290 
netconf soap https acl 
Use netconf soap https acl to apply an ACL to NETCONF over SOAP over HTTPS traffic. 
Use undo netconf soap https acl to restore the default. 
Syntax 
netconf soap https acl { acl-number | name acl-name } 
undo netconf soap https acl 
Default 
No ACL is applied to NETCONF over SOAP over HTTPS traffic. 
Views 
System view 
Predefined user roles 
network-admin 
Parameters 
acl-number: Specifies an ACL by its number in the range of 2000 to 2999. 
name acl-name: Specifies an ACL by its name. The acl-name argument is a case-insensitive string 
of 1 to 63 characters. It must start with an English letter and to avoid confusion, it cannot be all. The 
specified ACL must be an IPv4 basic ACL that has already been created. 
Usage guidelines 
Only NETCONF clients permitted by the applied ACL can access the device through SOAP over 
HTTPS. 
If you execute this command multiple times, the most recent configuration takes effect. 
Examples 
# Use ACL 2001 to allow only NETCONF clients in the subnet 10.10.0.0/16 to access the device 
through SOAP over HTTPS. 
<Sysname> system-view 
[Sysname] acl basic 2001 
[Sysname-acl-ipv4-basic-2001] rule permit source 10.10.0.0 0.0.255.255 
[Sysname-acl-ipv4-basic-2001] quit 
[Sysname] netconf soap https acl 2001 
netconf soap https enable 
Use netconf soap https enable to enable NETCONF over SOAP over HTTPS. 
Use undo netconf soap https enable to disable NETCONF over SOAP over HTTPS.