You have a 4-node cluster with a NetApp AFF A400 HA pair and a NetApp FAS8700 HA pair running NetApp ONTAP 9.8 software. You are required to set up 2-factor authentication for the ONTAP CLI.
Which two authentication methods are required in this scenario? (Choose two.)
Two-factor authentication (2FA) for ONTAP CLI requires users to provide two pieces of evidence to verify their identity. In this scenario, the appropriate methods are public key and Security Assertion Markup Language (SAML). Public key authentication uses a pair of cryptographic keys (one public and one private) to validate the user's identity, while SAML leverages a web-based protocol to authenticate users via a secure identity provider. Both methods ensure strong security, aligning with the requirements of 2FA. Password and IP security alone do not fulfill the requirements for 2FA, as they only provide one layer of authentication each.
B and C pubilic key-password/nsswitch
B and D wo-factor authentication (2FA) is a security mechanism that requires users to provide two pieces of evidence to prove their identity before accessing a system. ONTAP supports two methods of 2FA: public key and SAML. Public key authentication uses a pair of cryptographic keys (one public and one private) to verify the user’s identity. SAML authentication uses a web-based protocol that allows users to log in to an application by using a secure identity provider (IdP). Both methods are required to set up 2FA for the ONTAP CLI. IPsec and password are not2FA methods, as they only provide one factor of authentication. References :- Set up multifactor authentication, TR-4647: Multifactor Authentication in ONTAP