Skip to main content

Network Configuration Protocol Access Control Model

Document Type Replaced Internet-Draft (individual)
Expired & archived
Authors Andy Bierman , Martin Björklund
Last updated 2012-11-05 (Latest revision 2010-07-04)
Replaced by RFC 6536
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-netconf-access-control
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


The standardization of network configuration interfaces for use with the NETCONF protocol requires a structured and secure operating environment, which promotes human usability and multi-vendor interoperability. There is a need for standard mechanisms to restrict NETCONF protocol access for particular users to a pre- configured subset of all available NETCONF operations and content. This document discusses requirements for a suitable access control model, and provides one solution which meets these requirements.


Andy Bierman
Martin Björklund

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)