Example Environment¶
In these examples, TNSR is configured to allow access via RESTCONF, but the service will be protected in several key ways:
The RESTCONF service is configured for TLS to encrypt the transport
The RESTCONF service is configured to require a client certificate, which is validated against a private Certificate Authority known to TNSR
NACM determines if the certificate common-name (username) is allowed access to view or make changes via RESTCONF
The service will run in the
hostnamespace so it is exposed to the management network only, and not to public networks.
Item |
Value |
|---|---|
TNSR Hostname |
tnsr.example.com |
RESTCONF Username |
tnsr |
NACM Group Name |
admins |
Additional User |
anotheruser |
Host Interface Address |
198.51.100.2 |