ONES-GA 1.2.1
Release
  • ONES GA v1.2.1
    • Open Networking Enterprise Suite (ONES)
      • ONES Application
        • ONES Telemetry Collector(s) and Visibility
        • ONES Orchestration
        • ONES Supportability
        • ONES Security
    • What's new?
    • Getting Started
      • Supported Switch Platforms and NOS
      • Scalability
      • Subscription
      • ONES Installation
        • Installation Pre-requisites
        • Download ONES Package
        • Installing ONES Application
        • Installing ONES Agents
          • ONES Telemetry Agent Installation
          • ONES Orchestration Agent Installation
      • Deploy the VM
    • ONES Web GUI Administration
      • Login Page
      • Adding Devices
      • Dashboards
      • Monitor
      • Inventory
      • Configurations
      • User Management
      • Settings
      • ONES Orchestration
        • BGP IP-CLOS
        • BGP IP-CLOS with MCLAG
        • L2 VXLAN EVPN
        • L2 VXLAN EVPN with MCLAG
        • VXLAN EVPN Asymmetric IRB
        • VXLAN EVPN Asymmetric IRB with MCLAG
        • VXLAN L3 EVPN Symmetric IRB
        • VXLAN L3 EVPN Symmetric IRB with MCLAG
    • Common Issues and Troubleshooting Steps
      • ONES Installation
        • Storage issue
      • ONES Uninstallation
        • ONES-Application
        • Telemetry Agent
        • Orchestration Agent
      • Permission Issues
        • Application Installation
      • gNMI Troubleshooting on non-SONiC Switches
    • How to contact Aviz Networks Support?
    • Backup and Recovery
Powered by GitBook
On this page
  • This section describes how ONES authenticates users and secures communication.
  • RBAC: Role-Based Access Control
  • Secure Access to the Application
  • Secure Access to the switch*
  • API Access
Export as PDF
  1. ONES GA v1.2.1
  2. Open Networking Enterprise Suite (ONES)
  3. ONES Application

ONES Security

PreviousONES SupportabilityNextWhat's new?

ONES is a support application for SONiC stack. It is designed for customer's engineering team such as SRE’s, HW and SW engineering teams for their daily network diagnosis and troubleshooting needs. In addition to that ONES exposes the API to integrate with external tools or customer homegrown applications.

This section describes how ONES authenticates users and secures communication.

RBAC: Role-Based Access Control

  • Click to get more details on RBAC

Secure Access to the Application

ONES application provides HTTPs over standard port 443 supporting both self-signed and CA signed certificates.

  • HTTPS Support CA Signed

  • HTTPS Self Signed

Secure Access to the switch*

ONES utilizes gRPC infrastructure to communicate with switch agents. TLS (Transport Layer Security) is the primary security protocol used by gRPC to secure communication between the client and the server. TLS provides authentication, confidentiality, and integrity of data. Authentication is achieved using digital certificates, which verify the identity of the client and the server.

API Access