A Policy-based Network Access Control
draft-ma-opsawg-ucl-acl-03
Document | Type |
Replaced Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Authors | Qiufang Ma , Qin Wu , Mohamed Boucadair , Daniel King | ||
Last updated | 2023-06-07 | ||
Replaced by | draft-ietf-opsawg-ucl-acl | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Yang Validation | 0 errors, 0 warnings | ||
Additional resources |
GitHub Repository
|
||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Replaced by draft-ietf-opsawg-ucl-acl | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document defines a YANG module for policy-based network access control, which provides consistent and efficient enforcement of network access control policies based on group identity. Moreover, this document defines a mechanism to ease the maintenance of the mapping between a user group identifier and a set of IP/MAC addresses to enforce policy-based network access control. Also, the document defines a common schedule YANG module which is designed to be applicable for policy activation based on date and time conditions. In addition, the document defines a RADIUS attribute that is used to communicate the user group identifier as part of identification and authorization information.
Authors
Qiufang Ma
Qin Wu
Mohamed Boucadair
Daniel King
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)