NETCONF access control profile for XACML

Document Type Expired Internet-Draft (individual)
Authors Ludwig Seitz  , Erik Rissanen 
Last updated 2007-10-05 (latest revision 2007-07-08)
Stream (None)
Expired & archived
pdf htmlized bibtex
Additional Resources
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The NETCONF remote network configuration protocol currently lacks an access control model. The need for such a model has been recognised within the NETCONF working group. The eXtended Access Control Markup Language (XACML) is an XML-based access control standard, with widespread acceptance from the industry and good open-source support. This document proposes a profile that defines how to use XACML to provide fine-grain access control for NETCONF commands.


Ludwig Seitz (
Erik Rissanen (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)