Nacm¶
Leafs
denied_data_writesdenied_notificationsdenied_operationsenable_external_groupsenable_nacmexec_defaultread_defaultwrite_default
Children
-
class
ydk.models.ietf.ietf_netconf_acm.Nacm¶ Bases:
EntityClass Hierarchy:
NacmThis class represents configuration data.
Parameters for NETCONF Access Control Model.
-
enable_nacm¶ Enables or disables all NETCONF access control enforcement. If ‘true’, then enforcement is enabled. If ‘false’, then enforcement is disabled
type: bool
default value: true
-
read_default¶ Controls whether read access is granted if no appropriate rule is found for a particular read request
type:
ActionTypedefault value: permit
-
write_default¶ Controls whether create, update, or delete access is granted if no appropriate rule is found for a particular write request
type:
ActionTypedefault value: deny
-
exec_default¶ Controls whether exec access is granted if no appropriate rule is found for a particular protocol operation request
type:
ActionTypedefault value: permit
-
enable_external_groups¶ Controls whether the server uses the groups reported by the NETCONF transport layer when it assigns the user to a set of NACM groups. If this leaf has the value ‘false’, any group names reported by the transport layer are ignored by the server
type: bool
default value: true
-
denied_operations¶ Number of times since the server last restarted that a protocol operation request was denied
type: int
range: 0..4294967295mandatory: True
config: False
-
denied_data_writes¶ Number of times since the server last restarted that a protocol operation request to alter a configuration datastore was denied
type: int
range: 0..4294967295mandatory: True
config: False
-
denied_notifications¶ Number of times since the server last restarted that a notification was dropped for a subscription because access to the event type was denied
type: int
range: 0..4294967295mandatory: True
config: False
-