YumaPro SDK 17.10-6 introduces support for NETCONF and Call Home over TLS.


In order to use TLS you must configure a cert-usermap consisting of <user>@<fingerprint>.


If there is no username mapping specified by the cert-usermap parameter then the cert-default-user parameter can be used to fill in the <user> field for a NETCONF over TLS session. This parameter is non-standard and should only be used for debugging.

This parameter is not available unless image is built with DEBUG=1 parameter. There is no default value for cert-default-user.


The cert-default-user parameter can be set via the command line when booting netconfd-pro:


user@system> netconfd-pro --cert-default-user=john


or can be configured in netconfd-pro's configuration file, located by default at /etc/yumapro/netconfd-pro.conf:


#### leaf cert-default-user
# The username to use if no username mapping is found
# for a NETCONF over TLS session. This parameter is
# non-standard and should only be used for debugging.
# This parameter is not available unless image is built
# with DEBUG=1 parameter.
#
# no default for cert-default-user

cert-default-user john