netconfcentral logo

openconfig-system

HTML

openconfig-system@2020-03-25



  module openconfig-system {

    yang-version 1;

    namespace
      "http://openconfig.net/yang/system";

    prefix oc-sys;

    import openconfig-inet-types {
      prefix oc-inet;
    }
    import openconfig-yang-types {
      prefix oc-yang;
    }
    import openconfig-types {
      prefix oc-types;
    }
    import openconfig-extensions {
      prefix oc-ext;
    }
    import openconfig-aaa {
      prefix oc-aaa;
    }
    import openconfig-system-logging {
      prefix oc-log;
    }
    import openconfig-system-management {
      prefix oc-sys-mgmt;
    }
    import openconfig-system-terminal {
      prefix oc-sys-term;
    }
    import openconfig-procmon {
      prefix oc-proc;
    }
    import openconfig-alarms {
      prefix oc-alarms;
    }
    import openconfig-messages {
      prefix oc-messages;
    }
    import openconfig-license {
      prefix oc-license;
    }

    organization "OpenConfig working group";

    contact
      "OpenConfig working group
    netopenconfig@googlegroups.com";

    description
      "Model for managing system-wide services and functions on
    network devices.

    Portions of this code were derived from IETF RFC 7317.
    Please reproduce this note if possible.

    IETF code is subject to the following copyright and license:
    Copyright (c) IETF Trust and the persons identified as authors of
    the code.
    All rights reserved.

    Redistribution and use in source and binary forms, with or without
    modification, is permitted pursuant to, and subject to the license
    terms contained in, the Simplified BSD License set forth in
    Section 4.c of the IETF Trust's Legal Provisions Relating
    to IETF Documents (http://trustee.ietf.org/license-info).";

    revision "2020-03-25" {
      description
        "Fix typo in description statement for ipv4-address
      list.";
      reference
        "0.9.1";

    }

    revision "2020-01-07" {
      description
        "Add import of license management model.";
      reference
        "0.9.0";

    }

    revision "2019-03-15" {
      description
        "Update boot time to be nanoseconds since epoch.";
      reference
        "0.8.0";

    }

    revision "2019-01-29" {
      description
        "Add messages module to the system model";
      reference
        "0.7.0";

    }

    revision "2018-11-21" {
      description
        "Add OpenConfig module metadata extensions.";
      reference
        "0.6.1";

    }

    revision "2018-07-17" {
      description "Add gRPC server data";
      reference
        "0.6.0";

    }

    revision "2018-01-21" {
      description "Add cpu utilization data";
      reference
        "0.5.0";

    }

    revision "2017-12-15" {
      description
        "Add alarms to the system model";
      reference
        "0.4.0";

    }

    revision "2017-09-18" {
      description
        "Updated to use OpenConfig types modules";
      reference
        "0.3.0";

    }

    revision "2017-07-06" {
      description
        "Move to oc-inet types, add IETF attribution, add RADIUS
      counters, changed password leaf names to indicate hashed";
      reference
        "0.2.0";

    }

    revision "2017-01-29" {
      description "Initial public release";
      reference
        "0.1.0";

    }

    oc-ext:openconfig-version "0.9.1";
    oc-ext:regexp-posix;
    oc-ext:catalog-organization "openconfig";
    oc-ext:origin "openconfig";

    identity NTP_AUTH_TYPE {
      base 
      description
        "Base identity for encryption schemes supported for NTP
      authentication keys";
    }

    identity NTP_AUTH_MD5 {
      base NTP_AUTH_TYPE;
      description "MD5 encryption method";
    }

    typedef timezone-name-type {
      type string;
      description
        "A time zone name as used by the Time Zone Database,
       sometimes referred to as the 'Olson Database'.

       The exact set of valid values is an implementation-specific
       matter.  Client discovery of the exact set of time zone names
       for a particular server is out of scope.";
      reference
        "BCP 175: Procedures for Maintaining the Time Zone Database";

    }

    grouping system-clock-config {
      description
        "Configuration data for system-wide clock configuration";
      leaf timezone-name {
        type timezone-name-type;
        description
          "The TZ database name to use for the system, such
         as 'Europe/Stockholm'.";
        reference
          "IANA Time Zone Database
          http://www.iana.org/time-zones";

      }
    }  // grouping system-clock-config

    grouping system-clock-state {
      description
        "Operational state data for system-wide clock configuration";
    }  // grouping system-clock-state

    grouping system-clock-top {
      description
        "Top-level grouping for system-wide clock configuration";
      container clock {
        description
          "Top-level container for clock configuration data";
        container config {
          description
            "Configuration data for system clock";
          uses system-clock-config;
        }  // container config

        container state {
          config false;
          description
            "Operational state data for system clock";
          uses system-clock-config;

          uses system-clock-state;
        }  // container state
      }  // container clock
    }  // grouping system-clock-top

    grouping system-global-config {
      description
        "system-wide configuration parameters";
      leaf hostname {
        type oc-inet:domain-name;
        description
          "The hostname of the device -- should be a single domain
        label, without the domain.";
      }

      leaf domain-name {
        type oc-inet:domain-name;
        description
          "Specifies the domain name used to form fully qualified name
        for unqualified hostnames.";
      }

      leaf login-banner {
        type string;
        description
          "The console login message displayed before the login prompt,
        i.e., before a user logs into the system.";
      }

      leaf motd-banner {
        type string;
        description
          "The console message displayed after a user logs into the
        system.  They system may append additional standard
        information such as the current system date and time, uptime,
        last login timestamp, etc.";
      }
    }  // grouping system-global-config

    grouping system-global-state {
      description
        "Global operational state data for the system";
      leaf current-datetime {
        type oc-yang:date-and-time;
        description
          "The current system date and time.";
      }

      leaf boot-time {
        type oc-types:timeticks64;
        units "nanoseconds";
        description
          "This timestamp indicates the time that the system was last
          restarted.  The value is the timestamp in nanoseconds relative
          to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).";
      }
    }  // grouping system-global-state

    grouping system-dns-config {
      description
        "DNS / resolver related configuration data";
      leaf-list search {
        type oc-inet:domain-name;
        ordered-by user;
        description
          "An ordered list of domains to search when resolving
        a host name.";
      }
    }  // grouping system-dns-config

    grouping system-dns-state {
      description
        "Operational state data for system DNS resolver";
    }  // grouping system-dns-state

    grouping system-dns-servers-config {
      description
        "Configuration data for DNS resolvers";
      leaf address {
        type oc-inet:ip-address;
        description
          "The address of the DNS server, can be either IPv4
        or IPv6.";
      }

      leaf port {
        type oc-inet:port-number;
        default '53';
        description
          "The port number of the DNS server.";
      }
    }  // grouping system-dns-servers-config

    grouping system-dns-static-config {
      description
        "Configuration data for static host entries";
      leaf hostname {
        type string;
        description
          "Hostname for the static DNS entry";
      }

      leaf-list alias {
        type string;
        description
          "Additional aliases for the hostname";
      }

      leaf-list ipv4-address {
        type oc-inet:ipv4-address;
        description
          "List of IPv4 addresses for the host entry";
      }

      leaf-list ipv6-address {
        type oc-inet:ipv6-address;
        description
          "List of IPv6 addresses for the host entry";
      }
    }  // grouping system-dns-static-config

    grouping system-dns-static-state {
      description
        "Operational state data for static host entries";
    }  // grouping system-dns-static-state

    grouping system-dns-static-top {
      description
        "Top-level grouping for static DNS host entries";
      container host-entries {
        description
          "Enclosing container for list of static host entries";
        list host-entry {
          key "hostname";
          description
            "List of static host entries";
          leaf hostname {
            type leafref {
              path "../config/hostname";
            }
            description
              "Reference to the hostname list key";
          }

          container config {
            description
              "Configuration data for static host entries";
            uses system-dns-static-config;
          }  // container config

          container state {
            config false;
            description
              "Operational state data for static host entries";
            uses system-dns-static-config;

            uses system-dns-static-state;
          }  // container state
        }  // list host-entry
      }  // container host-entries
    }  // grouping system-dns-static-top

    grouping system-dns-servers-state {
      description
        "Operational state data for DNS resolvers";
    }  // grouping system-dns-servers-state

    grouping system-dns-servers-top {
      description
        "Top-level grouping for the list of DNS resolvers.";
      container servers {
        description
          "Enclosing container for DNS resolver list";
        list server {
          key "address";
          ordered-by user;
          description
            "List of the DNS servers that the resolver should query.

           When the resolver is invoked by a calling application, it
           sends the query to the first name server in this list.  If
           no response has been received within 'timeout' seconds,
           the resolver continues with the next server in the list.
           If no response is received from any server, the resolver
           continues with the first server again.  When the resolver
           has traversed the list 'attempts' times without receiving
           any response, it gives up and returns an error to the
           calling application.

           Implementations MAY limit the number of entries in this
           list.";
          leaf address {
            type leafref {
              path "../config/address";
            }
            description
              "References the configured address of the DNS server";
          }

          container config {
            description
              "Configuration data for each DNS resolver";
            uses system-dns-servers-config;
          }  // container config

          container state {
            config false;
            description
              "Operational state data for each DNS resolver";
            uses system-dns-servers-config;

            uses system-dns-servers-state;
          }  // container state
        }  // list server
      }  // container servers
    }  // grouping system-dns-servers-top

    grouping system-dns-top {
      description
        "Top-level grouping for DNS / resolver config and operational
      state data";
      container dns {
        description
          "Enclosing container for DNS resolver data";
        container config {
          description
            "Configuration data for the DNS resolver";
          uses system-dns-config;
        }  // container config

        container state {
          config false;
          description
            "Operational state data for the DNS resolver";
          uses system-dns-config;

          uses system-dns-state;
        }  // container state

        uses system-dns-servers-top;

        uses system-dns-static-top;
      }  // container dns
    }  // grouping system-dns-top

    grouping system-ntp-server-config {
      description
        "Configuration data for NTP servers";
      leaf address {
        type oc-inet:host;
        description
          "The address or hostname of the NTP server.";
      }

      leaf port {
        type oc-inet:port-number;
        default '123';
        description
          "The port number of the NTP server.";
      }

      leaf version {
        type uint8 {
          range "1..4";
        }
        default '4';
        description
          "Version number to put in outgoing NTP packets";
      }

      leaf association-type {
        type enumeration {
          enum "SERVER" {
            value 0;
            description
              "Use client association mode.  This device
             will not provide synchronization to the
             configured NTP server.";
          }
          enum "PEER" {
            value 1;
            description
              "Use symmetric active association mode.
             This device may provide synchronization
             to the configured NTP server.";
          }
          enum "POOL" {
            value 2;
            description
              "Use client association mode with one or
             more of the NTP servers found by DNS
             resolution of the domain name given by
             the 'address' leaf.  This device will not
             provide synchronization to the servers.";
          }
        }
        default 'SERVER';
        description
          "The desired association type for this NTP server.";
      }

      leaf iburst {
        type boolean;
        default 'false';
        description
          "Indicates whether this server should enable burst
        synchronization or not.";
      }

      leaf prefer {
        type boolean;
        default 'false';
        description
          "Indicates whether this server should be preferred
        or not.";
      }
    }  // grouping system-ntp-server-config

    grouping system-ntp-server-state {
      description
        "Operational state data for NTP servers";
      leaf stratum {
        type uint8;
        description
          "Indicates the level of the server in the NTP hierarchy. As
        stratum number increases, the accuracy is degraded.  Primary
        servers are stratum while a maximum value of 16 indicates
        unsynchronized.  The values have the following specific
        semantics:

        | 0      | unspecified or invalid
        | 1      | primary server (e.g., equipped with a GPS receiver)
        | 2-15   | secondary server (via NTP)
        | 16     | unsynchronized
        | 17-255 | reserved";
        reference
          "RFC 5905 - Network Time Protocol Version 4: Protocol and
          Algorithms Specification";

      }

      leaf root-delay {
        type uint32;
        units "milliseconds";
        description
          "The round-trip delay to the server, in milliseconds.";
        reference
          "RFC 5905 - Network Time Protocol Version 4: Protocol and
          Algorithms Specification";

      }

      leaf root-dispersion {
        type uint64;
        units "milliseconds";
        description
          "Dispersion (epsilon) represents the maximum error inherent
        in the measurement";
        reference
          "RFC 5905 - Network Time Protocol Version 4: Protocol and
          Algorithms Specification";

      }

      leaf offset {
        type uint64;
        units "milliseconds";
        description
          "Estimate of the current time offset from the peer.  This is
        the time difference between the local and reference clock.";
      }

      leaf poll-interval {
        type uint32;
        units "seconds";
        description
          "Polling interval of the peer";
      }
    }  // grouping system-ntp-server-state

    grouping system-ntp-server-top {
      description
        "Top-level grouping for the list of NTP servers";
      container servers {
        description
          "Enclosing container for the list of NTP servers";
        list server {
          key "address";
          description
            "List of NTP servers to use for system clock
          synchronization.  If '/system/ntp/enabled'
          is 'true', then the system will attempt to
          contact and utilize the specified NTP servers.";
          leaf address {
            type leafref {
              path "../config/address";
            }
            description
              "References the configured address or hostname of the
            NTP server.";
          }

          container config {
            description
              "Configuration data for an NTP server.";
            uses system-ntp-server-config;
          }  // container config

          container state {
            config false;
            description
              "Operational state data for an NTP server.";
            uses system-ntp-server-config;

            uses system-ntp-server-state;
          }  // container state
        }  // list server
      }  // container servers
    }  // grouping system-ntp-server-top

    grouping system-ntp-auth-keys-config {
      description "Configuration data ";
      leaf key-id {
        type uint16;
        description
          "Integer identifier used by the client and server to
        designate a secret key.  The client and server must use
        the same key id.";
      }

      leaf key-type {
        type identityref {
          base NTP_AUTH_TYPE;
        }
        description
          "Encryption type used for the NTP authentication key";
      }

      leaf key-value {
        type string;
        description
          "NTP authentication key value";
      }
    }  // grouping system-ntp-auth-keys-config

    grouping system-ntp-auth-keys-state {
      description
        "Operational state data for NTP auth key data";
    }  // grouping system-ntp-auth-keys-state

    grouping system-ntp-auth-keys-top {
      description
        "Top-level grouping for NTP auth key data";
      container ntp-keys {
        description
          "Enclosing container for list of NTP authentication keys";
        list ntp-key {
          key "key-id";
          description
            "List of NTP authentication keys";
          leaf key-id {
            type leafref {
              path "../config/key-id";
            }
            description
              "Reference to auth key-id list key";
          }

          container config {
            description
              "Configuration data for NTP auth keys";
            uses system-ntp-auth-keys-config;
          }  // container config

          container state {
            config false;
            description
              "Operational state data for NTP auth keys";
            uses system-ntp-auth-keys-config;

            uses system-ntp-auth-keys-state;
          }  // container state
        }  // list ntp-key
      }  // container ntp-keys
    }  // grouping system-ntp-auth-keys-top

    grouping system-ntp-config {
      description
        "Configuration data for system-wide NTP operation.";
      leaf enabled {
        type boolean;
        default 'false';
        description
          "Enables the NTP protocol and indicates that the system should
        attempt to synchronize the system clock with an NTP server
        from the servers defined in the 'ntp/server' list.";
      }

      leaf ntp-source-address {
        type oc-inet:ip-address;
        description
          "Source address to use on outgoing NTP packets";
      }

      leaf enable-ntp-auth {
        type boolean;
        default 'false';
        description
          "Enable or disable NTP authentication -- when enabled, the
        system will only use packets containing a trusted
        authentication key to synchronize the time.";
      }
    }  // grouping system-ntp-config

    grouping system-ntp-state {
      description
        "Operational state data for system-wide NTP operation.";
      leaf auth-mismatch {
        type oc-yang:counter64;
        description
          "Count of the number of NTP packets received that were not
        processed due to authentication mismatch.";
      }
    }  // grouping system-ntp-state

    grouping system-ntp-top {
      description
        "Top-level grouping for configuration and state data for NTP";
      container ntp {
        description
          "Top-level container for NTP configuration and state";
        container config {
          description
            "Configuration data for NTP client.";
          uses system-ntp-config;
        }  // container config

        container state {
          config false;
          description
            "Operational state data for NTP services.";
          uses system-ntp-config;

          uses system-ntp-state;
        }  // container state

        uses system-ntp-auth-keys-top;

        uses system-ntp-server-top;
      }  // container ntp
    }  // grouping system-ntp-top

    grouping system-memory-config {
      description
        "Configuration data for system memory";
    }  // grouping system-memory-config

    grouping system-memory-state {
      description
        "Operational state data for system memory";
      leaf physical {
        type uint64;
        units "bytes";
        description
          "Reports the total physical memory available on the
        system.";
      }

      leaf reserved {
        type uint64;
        units "bytes";
        description
          "Memory reserved for system use";
      }
    }  // grouping system-memory-state

    grouping system-memory-top {
      description
        "Top-level grouping for system memory data definitions";
      container memory {
        description
          "Top-level container for system memory data";
        container config {
          description
            "Configuration data for system memory";
          uses system-memory-config;
        }  // container config

        container state {
          config false;
          description
            "Operational state data for system memory";
          uses system-memory-config;

          uses system-memory-state;
        }  // container state
      }  // container memory
    }  // grouping system-memory-top

    grouping system-cpu-state {
      description
        "Operational state data for the system CPU(s)";
      leaf index {
        type union {
          type enumeration {
            enum "ALL" {
              value 0;
              description
                "Index value indicating all CPUs in the system";
            }
          }
          type uint32;
        }
        description
          "The CPU index for each processor core on the system.  On a
        single-core system, the index should be zero.  The ALL
        index signifies an aggregation of the CPU utilization
        statistics over all cores in the system.";
      }

      container total {
        description "Total CPU utilization.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container total

      container user {
        description
          "Percentage of CPU time spent running in user space.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container user

      container kernel {
        description
          "Percentage of CPU time spent running in kernel space.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container kernel

      container nice {
        description
          "Percentage of CPU time spent running low-priority (niced)
        user processes.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container nice

      container idle {
        description
          "Percentage of CPU time spent idle.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container idle

      container wait {
        description
          "Percentage of CPU time spent waiting for I/O.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container wait

      container hardware-interrupt {
        description
          "Percentage of CPU time spent servicing hardware interrupts.";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container hardware-interrupt

      container software-interrupt {
        description
          "Percentage of CPU time spent servicing software interrupts";
        uses oc-types:avg-min-max-instant-stats-pct;
      }  // container software-interrupt
    }  // grouping system-cpu-state

    grouping system-cpu-top {
      description
        "Top-level grouping for system CPU data";
      container cpus {
        config false;
        description
          "Enclosing container for the list of CPU cores on the
        system";
        list cpu {
          key "index";
          description
            "List of CPU cores on the system (including logical CPUs
          on hyperthreaded systems), keyed by either a numerical
          index, or the ALL value for an entry representing the
          aggregation across all CPUs.";
          leaf index {
            type leafref {
              path "../state/index";
            }
            description
              "Reference to list key";
          }

          container state {
            description
              "Operational state data for the system CPU(s)";
            uses system-cpu-state;
          }  // container state
        }  // list cpu
      }  // container cpus
    }  // grouping system-cpu-top

    grouping system-top {
      description
        "Top level system data containers";
      container system {
        description
          "Enclosing container for system-related configuration and
        operational state data";
        container config {
          description
            "Global configuration data for the system";
          uses system-global-config;
        }  // container config

        container state {
          config false;
          description
            "Global operational state data for the system";
          uses system-global-config;

          uses system-global-state;
        }  // container state

        uses system-clock-top;

        uses system-dns-top;

        uses system-ntp-top;

        uses oc-sys-mgmt:system-grpc-server-top;

        uses oc-sys-term:system-ssh-server-top;

        uses oc-sys-term:system-telnet-server-top;

        uses oc-log:logging-top;

        uses oc-aaa:aaa-top;

        uses system-memory-top;

        uses system-cpu-top;

        uses oc-proc:procmon-processes-top;

        uses oc-alarms:alarms-top;

        uses oc-messages:messages-top;

        uses oc-license:license-top;
      }  // container system
    }  // grouping system-top

    uses system-top;
  }  // module openconfig-system

Summary

  
  
Organization OpenConfig working group
  
Module openconfig-system
Version 2020-03-25
File openconfig-system.yang
  
Prefix oc-sys
Namespace http://openconfig.net/yang/system
  
Cooked /cookedmodules/openconfig-system/2020-03-25
YANG /src/openconfig-system@2020-03-25.yang
XSD /xsd/openconfig-system@2020-03-25.xsd
  
Abstract Model for managing system-wide services and functions on network devices. Portions of this code were derived from IETF RFC 7317...
  
Contact
OpenConfig working group
netopenconfig@googlegroups.com

Description

 
Model for managing system-wide services and functions on
network devices.

Portions of this code were derived from IETF RFC 7317.
Please reproduce this note if possible.

IETF code is subject to the following copyright and license:
Copyright (c) IETF Trust and the persons identified as authors of
the code.
All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, is permitted pursuant to, and subject to the license
terms contained in, the Simplified BSD License set forth in
Section 4.c of the IETF Trust's Legal Provisions Relating
to IETF Documents (http://trustee.ietf.org/license-info).

Typedefs

Typedef Base type Abstract
timezone-name-type string A time zone name as used by the Time Zone Database, sometimes referred to as the 'Olson Database'. The exact set of valid values is an implementation-specific matter. Client discovery of the exact set of time zone names for a particular server is out of...

Groupings

Grouping Objects Abstract
system-clock-config timezone-name Configuration data for system-wide clock configuration
system-clock-state Operational state data for system-wide clock configuration
system-clock-top clock Top-level grouping for system-wide clock configuration
system-cpu-state index total user kernel nice idle wait hardware-interrupt software-interrupt Operational state data for the system CPU(s)
system-cpu-top cpus Top-level grouping for system CPU data
system-dns-config search DNS / resolver related configuration data
system-dns-servers-config address port Configuration data for DNS resolvers
system-dns-servers-state Operational state data for DNS resolvers
system-dns-servers-top servers Top-level grouping for the list of DNS resolvers.
system-dns-state Operational state data for system DNS resolver
system-dns-static-config hostname alias ipv4-address ipv6-address Configuration data for static host entries
system-dns-static-state Operational state data for static host entries
system-dns-static-top host-entries Top-level grouping for static DNS host entries
system-dns-top dns Top-level grouping for DNS / resolver config and operational state data
system-global-config hostname domain-name login-banner motd-banner system-wide configuration parameters
system-global-state current-datetime boot-time Global operational state data for the system
system-memory-config Configuration data for system memory
system-memory-state physical reserved Operational state data for system memory
system-memory-top memory Top-level grouping for system memory data definitions
system-ntp-auth-keys-config key-id key-type key-value Configuration data
system-ntp-auth-keys-state Operational state data for NTP auth key data
system-ntp-auth-keys-top ntp-keys Top-level grouping for NTP auth key data
system-ntp-config enabled ntp-source-address enable-ntp-auth Configuration data for system-wide NTP operation.
system-ntp-server-config address port version association-type iburst prefer Configuration data for NTP servers
system-ntp-server-state stratum root-delay root-dispersion offset poll-interval Operational state data for NTP servers
system-ntp-server-top servers Top-level grouping for the list of NTP servers
system-ntp-state auth-mismatch Operational state data for system-wide NTP operation.
system-ntp-top ntp Top-level grouping for configuration and state data for NTP
system-top system Top level system data containers

Objects

Type Key
Mandatory config
Optional config
Not config
Object Type Abstract
system container Enclosing container for system-related configuration and operational state data
   aaa container Top-level container for AAA services
      accounting container Top-level container for AAA accounting
         config container Configuration data for user activity accounting.
            accounting-method leaf-list An ordered list of methods used for AAA accounting for this event type. The method is defined by the destination for accounting data, which may be specified as the group of all TACACS+/RADIUS servers, a defined server group, or the local system.
         events container Enclosing container for defining handling of events for accounting
            event list List of events subject to accounting
               config container Configuration data for accounting events
                  event-type leaf The type of activity to record at the AAA accounting server
                  record leaf Type of record to send to the accounting server for this activity type
               event-type leaf Reference to the event-type being logged at the accounting server
               state container Operational state data for accounting events
                  event-type leaf The type of activity to record at the AAA accounting server
                  record leaf Type of record to send to the accounting server for this activity type
         state container Operational state data for user accounting.
            accounting-method leaf-list An ordered list of methods used for AAA accounting for this event type. The method is defined by the destination for accounting data, which may be specified as the group of all TACACS+/RADIUS servers, a defined server group, or the local system.
      authentication container Top-level container for global authentication data
         admin-user container Top-level container for the system root or admin user configuration and operational state
            config container Configuration data for the root user account
               admin-password leaf The admin/root password, supplied as a cleartext string. The system should hash and only store the password as a hashed value.
               admin-password-hashed leaf The admin/root password, supplied as a hashed value using the notation described in the definition of the crypt-password-type.
            state container Operational state data for the root user account
               admin-password leaf The admin/root password, supplied as a cleartext string. The system should hash and only store the password as a hashed value.
               admin-password-hashed leaf The admin/root password, supplied as a hashed value using the notation described in the definition of the crypt-password-type.
               admin-username leaf Name of the administrator user account, e.g., admin, root, etc.
         config container Configuration data for global authentication services
            authentication-method leaf-list Ordered list of authentication methods for users. This can be either a reference to a server group, or a well- defined designation in the AAA_METHOD_TYPE identity. If authentication fails with one method, the next defined method is tried -- failure of a...
         state container Operational state data for global authentication services
            authentication-method leaf-list Ordered list of authentication methods for users. This can be either a reference to a server group, or a well- defined designation in the AAA_METHOD_TYPE identity. If authentication fails with one method, the next defined method is tried -- failure of a...
         users container Enclosing container list of local users
            user list List of local users on the system
               config container Configuration data for local users
                  password leaf The user password, supplied as cleartext. The system must hash the value and only store the hashed value.
                  password-hashed leaf The user password, supplied as a hashed value using the notation described in the definition of the crypt-password-type.
                  role leaf Role assigned to the user. The role may be supplied as a string or a role defined by the SYSTEM_DEFINED_ROLES identity.
                  ssh-key leaf SSH public key for the user (RSA or DSA)
                  username leaf Assigned username for this user
               state container Operational state data for local users
                  password leaf The user password, supplied as cleartext. The system must hash the value and only store the hashed value.
                  password-hashed leaf The user password, supplied as a hashed value using the notation described in the definition of the crypt-password-type.
                  role leaf Role assigned to the user. The role may be supplied as a string or a role defined by the SYSTEM_DEFINED_ROLES identity.
                  ssh-key leaf SSH public key for the user (RSA or DSA)
                  username leaf Assigned username for this user
               username leaf References the configured username for the user
      authorization container Top-level container for AAA authorization configuration and operational state data
         config container Configuration data for authorization based on AAA methods
            authorization-method leaf-list Ordered list of methods for authorizing commands. The first method that provides a response (positive or negative) should be used. The list may contain a well-defined method such as the set of all TACACS or RADIUS servers, or the name of a defined AAA s...
         events container Enclosing container for the set of events subject to authorization
            event list List of events subject to AAA authorization
               config container Configuration data for each authorized event
                  event-type leaf The type of event to record at the AAA authorization server
               event-type leaf Reference to the event-type list key
               state container Operational state data for each authorized activity
                  event-type leaf The type of event to record at the AAA authorization server
         state container Operational state data for authorization based on AAA
            authorization-method leaf-list Ordered list of methods for authorizing commands. The first method that provides a response (positive or negative) should be used. The list may contain a well-defined method such as the set of all TACACS or RADIUS servers, or the name of a defined AAA s...
      config container Configuration data for top level AAA services
      server-groups container Enclosing container for AAA server groups
         server-group list List of AAA server groups. All servers in a group must have the same type as indicated by the server type.
            config container Configuration data for each server group
               name leaf Name for the server group
               type leaf AAA server type -- all servers in the group must be of this type
            name leaf Reference to configured name of the server group
            servers container Enclosing container the list of servers
               server list List of AAA servers
                  address leaf Reference to the configured address of the AAA server
                  config container Configuration data
                     address leaf Address of the authentication server
                     name leaf Name assigned to the server
                     timeout leaf Set the timeout in seconds on responses from the AAA server
                  radius container Top-level container for RADIUS server data
                     config container Configuration data for RADIUS servers
                        acct-port leaf Port number for accounting requests
                        auth-port leaf Port number for authentication requests
                        retransmit-attempts leaf Number of times the system may resend a request to the RADIUS server when it is unresponsive
                        secret-key leaf The unencrypted shared key used between the authentication server and the device.
                        source-address leaf Source IP address to use in messages to the RADIUS server
                     state container Operational state data for RADIUS servers
                        acct-port leaf Port number for accounting requests
                        auth-port leaf Port number for authentication requests
                        counters container A collection of RADIUS related state objects.
                           access-accepts leaf Received Access-Accept messages.
                           access-rejects leaf Received Access-Reject messages.
                           retried-access-requests leaf Retransmitted Access-Request messages.
                           timeout-access-requests leaf Access-Request messages that have timed-out, requiring retransmission.
                        retransmit-attempts leaf Number of times the system may resend a request to the RADIUS server when it is unresponsive
                        secret-key leaf The unencrypted shared key used between the authentication server and the device.
                        source-address leaf Source IP address to use in messages to the RADIUS server
                  state container Operational state data
                     address leaf Address of the authentication server
                     connection-aborts leaf Number of aborted connections to the server. These do not include connections that are close gracefully.
                     connection-closes leaf Number of connection close requests sent to the server, e.g. socket close
                     connection-failures leaf Number of connection failures to the server
                     connection-opens leaf Number of new connection requests sent to the server, e.g. socket open
                     connection-timeouts leaf Number of connection timeouts to the server
                     errors-received leaf Number of error messages received from the server
                     messages-received leaf Number of messages received by the server
                     messages-sent leaf Number of messages sent to the server
                     name leaf Name assigned to the server
                     timeout leaf Set the timeout in seconds on responses from the AAA server
                  tacacs container Top-level container for TACACS+ server data
                     config container Configuration data for TACACS+ server
                        port leaf The port number on which to contact the TACACS server
                        secret-key leaf The unencrypted shared key used between the authentication server and the device.
                        source-address leaf Source IP address to use in messages to the TACACS server
                     state container Operational state data for TACACS+ server
                        port leaf The port number on which to contact the TACACS server
                        secret-key leaf The unencrypted shared key used between the authentication server and the device.
                        source-address leaf Source IP address to use in messages to the TACACS server
            state container Operational state data for each server group
               name leaf Name for the server group
               type leaf AAA server type -- all servers in the group must be of this type
      state container Operational state data for top level AAA services
   alarms container Top-level container for device alarms
      alarm list List of alarms, keyed by a unique id
         config container Configuration data for each alarm
         id leaf References the unique alarm id
         state container Operational state data for a device alarm
            id leaf Unique ID for the alarm -- this will not be a configurable parameter on many implementations
            resource leaf The item that is under alarm within the device. The resource may be a reference to an item which is defined elsewhere in the model. For example, it may be a platform/component, interfaces/interface, terminal-device/logical-channels/channel, etc. In this c...
            severity leaf The severity level indicating the criticality and impact of the alarm
            text leaf The string used to inform operators about the alarm. This MUST contain enough information for an operator to be able to understand the problem. If this string contains structure, this format should be clearly documented for programs to be able to parse th...
            time-created leaf The time at which the alarm was raised by the system. This value is expressed relative to the Unix Epoch.
            type-id leaf The abbreviated name of the alarm, for example LOS, EQPT, or OTS. Also referred to in different systems as condition type, alarm identifier, or alarm mnemonic. It is recommended to use the OPENCONFIG_ALARM_TYPE_ID identities where possible and only use th...
   clock container Top-level container for clock configuration data
      config container Configuration data for system clock
         timezone-name leaf The TZ database name to use for the system, such as 'Europe/Stockholm'.
      state container Operational state data for system clock
         timezone-name leaf The TZ database name to use for the system, such as 'Europe/Stockholm'.
   config container Global configuration data for the system
      domain-name leaf Specifies the domain name used to form fully qualified name for unqualified hostnames.
      hostname leaf The hostname of the device -- should be a single domain label, without the domain.
      login-banner leaf The console login message displayed before the login prompt, i.e., before a user logs into the system.
      motd-banner leaf The console message displayed after a user logs into the system. They system may append additional standard information such as the current system date and time, uptime, last login timestamp, etc.
   cpus container Enclosing container for the list of CPU cores on the system
      cpu list List of CPU cores on the system (including logical CPUs on hyperthreaded systems), keyed by either a numerical index, or the ALL value for an entry representing the aggregation across all CPUs.
         index leaf Reference to list key
         state container Operational state data for the system CPU(s)
            hardware-interrupt container Percentage of CPU time spent servicing hardware interrupts.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            idle container Percentage of CPU time spent idle.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            index leaf The CPU index for each processor core on the system. On a single-core system, the index should be zero. The ALL index signifies an aggregation of the CPU utilization statistics over all cores in the system.
            kernel container Percentage of CPU time spent running in kernel space.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            nice container Percentage of CPU time spent running low-priority (niced) user processes.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            software-interrupt container Percentage of CPU time spent servicing software interrupts
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            total container Total CPU utilization.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            user container Percentage of CPU time spent running in user space.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
            wait container Percentage of CPU time spent waiting for I/O.
               avg leaf The arithmetic mean value of the percentage measure of the statistic over the time interval.
               instant leaf The instantaneous percentage value.
               interval leaf If supported by the system, this reports the time interval over which the min/max/average statistics are computed by the system.
               max leaf The maximum value of the percentage measure of the statistic over the time interval.
               max-time leaf The absolute time at which the maximum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
               min leaf The minimum value of the percentage measure of the statistic over the time interval.
               min-time leaf The absolute time at which the minimum value occurred. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
   dns container Enclosing container for DNS resolver data
      config container Configuration data for the DNS resolver
         search leaf-list An ordered list of domains to search when resolving a host name.
      host-entries container Enclosing container for list of static host entries
         host-entry list List of static host entries
            config container Configuration data for static host entries
               alias leaf-list Additional aliases for the hostname
               hostname leaf Hostname for the static DNS entry
               ipv4-address leaf-list List of IPv4 addresses for the host entry
               ipv6-address leaf-list List of IPv6 addresses for the host entry
            hostname leaf Reference to the hostname list key
            state container Operational state data for static host entries
               alias leaf-list Additional aliases for the hostname
               hostname leaf Hostname for the static DNS entry
               ipv4-address leaf-list List of IPv4 addresses for the host entry
               ipv6-address leaf-list List of IPv6 addresses for the host entry
      servers container Enclosing container for DNS resolver list
         server list List of the DNS servers that the resolver should query. When the resolver is invoked by a calling application, it sends the query to the first name server in this list. If no response has been received within 'timeout' seconds, the resolver continues wi...
            address leaf References the configured address of the DNS server
            config container Configuration data for each DNS resolver
               address leaf The address of the DNS server, can be either IPv4 or IPv6.
               port leaf The port number of the DNS server.
            state container Operational state data for each DNS resolver
               address leaf The address of the DNS server, can be either IPv4 or IPv6.
               port leaf The port number of the DNS server.
      state container Operational state data for the DNS resolver
         search leaf-list An ordered list of domains to search when resolving a host name.
   grpc-server container Top-level container for the gRPC server
      config container Configuration data for the system gRPC server
         certificate-id leaf The certificate ID to be used for authentication
         enable leaf Enables the gRPC server. The gRPC server is enabled by default
         listen-addresses leaf-list The IP addresses that the gRPC server should listen on. This may be an IPv4 or an IPv6 address
         metadata-authentication leaf Enables gRPC METADATA authentication. See https://github.com/openconfig/reference/blob/master/rpc/gnmi/gnmi-authentication.md#credentials-and-authentication for more info.
         port leaf TCP port on which the gRPC server should listen
         transport-security leaf Use gRPC transport security (e.g., TLS or SSL). Enabled by default. This allows disabling transport security for use cases where it is not needed like lab testing.
      state container Operational state data for the system gRPC server
         certificate-id leaf The certificate ID to be used for authentication
         enable leaf Enables the gRPC server. The gRPC server is enabled by default
         listen-addresses leaf-list The IP addresses that the gRPC server should listen on. This may be an IPv4 or an IPv6 address
         metadata-authentication leaf Enables gRPC METADATA authentication. See https://github.com/openconfig/reference/blob/master/rpc/gnmi/gnmi-authentication.md#credentials-and-authentication for more info.
         port leaf TCP port on which the gRPC server should listen
         transport-security leaf Use gRPC transport security (e.g., TLS or SSL). Enabled by default. This allows disabling transport security for use cases where it is not needed like lab testing.
   license container Container for license model
      licenses container Enclosing container for list of licenses
         license list List of licenses.
            config container Configuration data for license
               active leaf The activation state of the license.
               license-data leaf The contents of the licence (if required) - which may be supplied as a binary blob, or a simple string value. If this value is considered sensitive, it may be read as an empty value.
               license-id leaf License ID. A string that uniquelly identifies the license. The platform should list all the licenses it supports being activated.
            license-id leaf Reference to license id list key
            state container Operational state data for license.
               active leaf The activation state of the license.
               description leaf The license description.
               expiration-date leaf The date and time at which the license will expire, expressed as the number of nanoseconds since the Unix Epoch (January 1, 1970, 00:00 UTC). Zero if it does not expire.
               expired leaf The license has expired.
               in-use leaf The license is in use. Different from active. This states that the license is effectively being used in addition to being active. If license for feature X was activated but feature X is not being used, then this should be false.
               issue-date leaf The date and time at which the license was issued, expressed as the number of nanoseconds since the Unix Epoch (January 1, 1970, 00:00 UTC).
               license-data leaf The contents of the licence (if required) - which may be supplied as a binary blob, or a simple string value. If this value is considered sensitive, it may be read as an empty value.
               license-id leaf License ID. A string that uniquelly identifies the license. The platform should list all the licenses it supports being activated.
               valid leaf The license is valid. Can be activated in the system or platform.
   logging container Top-level container for data related to logging / syslog
      console container Top-level container for data related to console-based logging
         config container Configuration data for console logging
         selectors container Enclosing container
            selector list List of selectors for log messages
               config container Configuration data
                  facility leaf Specifies the facility, or class of messages to log
                  severity leaf Specifies that only messages of the given severity (or greater severity) for the corresonding facility are logged
               facility leaf Reference to facility list key
               severity leaf Reference to severity list key
               state container Operational state data
                  facility leaf Specifies the facility, or class of messages to log
                  severity leaf Specifies that only messages of the given severity (or greater severity) for the corresonding facility are logged
         state container Operational state data for console logging
      remote-servers container Enclosing container for the list of remote log servers
         remote-server list List of remote log servers
            config container Configuration data for remote log servers
               host leaf IP address or hostname of the remote log server
               remote-port leaf Sets the destination port number for syslog UDP messages to the server. The default for syslog is 514.
               source-address leaf Source IP address for packets to the log server
            host leaf Reference to the host list key
            selectors container Enclosing container
               selector list List of selectors for log messages
                  config container Configuration data
                     facility leaf Specifies the facility, or class of messages to log
                     severity leaf Specifies that only messages of the given severity (or greater severity) for the corresonding facility are logged
                  facility leaf Reference to facility list key
                  severity leaf Reference to severity list key
                  state container Operational state data
                     facility leaf Specifies the facility, or class of messages to log
                     severity leaf Specifies that only messages of the given severity (or greater severity) for the corresonding facility are logged
            state container Operational state data for remote log servers
               host leaf IP address or hostname of the remote log server
               remote-port leaf Sets the destination port number for syslog UDP messages to the server. The default for syslog is 514.
               source-address leaf Source IP address for packets to the log server
   memory container Top-level container for system memory data
      config container Configuration data for system memory
      state container Operational state data for system memory
         physical leaf Reports the total physical memory available on the system.
         reserved leaf Memory reserved for system use
   messages container Top-level container for Syslog messages.
      config container Configuration data for Syslog messages.
         severity leaf Specifies that only messages of the given severity (or greater severity) are sent over the RPC. This is analogous to differentiating which severity is to be sent to legacy Syslog servers, as opposed to local buffer or files.
      debug-entries container Enclosing container for list of debugs to enable.
         debug-service list List of debugging entries.
            config container Configuration data for debug service entries.
               enabled leaf Enable and disable debugging.
               service leaf Enumeration of all services which can have debugging enabled. Vendors are to augment this base identity with their platform or OS specific debug options.
            service leaf Reference to the debug-enable service key.
            state container Operational state data for enabled debugs.
               enabled leaf Enable and disable debugging.
               service leaf Enumeration of all services which can have debugging enabled. Vendors are to augment this base identity with their platform or OS specific debug options.
      state container Operational state data for a Syslog messages.
         message container Syslog messages the client is Subscribing to. This is all messages currently configured to be sent according to syslog-severity.
            app-name leaf The APP-NAME field SHOULD identify the device or application that originated the message.
            msg leaf Message payload. If other leafs within this container not supported, this leaf MAY include the entire message, inclding pri, procid, app-name etc..
            msgid leaf The MSGID SHOULD identify the type of message. For example, a firewall might use the MSGID 'TCPIN' for incoming TCP traffic and the MSGID 'TCPOUT' for outgoing TCP traffic.
            priority leaf The Priority value (PRIVAL) represents both the Facility and Severity.
            procid leaf PROCID is a value that is included in the message, having no interoperable meaning, except that a change in the value indicates there has been a discontinuity in syslog reporting.
         severity leaf Specifies that only messages of the given severity (or greater severity) are sent over the RPC. This is analogous to differentiating which severity is to be sent to legacy Syslog servers, as opposed to local buffer or files.
   ntp container Top-level container for NTP configuration and state
      config container Configuration data for NTP client.
         enable-ntp-auth leaf Enable or disable NTP authentication -- when enabled, the system will only use packets containing a trusted authentication key to synchronize the time.
         enabled leaf Enables the NTP protocol and indicates that the system should attempt to synchronize the system clock with an NTP server from the servers defined in the 'ntp/server' list.
         ntp-source-address leaf Source address to use on outgoing NTP packets
      ntp-keys container Enclosing container for list of NTP authentication keys
         ntp-key list List of NTP authentication keys
            config container Configuration data for NTP auth keys
               key-id leaf Integer identifier used by the client and server to designate a secret key. The client and server must use the same key id.
               key-type leaf Encryption type used for the NTP authentication key
               key-value leaf NTP authentication key value
            key-id leaf Reference to auth key-id list key
            state container Operational state data for NTP auth keys
               key-id leaf Integer identifier used by the client and server to designate a secret key. The client and server must use the same key id.
               key-type leaf Encryption type used for the NTP authentication key
               key-value leaf NTP authentication key value
      servers container Enclosing container for the list of NTP servers
         server list List of NTP servers to use for system clock synchronization. If '/system/ntp/enabled' is 'true', then the system will attempt to contact and utilize the specified NTP servers.
            address leaf References the configured address or hostname of the NTP server.
            config container Configuration data for an NTP server.
               address leaf The address or hostname of the NTP server.
               association-type leaf The desired association type for this NTP server.
               iburst leaf Indicates whether this server should enable burst synchronization or not.
               port leaf The port number of the NTP server.
               prefer leaf Indicates whether this server should be preferred or not.
               version leaf Version number to put in outgoing NTP packets
            state container Operational state data for an NTP server.
               address leaf The address or hostname of the NTP server.
               association-type leaf The desired association type for this NTP server.
               iburst leaf Indicates whether this server should enable burst synchronization or not.
               offset leaf Estimate of the current time offset from the peer. This is the time difference between the local and reference clock.
               poll-interval leaf Polling interval of the peer
               port leaf The port number of the NTP server.
               prefer leaf Indicates whether this server should be preferred or not.
               root-delay leaf The round-trip delay to the server, in milliseconds.
               root-dispersion leaf Dispersion (epsilon) represents the maximum error inherent in the measurement
               stratum leaf Indicates the level of the server in the NTP hierarchy. As stratum number increases, the accuracy is degraded. Primary servers are stratum while a maximum value of 16 indicates unsynchronized. The values have the following specific semantics: | 0 ...
               version leaf Version number to put in outgoing NTP packets
      state container Operational state data for NTP services.
         auth-mismatch leaf Count of the number of NTP packets received that were not processed due to authentication mismatch.
         enable-ntp-auth leaf Enable or disable NTP authentication -- when enabled, the system will only use packets containing a trusted authentication key to synchronize the time.
         enabled leaf Enables the NTP protocol and indicates that the system should attempt to synchronize the system clock with an NTP server from the servers defined in the 'ntp/server' list.
         ntp-source-address leaf Source address to use on outgoing NTP packets
   processes container Parameters related to all monitored processes
      process list List of monitored processes
         pid leaf Reference to the process pid key
         state container State parameters related to monitored processes
            args leaf-list Current process command line arguments. Arguments with a parameter (e.g., --option 10 or -option=10) should be represented as a single element of the list with the argument name and parameter together. Flag arguments, i.e., those without a parameter sh...
            cpu-usage-system leaf CPU time consumed by this process in kernel mode.
            cpu-usage-user leaf CPU time consumed by this process in user mode in nanoseconds.
            cpu-utilization leaf The percentage of CPU that is being used by the process.
            memory-usage leaf Bytes allocated and still in use by the process
            memory-utilization leaf The percentage of RAM that is being used by the process.
            name leaf The process name
            pid leaf The process pid
            start-time leaf The time at which this process started, relative to the UNIX epoch. The system must be synchronized such that the start-time can be reported accurately, otherwise it should not be reported.
   ssh-server container Top-level container for ssh server
      config container Configuration data for the system ssh server
         enable leaf Enables the ssh server. The ssh server is enabled by default.
         protocol-version leaf Set the protocol version for SSH connections to the system
         rate-limit leaf Set a limit on the number of connection attempts per minute to the system for the protocol.
         session-limit leaf Set a limit on the number of simultaneous active terminal sessions to the system for the protocol (e.g., ssh, telnet, ...)
         timeout leaf Set the idle timeout in seconds on terminal connections to the system for the protocol.
      state container Operational state data for the system ssh server
         enable leaf Enables the ssh server. The ssh server is enabled by default.
         protocol-version leaf Set the protocol version for SSH connections to the system
         rate-limit leaf Set a limit on the number of connection attempts per minute to the system for the protocol.
         session-limit leaf Set a limit on the number of simultaneous active terminal sessions to the system for the protocol (e.g., ssh, telnet, ...)
         timeout leaf Set the idle timeout in seconds on terminal connections to the system for the protocol.
   state container Global operational state data for the system
      boot-time leaf This timestamp indicates the time that the system was last restarted. The value is the timestamp in nanoseconds relative to the Unix Epoch (Jan 1, 1970 00:00:00 UTC).
      current-datetime leaf The current system date and time.
      domain-name leaf Specifies the domain name used to form fully qualified name for unqualified hostnames.
      hostname leaf The hostname of the device -- should be a single domain label, without the domain.
      login-banner leaf The console login message displayed before the login prompt, i.e., before a user logs into the system.
      motd-banner leaf The console message displayed after a user logs into the system. They system may append additional standard information such as the current system date and time, uptime, last login timestamp, etc.
   telnet-server container Top-level container for telnet terminal servers
      config container Configuration data for telnet
         enable leaf Enables the telnet server. Telnet is disabled by default
         rate-limit leaf Set a limit on the number of connection attempts per minute to the system for the protocol.
         session-limit leaf Set a limit on the number of simultaneous active terminal sessions to the system for the protocol (e.g., ssh, telnet, ...)
         timeout leaf Set the idle timeout in seconds on terminal connections to the system for the protocol.
      state container Operational state data for telnet
         enable leaf Enables the telnet server. Telnet is disabled by default
         rate-limit leaf Set a limit on the number of connection attempts per minute to the system for the protocol.
         session-limit leaf Set a limit on the number of simultaneous active terminal sessions to the system for the protocol (e.g., ssh, telnet, ...)
         timeout leaf Set the idle timeout in seconds on terminal connections to the system for the protocol.