Maybe its a good idea to add a way to always authenticate within the same cluster infrastructure.
So adding AUTH_CODE support to metalogger (and multimaster for the pro version.)

I don't understand why the option would be supported only for the chunkserver.

I think setting changes via mfsadmin can already be protected already at the export level.

Something that can be done is to actually set a random code at install time.
Then when other servers try to connect, have an admin have to validate the new server in the cluster.
This allows for a stronger auth like certificate based,
and the user doesn't have to manage the CSR or whatever.

Maybe a two step implementation is a good idea,
like add password based validation first, then certificate based.