Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
472
Views
0
Helpful
2
Replies
pradc
Cisco Employee
Cisco Employee
‎02-04-2020 10:21 AM
‎02-04-2020 10:21 AM

Do we have option to disable authentication for jsonRPC only

Hi Experts,

 

We are planning to use NGINX and our own user management service but we want to use jsonRPC as an internal service.

Do we have any option to disable authentication for jsonRPC only?

Can we use /ncs-config/aaa/external-validation for jsonRPC?

 

Thanks,

Pradeep

 

0 Helpful
1 ACCEPTED SOLUTION

Accepted Solutions
perander
Cisco Employee
Cisco Employee
‎03-03-2020 04:57 AM
‎03-03-2020 04:57 AM

The closest disabling of authentication for JSON-RPC is to enable

/ncs-config/aaa/external-authentication and make it authenticate every request.

This doesn't fully disable JSON-RPC authentication though, because the

session cookie is still needed for all methods; i.e. in order to do anything a

a login is necessary. This login could have bogus input though, since the external

auth program would allow every request.

 

The external token authentication, i.e. /ncs-config/aaa/external-validation and the

X-Auth-Token header, doesn't work with JSON-RPC at all.

View solution in original post

0 Helpful
2 REPLIES 2
perander
Cisco Employee
Cisco Employee
‎03-03-2020 04:57 AM
‎03-03-2020 04:57 AM

The closest disabling of authentication for JSON-RPC is to enable

/ncs-config/aaa/external-authentication and make it authenticate every request.

This doesn't fully disable JSON-RPC authentication though, because the

session cookie is still needed for all methods; i.e. in order to do anything a

a login is necessary. This login could have bogus input though, since the external

auth program would allow every request.

 

The external token authentication, i.e. /ncs-config/aaa/external-validation and the

X-Auth-Token header, doesn't work with JSON-RPC at all.

View solution in original post

0 Helpful
perander
Cisco Employee
Cisco Employee
In response to perander
‎03-03-2020 05:08 AM
‎03-03-2020 05:08 AM

To clarify, this is how external authentication works. It is called when the json-rpc login method is invoked.
0 Helpful
Latest Contents
Securing your Secrets with the CLI NEDs
Created by vleijon on 09-24-2021 10:33 AM
0
10
0
10
It is best practice to avoid storing your secrets (e.g., passwords and shared keys) in plain text, either on NSO or on the device. In NSO, we support multiple encrypted data types that are encrypted using a local key. Similarly, many devices such as Cisco... view more
Cisco Developer Days is just around the corner!
Created by Nicklas Wagerth on 09-09-2021 02:29 PM
0
0
0
0
Cisco Developer Days, September 14-15, 2021 On Tuesday next week, we will open the doors to the 11th Cisco Developer Days! If you have not registered for the free, virtual event, do it now!   What can you expect? We have a packed 2-day agen... view more
Profiling and Monitoring System Performance
Created by KJ Rossavik on 08-20-2021 06:45 AM
1
5
1
5
In the blog post series called "Unlocking Performance in your NSO System" we talked about the need to measure performance and to profile the performance in order to identify bottlenecks. We didn't go into any details about how to do this. Last year at the... view more
Developer Days Update!
Created by Nicklas Wagerth on 08-11-2021 04:17 AM
0
0
0
0
Finally, as you may have seen in the News & Announcement, we have opened the landing page for the next Developer Days event in September! The September 14/15 event is the first in a series of three virtual events in the three regions (EMEAR/US/Asia Pa... view more
Developer Days Call for Speaker is now open!
Created by Nicklas Wagerth on 04-30-2021 12:08 AM
0
0
0
0
All, We are excited to announce that our call for speakers for our upcoming Developer Days events is open! Automation is a journey in itself and no two journeys are alike. Planning and preparation are a must for any major project. Having an open mind to u... view more
Ask a Question
Create
+ Discussion
+ Blog
+ Document
+ Event
+ Video
+ Project Story
Find more resources
Blogs
Documents
Events
Videos
Project Gallery
New Community Member Guide
Recognize Your Peers
Spotlight Award Nomination