From: I-D-Announce <[email protected]> on behalf of
[email protected] <[email protected]>
Sent: 28 December 2021 19:20
<tp>
With one Normative Reference for RADIUS, one Normative Reference for TLS, one
Normative Reference for EAP and two for SSH, I wonder which WG is best equipped
to review this; curdle?
Tom Petch
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : RADIUS Extension for Certificate-based SSH
Authentication
Authors : Devendra Vishwakarma
Prakash Suthar
Vivek Agarwal
Anil Jangam
Filename : draft-vishwakarma-opsawg-ssh-cert-radius-02.txt
Pages : 16
Date : 2021-12-28
Abstract:
A scalable and centralized mechanism is required for a certificate-
based administrative access to multitude of virtualized and physical
network functions. While there are mechanisms that exist today to
provide secure administrative command-line and API-based access,
there are certain management and maintenance overheads as well as
certain scalability challenges related to it. In this draft we
discuss these challenges and propose a standardized, centralized
server-based mechanism to authenticate a user over an SSH session
using its client certificate.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-vishwakarma-opsawg-ssh-cert-radius/
There is also an htmlized version available at:
https://datatracker.ietf.org/doc/html/draft-vishwakarma-opsawg-ssh-cert-radius-02
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-vishwakarma-opsawg-ssh-cert-radius-02
Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
_______________________________________________
I-D-Announce mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
_______________________________________________
OPSAWG mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/opsawg
