[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [NGO] Re: FW: 10/18 agenda item - NETCONF WG Rechartering

To: Sam Hartman <hartmans-ietf at mit.edu>, ngo at ietf.org
Subject: Re: [NGO] Re: FW: 10/18 agenda item - NETCONF WG Rechartering
From: Balazs Lengyel <balazs.lengyel at ericsson.com>
Date: Wed, 24 Oct 2007 09:32:16 +0200
Cc:
In-reply-to: <tsly7dvl4nn.fsf@mit.edu>
List-archive: <http://www1.ietf.org/pipermail/ngo>
List-help: <mailto:ngo-request@ietf.org?subject=help>
List-id: NETCONF Goes On - discussions on future work and extensions to NETCONF <ngo.ietf.org>
List-post: <mailto:ngo@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ngo>, <mailto:ngo-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ngo>, <mailto:ngo-request@ietf.org?subject=unsubscribe>
References: <EDC652A26FB23C4EB6384A4584434A04525CF0@307622ANEX5.global.avaya.com> <53216.137.194.164.217.1192806809.squirrel@www.isima.fr> <EDC652A26FB23C4EB6384A4584434A04525ECD@307622ANEX5.global.avaya.com> <61725.86.72.162.23.1192992355.squirrel@www.isima.fr> <tsly7dvl4nn.fsf@mit.edu>
User-agent: Thunderbird 2.0.0.4 (X11/20070604)

Hello, I always thought one important reason to introduce TLS for Netconf was to support small devices that anyway have a built-in web server management interface. These devices AFAIK usually have an administrator user with a password, but usually do not have any certificates about the management user (client). So I think userId/Password base authentication of the client is a must.

I don really know how many people use certificate based client authentication. in my practice not many.

regards balazs

Sam Hartman wrote:

Hi.
I don't think your text really addresses what I'm talking about.

I want to make sure the working group has had a discussion of how
client to server authentication will be performed using netconf over
TLS and I want to make sure that the participants have considered the
implications when they came to consensus on this approach.

For example if you plan to use an approach that uses client
certificates it is important that WG participants understand this
approach will not support passwords.

_______________________________________________
NGO mailing list
NGO at ietf.org
https://www1.ietf.org/mailman/listinfo/ngo


--
Balazs Lengyel                       Ericsson Hungary Ltd.
TSP System Manager
ECN: 831 7320                        Fax: +36 1 4377792
Tel: +36-1-437-7320     email: Balazs.Lengyel at ericsson.com


_______________________________________________
NGO mailing list
NGO at ietf.org
https://www1.ietf.org/mailman/listinfo/ngo

References:
- [NGO] FW: 10/18 agenda item - NETCONF WG Rechartering
  - From: Romascanu, Dan (Dan)
- [NGO] Re: FW:Â10/18ÂagendaÂitemÂ-ÂNETCONFÂWGÂRechartering
  - From: badra
- [NGO] RE: FW: 10/18 agenda item - NETCONF WG Rechartering
  - From: Romascanu, Dan (Dan)
- [NGO] RE: FW: 10/18 agenda item - NETCONF WG Rechartering
  - From: badra
- [NGO] Re: FW: 10/18 agenda item - NETCONF WG Rechartering
  - From: Sam Hartman

Prev by Date: [NGO] RE: FW: 10/18 agenda item - NETCONF WG Rechartering
Next by Date: [NGO] FW: Internal WG Review: Recharter of Network Configuration WG(netconf)
Previous by thread: [NGO] RE: FW: 10/18 agenda item - NETCONF WG Rechartering
Next by thread: [NGO] RE: FW: I-D ACTION:draft-iijima-netconf-soap-implementation-03.txt
Index(es):
- Date
- Thread