Go to main content

Managing Serial Networks Using UUCP and PPP in Oracle^® Solaris 11.4

Exit Print View

» ...Documentation Home » Oracle Solaris 11.4 Information Library » Managing Serial Networks Using UUCP and PPP in ... » Setting Up Point-to-Point Protocol Authentication » Configuring CHAP Authentication » Configuring CHAP Authentication on the Dial-In ...

Updated: February 2022

Managing Serial Networks Using UUCP and PPP in Oracle^® Solaris 11.4

Document Information

Using This Documentation

Chapter 1 About Oracle Solaris Point-to-Point Protocol 4.0

Chapter 2 Planning for the Point-to-Point Protocol Link

Chapter 3 Setting Up a Dial-Up Point-to-Point Protocol Link

Chapter 4 Setting Up a Leased-Line Point-to-Point Protocol Link

Chapter 5 Setting Up Point-to-Point Protocol Authentication

Configuring PAP Authentication

Configuring CHAP Authentication

Configuring CHAP Authentication on the Dial-In Server

How to Create a CHAP Credentials Database for Dial-In Servers

Modifying the PPP Configuration Files for CHAP on Dial-In Servers

How to Add CHAP Support to the PPP Configuration Files on a Dial-In Server

Configuring CHAP Authentication for Trusted Callers on Dial-Out Systems

Adding CHAP to the Configuration Files on Dial-Out Systems

How to Add CHAP Support to the PPP Configuration Files on a Dial-Out System

Chapter 6 Setting Up a PPP Over Ethernet Tunnel

Chapter 7 Troubleshooting Common Point-to-Point Protocol Problems

Chapter 8 Oracle Solaris PPP 4.0 Reference

Chapter 9 Migrating From Asynchronous Oracle Solaris PPP to Oracle Solaris PPP 4.0

Chapter 10 About UNIX-to-UNIX Copy Program

Chapter 11 Administering UUCP

Chapter 12 UUCP Files

Language:

Configuring CHAP Authentication on the Dial-In Server

Perform the following tasks when setting up CHAP authentication for dial-In servers:

How to Create a CHAP Credentials Database for Dial-In Servers – Create, or have the callers create, their CHAP secrets. Add the security credentials for all trusted callers to the /etc/ppp/chap-secrets file.
How to Add CHAP Support to the PPP Configuration Files on a Dial-In Server – Add options specific to CHAP to the /etc/ppp/options and /etc/ppp/peers/peer-name files

The first task in setting up CHAP authentication is modifying the /etc/ppp/chap-secrets file. This file contains the CHAP security credentials, including the CHAP secret, that are used to authenticate callers on the link.

Note - UNIX or PAM authentication mechanisms do not work with CHAP. For example, you cannot use the PPP login option as described in How to Create a PAP Credentials Database for a Dial-In Server. If your authentication scenario requires PAM or a style of authentication used in UNIX systems, choose PAP instead.

The following procedure implements CHAP authentication for a dial-in server in a private network. The PPP link is the only connection to the outside world. The only callers who can access the network have been granted permission by managers of the network, possibly including the system administrator.

Copyright © 2002, 2022, Oracle and/or its affiliates. All rights reserved.