Sunday, 23 October 2016

ONTAP 8.3.2 Defaults – CIFS Security

In the 4th of the ONTAP 8.3.2 defaults series, we look at CIFS Security defaults.

All the information presented in the table below can be got from::>


set diag
man cifs security modify


Image: Table of CIFS Security defaults

And in CSV format:


Switch,Priv.,Values,Default,Note
 -vserver,,,,
 -kerberos-clock-skew,,,5,(minutes)
 -kerberos-ticket-age,,,10,(hours)
 -kerberos-renew-age,,,7,(days)
 -kerberos-kdc-timeout,,,3,(seconds)
 -is-signing-required,,true|false,false,
 -is-password-complexity-required,,true|false,true,
 -use-start-tls-for-ad-ldap ,,true|false,false,
 -is-aes-encryption-enabled,,true|false,false,
 -lm-compatibility-level,,lm-ntlm-ntlmv2-krb|ntlm-ntlmv2-krb|ntlmv2-krb|krb,lm-ntlm-ntlmv2-krb,
 -is-smb-encryption-required ,,true|false,false,
 -is-bypass-traverse-checking-enabled ,diag.,true|false,true,



No comments:

Post a Comment