[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: authorization

To: Andrew Davis <andrewdavis76@yahoo.com>
Subject: Re: authorization
From: Eliot Lear <lear@cisco.com>
Date: Sun, 16 Oct 2005 10:53:20 +0200
Authentication-results: imail.cisco.com; header.From=lear@cisco.com; dkim=pass ( message from cisco.com verified; );
Cc: netconf@ops.ietf.org
Dkim-signature: a=rsa-sha1; q=dns; l=603; t=1129453440; x=1129885640; c=nowsp; s=nebraska; h=Subject:From:Date:Content-Type:Content-Transfer-Encoding; d=cisco.com; i=lear@cisco.com; z=Subject:Re=3A=20authorization| From:Eliot=20Lear=20<lear@cisco.com>| Date:Sun,=2016=20Oct=202005=2010=3A53=3A20=20+0200| Content-Type:text/plain=3B=20charset=3DISO-8859-1=3B=20format=3Dflowed| Content-Transfer-Encoding:7bit; b=F0GAn+4K5IivZkMWvbm39mI9fU4IEiMDh0zypxcrS26NAHSfiJJXj6vyn//59gFs9wzZ6NBy 3uI1avK5aqZ9NfIexy1hmVWC84sSahyhmrHSItya96f+LBCF6W+kG+tT28XikttjZg3edGDS+8x GTJAmNXIHIgBL1XBJBMhtqFQ=
In-reply-to: <20051013212357.29920.qmail@web35512.mail.mud.yahoo.com>
References: <20051013212357.29920.qmail@web35512.mail.mud.yahoo.com>
User-agent: Thunderbird 1.4.1 (Macintosh/20051006)

In answer to both of your questions, access control is beyond the scopeof netconf at this time. This is not to say that implementations shouldhave no access control. Indeed user mike might have very differentaccess than user fred.


As to below,

Andrew Davis wrote:

Using the ssh mapping, if I want to issue an rcp
request on behalf of user fred and then issue another
request on behalf of user mike, do I have to establish
2 separate ssh connections? Is the answer different if
I use beep? What about soap?

netconf is a session-based protocol, and authentication occurs once persession. Therefore, if you want to issue requests on behalf of anotheruser, using their credentials, you would require another session.


Eliot

--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

References:
- authorization
  - From: Andrew Davis <andrewdavis76@yahoo.com>

Prev by Date: I-D ACTION:draft-ietf-netconf-ssh-05.txt
Next by Date: RE: access control
Previous by thread: authorization
Next by thread: RE: authorization
Index(es):
- Date
- Thread