Re: [yang-doctors] Yangdoctors last call review of draft-ietf-opsawg-tacacs-yang-03
tom petch <ietfc@btconnect.com> Thu, 07 May 2020 10:37 UTC
Return-Path: <ietfc@btconnect.com>
X-Original-To: yang-doctors@ietfa.amsl.com
Delivered-To: yang-doctors@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BC1A3A0B7C; Thu, 7 May 2020 03:37:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L9pPqrjaaA4x; Thu, 7 May 2020 03:37:42 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80113.outbound.protection.outlook.com [40.107.8.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1F7073A0B7B; Thu, 7 May 2020 03:37:41 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=D376MIE1OruBx5qfH3ccUnpWN1dFwDkV/XuaSqctJu2IMhbc7xeQJRTWl3bsi78lmMWkfEmuUMCbkUt7I/NIW6AlRgnyM0pug1j+GNysvFqBTwbFt8ZdZ8O+hcMwSgi0u9JgMSfNSaf7vLhfcnysKWmE34jREYDYtR9nNl/MzuT6iZXa7CU3P02RHR9ZK3fcA1wwGLCb9HOdhf9fMv4wZMaKT0zNvwgXbRJp/EBwAC6J0/q/8M9hEtzLUw2WPm1UYtI72G7DWMXKT6hNudvhdfGVsyDH9c/SruGDBJlFe4aO73KqGdqJGtvReoxvQFfQ0XBRxfaAkxuyDDPSpJ8jDw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sjs02UqwpfrobCsXX7uXts31mD700YuKtxhEQqNMQb4=; b=jNW6/4bpQtI2Vpgw5cUzh9v+0eD9hdWYUqOnfoshX5e6rw+FBGdA2Nb2out6E0FzGsFAZMODq38e1Zjvhhab451VXN4Z/OMIiUtWfHeVrfijisUXpYIMULFsT8f/wHqp84Tuva8zuNmjGyHWyMNRK9D/fD+Zyjxg0sRmB8i21+uTh60lQV/P3iSUAGT/bwtc5VSG7fMPYWqzMFQMd7FhTdNbJRHPjCZIzHXp0RHFqrZYPZgmbDZfpQVpVRUx0C/5obVBjPa5hohVPaND/dEFIZcH5kS3dagPqiD0By1FH/sLyqcIAC93AiWRd3NNFCrKq8t3nRigI0sQKye6vppvug==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sjs02UqwpfrobCsXX7uXts31mD700YuKtxhEQqNMQb4=; b=Ah3ZFfKrDqxOqV+3IV1aak4+cRXt/Zma5x/Gb5e0tyhPcxyEGtOhkfzLn7lXIWZ2G2L6xjLS13rf9fsMs1XHaxiSWanDIVpaoQpDoSnXjwWkyVb4rKYG0ug2sTtONUldgd9SUT2KIfQlA/bAMLzxB1SbCxoI32V/GF+YYgpTyco=
Received: from DB7PR07MB4522.eurprd07.prod.outlook.com (2603:10a6:5:34::23) by DB7PR07MB6122.eurprd07.prod.outlook.com (2603:10a6:10:85::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2979.18; Thu, 7 May 2020 10:37:39 +0000
Received: from DB7PR07MB4522.eurprd07.prod.outlook.com ([fe80::1980:df3f:5436:3e6d]) by DB7PR07MB4522.eurprd07.prod.outlook.com ([fe80::1980:df3f:5436:3e6d%5]) with mapi id 15.20.2979.025; Thu, 7 May 2020 10:37:39 +0000
From: tom petch <ietfc@btconnect.com>
To: "Wubo (lana)" <lana.wubo@huawei.com>, Ladislav Lhotka <ladislav.lhotka@nic.cz>, "Joe Clarke (jclarke)" <jclarke@cisco.com>
CC: "yang-doctors@ietf.org" <yang-doctors@ietf.org>, "opsawg@ietf.org" <opsawg@ietf.org>, "draft-ietf-opsawg-tacacs-yang.all@ietf.org" <draft-ietf-opsawg-tacacs-yang.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>
Thread-Topic: Yangdoctors last call review of draft-ietf-opsawg-tacacs-yang-03
Thread-Index: AdYkQ64YYQ4Xp5EXQrW6gYuloLJ2uQAFxfMX
Date: Thu, 07 May 2020 10:37:39 +0000
Message-ID: <DB7PR07MB4522D597746CA882144AFF3EA0A50@DB7PR07MB4522.eurprd07.prod.outlook.com>
References: <3f67cb112ccb4c5eb1ef3bc868cb76ec@huawei.com>
In-Reply-To: <3f67cb112ccb4c5eb1ef3bc868cb76ec@huawei.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: huawei.com; dkim=none (message not signed) header.d=none;huawei.com; dmarc=none action=none header.from=btconnect.com;
x-originating-ip: [81.131.229.19]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: a7c019d2-24c9-49b7-29ab-08d7f272aa57
x-ms-traffictypediagnostic: DB7PR07MB6122:
x-microsoft-antispam-prvs: <DB7PR07MB6122899FC1A42D62CF785559A0A50@DB7PR07MB6122.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 03965EFC76
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR07MB4522.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(346002)(376002)(396003)(39860400002)(136003)(366004)(33430700001)(33440700001)(26005)(6506007)(52536014)(66946007)(8936002)(478600001)(66556008)(66476007)(316002)(186003)(64756008)(5660300002)(9686003)(66446008)(8676002)(91956017)(71200400001)(55016002)(4326008)(86362001)(33656002)(83320400001)(83280400001)(83310400001)(54906003)(2906002)(110136005)(76116006)(83300400001)(966005)(83290400001)(7696005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="gb2312"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a7c019d2-24c9-49b7-29ab-08d7f272aa57
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 May 2020 10:37:39.2827 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: bGVAWsV7gbQmI+FlirCh/gywnq1evhN5ed3IhkzcvLNGhcSNNQZHX8RuljmwfpXy+DZF7821Yu+xdQvUCfrYiQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR07MB6122
Archived-At: <https://mailarchive.ietf.org/arch/msg/yang-doctors/laoGu0KKpVMroZugzsQMFzRV84k>
Subject: Re: [yang-doctors] Yangdoctors last call review of draft-ietf-opsawg-tacacs-yang-03
X-BeenThere: yang-doctors@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Email list of the yang-doctors directorate <yang-doctors.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/yang-doctors>, <mailto:yang-doctors-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/yang-doctors/>
List-Post: <mailto:yang-doctors@ietf.org>
List-Help: <mailto:yang-doctors-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/yang-doctors>, <mailto:yang-doctors-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 May 2020 10:37:44 -0000
From: OPSAWG <opsawg-bounces@ietf.org> on behalf of Wubo (lana) <lana.wubo@huawei.com> Sent: 07 May 2020 09:08 Hi Lada, Joe, Thanks for the guidance, please see inline. Thanks, Bo -----邮件原件----- 发件人: Ladislav Lhotka [mailto:ladislav.lhotka@nic.cz] 发送时间: 2020年5月7日 14:38 "Joe Clarke (jclarke)" <jclarke@cisco.com> writes: >> - Is it correct that the server type may be either one of "authentication", "authorization" or "accounting", or all of them? Is it impossible for a server to be authentication & authorization but not accounting? Such a variant cannot be configured. >> [Bo] OK, will correct when the final guidance on this issue is received. > > Lada replied yesterday to say that the bit string is likely preferred similar to access-operations in ietf-netconf-acm. I might personally discourage the use of ‘*’ for this given that there are only three types, but that’s just my individual thought. +1 I think it is better to have all three types explicitly in the value. Perhaps this could also be the default? Lada [Bo] Please see if the definition below is correct: typedef tcsplus-server-type { type bits { bit authentication { description "When set, the server is an authentication server."; } bit authorization { description "When set, the server is an authorization server."; } bit accounting { description "When set, the server is an accounting server."; } bit all { description "When set, the server can be all types of TACACS+ servers."; } } description "server-type can be set to authentication/authorization/accounting or any combination of the three types. When all three types are supported, either "all" or the three bits setting can be used; } <tp> I would drop the all. I know that I suggested it, or an asterisk, but I was thinking that this was a common case. Joe suggests that no accounting is the commoner - I do not have sufficient exposure to know - in which case I would not bother with 'all'. Whether or not to make auth/auth the default I have no particular view on - as I say, I lack the exposure to be confident about that. Having 'all' adds complexity, two ways to something, while making a small saving in message size - on balance, not worth it. Tom Petch > > Joe > -- Ladislav Lhotka Head, CZ.NIC Labs PGP Key ID: 0xB8F92B08A9F76C67 _______________________________________________ OPSAWG mailing list OPSAWG@ietf.org https://www.ietf.org/mailman/listinfo/opsawg
- [yang-doctors] Yangdoctors last call review of dr… Ladislav Lhotka via Datatracker
- Re: [yang-doctors] Yangdoctors last call review o… Joe Clarke (jclarke)
- [yang-doctors] [Ladislav Lhotka] Re: Yangdoctors … Ladislav Lhotka
- Re: [yang-doctors] Yangdoctors last call review o… Wubo (lana)
- Re: [yang-doctors] Yangdoctors last call review o… Joe Clarke (jclarke)
- Re: [yang-doctors] Yangdoctors last call review o… Ladislav Lhotka
- Re: [yang-doctors] Yangdoctors last call review o… Ladislav Lhotka
- Re: [yang-doctors] Yangdoctors last call review o… Wubo (lana)
- Re: [yang-doctors] Yangdoctors last call review o… Wubo (lana)
- Re: [yang-doctors] Yangdoctors last call review o… tom petch
- Re: [yang-doctors] [Last-Call] Yangdoctors last c… Ladislav Lhotka
- Re: [yang-doctors] Yangdoctors last call review o… Joe Clarke (jclarke)
- Re: [yang-doctors] [Last-Call] Yangdoctors last c… john heasley
- Re: [yang-doctors] [Last-Call] Yangdoctors last c… Wubo (lana)
- Re: [yang-doctors] [Last-Call] Yangdoctors last c… john heasley
- Re: [yang-doctors] [Last-Call] Yangdoctors last c… Wubo (lana)