Network Configuration Protocol (NETCONF) Access Control Model

Document Type Replaced Internet-Draft (individual)
Authors Andy Bierman  , Martin Björklund 
Last updated 2016-11-29
Replaced by RFC 8341
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Yang Validation 0 errors, 0 warnings.
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-netconf-rfc6536bis
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The standardization of network configuration interfaces for use with the Network Configuration Protocol (NETCONF) or RESTCONF protocol requires a structured and secure operating environment that promotes human usability and multi-vendor interoperability. There is a need for standard mechanisms to restrict NETCONF or RESTCONF protocol access for particular users to a pre-configured subset of all available NETCONF or RESTCONF protocol operations and content. This document defines such an access control model. This document obsoletes RFC 6536.


Andy Bierman (
Martin Björklund (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)