[Netconf] Pls check before COB Jan 6th, 2012: draft-ietf-netconf-access-control-07.txt
"Bert Wijnen \(IETF\)" <bertietf@bwijnen.net> Tue, 27 December 2011 16:49 UTC
Return-Path: <bertietf@bwijnen.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA00F21F84F8 for <netconf@ietfa.amsl.com>; Tue, 27 Dec 2011 08:49:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -99.014
X-Spam-Level:
X-Spam-Status: No, score=-99.014 tagged_above=-999 required=5 tests=[BAYES_05=-1.11, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545, STOX_REPLY_TYPE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LcdKUdN6kGak for <netconf@ietfa.amsl.com>; Tue, 27 Dec 2011 08:48:59 -0800 (PST)
Received: from relay54.tele2.vuurwerk.nl (relay54.tele2.vuurwerk.nl [62.250.3.54]) by ietfa.amsl.com (Postfix) with ESMTP id 4ABD921F850E for <netconf@ietf.org>; Tue, 27 Dec 2011 08:48:59 -0800 (PST)
Received: from [87.215.199.34] (helo=BertLaptop) by relay.indetel.net with smtp (Exim 4.69) (envelope-from <bertietf@bwijnen.net>) id 1RfaCr-0008OQ-K1 for netconf@ietf.org; Tue, 27 Dec 2011 17:48:53 +0100
Message-ID: <03E146553DC644748AA096E6839D172B@BertLaptop>
From: "Bert Wijnen (IETF)" <bertietf@bwijnen.net>
To: Netconf <netconf@ietf.org>
Date: Tue, 27 Dec 2011 17:48:52 +0100
Organization: Consultant
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="iso-8859-1"; reply-type="original"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Windows Mail 6.0.6002.18197
X-MimeOLE: Produced By Microsoft MimeOLE V6.0.6002.18463
Subject: [Netconf] Pls check before COB Jan 6th, 2012: draft-ietf-netconf-access-control-07.txt
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Network Configuration WG mailing list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/netconf>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Dec 2011 16:49:00 -0000
Dear WG participants,
Just on Xmas eve, we cleared the IESG comments and DISCUSS
on this document.
To clear the discuss, we had to add a knob in the ietf-netconf-acm
YANG module that allows an administartor to enable/disable
dynamic addtion of external groups:
leaf enable-external-groups {
type boolean;
default true;
description
"Controls whether the server uses the groups reported by the
NETCONF transport layer when it assigns the user to a set of
NACM groups. If this leaf has the value 'false', any group
names reported by the transport layer are ignored by the
server.";
}
That is the only substantial change, and we want to be sure the WG
agrees with that.
Other than that we believe that the changes are only editorial and/or
clarifications. Pls let us know if you agree or disagree.
Bert Wijnen,
document shepherd
----- Original Message -----
From: <internet-drafts@ietf.org>
To: <i-d-announce@ietf.org>
Cc: <netconf@ietf.org>
Sent: Friday, December 23, 2011 1:57 PM
Subject: [Netconf] I-D Action: draft-ietf-netconf-access-control-07.txt
>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories. This draft is a work item of the Network Configuration Working
> Group of the IETF.
>
> Title : Network Configuration Protocol (NETCONF) Access Control
> Model
> Author(s) : Andy Bierman
> Martin Bjorklund
> Filename : draft-ietf-netconf-access-control-07.txt
> Pages : 54
> Date : 2011-12-23
>
> The standardization of network configuration interfaces for use with
> the NETCONF protocol requires a structured and secure operating
> environment that promotes human usability and multi-vendor
> interoperability. There is a need for standard mechanisms to
> restrict NETCONF protocol access for particular users to a pre-
> configured subset of all available NETCONF protocol operations and
> content. This document defines such an access control model.
>
>
> A URL for this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-ietf-netconf-access-control-07.txt
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> This Internet-Draft can be retrieved at:
> ftp://ftp.ietf.org/internet-drafts/draft-ietf-netconf-access-control-07.txt
>
> _______________________________________________
> Netconf mailing list
> Netconf@ietf.org
> https://www.ietf.org/mailman/listinfo/netconf
- [Netconf] Pls check before COB Jan 6th, 2012: dra… Bert Wijnen (IETF)
- [Netconf] Reminder: Pls check before COB Jan 6th,… Bert Wijnen (IETF)