Authentication
The SOH API allows authentication by using a user name and password or an X.509 certificate and private key pair.
Basic access authentication (RFC 1945) must be used for user name and password authentication. This password is transmitted to the access server, which in turn sends the password to authenticate on behalf of the user to each slice server. If SSL is used, the plain text password is not exposed over the wire. A user who has an X.509 certificate and matching private key can perform Public Key Infrastructure (PKI) authentication if the certificate is assigned to a user account on the storage network. The System Manager can be used to assign certificates to user accounts. The certificate and private key can then be used to perform SSL client certificate authentication (RFC 2246).