for, each trusted caller.
Become an administrator on the dial-in server.
For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.3.

Modify the /etc/ppp/chap-secrets file.
This release includes an /etc/ppp/chap-secrets file that contains helpful comments but no options. You can add the following options for the server CallServe at the end of the existing /etc/ppp/chap-secrets file.
```
account1  CallServe   key123   *
account2  CallServe   key456   *
```
key123 is the CHAP secret for trusted caller account1.
key456 is the CHAP secret for trusted caller account2.

See Also

The following list provides references to related information.

Copyright © 2002, 2017, Oracle and/or its affiliates. All rights reserved.