Oracle ZFS Storage Appliance Security Overview
NFS Authentication and Encryption Options
Active Directory (AD) Domain Mode Authentication
Administrative Operations via the Microsoft Management Console (MMC)
Delay Engine for Timing Attacks
Hypertext Transfer Protocol (HTTP)
Network Data Management Protocol (NDMP)
SSH File Transfer Protocol (SFTP)
ZFSSA remote replication facilitates replication of projects and shares. This service lets you view ZFSSAs that have replicated data to this ZFSSA and configure the ZFSSAs to which this ZFSSA can replicate.
When this service is enabled, the ZFSSA receives replication updates from other ZFSSAs as well as send replication updates for local projects and shares according to their configured actions. When the service is disabled, incoming replication updates fail and no local projects and shares are replicated.
The root password for the remote ZFSSA is required to configure remote replication targets for the ZFSSA. These targets are used to setup a replication peer connection that enables the ZFSSAs to communicate.
During target creation, the root password is used to confirm request authenticity and to produce and exchange security keys that will be used to identify the ZFSSAs in subsequent communications.
The generated keys are stored persistently as part of ZFSSA configuration. The root password is never stored persistently. The root password is never transmitted in the clear. All ZFSSA communications, including this initial identity exchange, are protected with SSL.