Access Incognito's library of Guides, Tips / Tutorials and more.
Updated on 05 July 2019
Originally published in August 2013, this TR-069 FAQ is designed to equip network professionals with the information they need to fully understand TR-069, and how they can leverage the standard and capabilities to enable remote device management and a better customer experience.
Fast forward to 2019! Incognito is pleased to provide a number of updates on next-generation device management, the role of digital channels, the fit for User Services Platform, and how remote device management can be leveraged for new lines of business like IoT.
Solutions Marketing - Incognito Software
The CPE WAN (CWMP) Management Protocol, published by The Broadband Forum as TR-069, specifies a standard communication mechanism for the remote management of end-user devices. The standard defines a protocol for the secure automated configuration of a TR-069-capable device and incorporates other management functions into a common framework. This protocol simplifies device management by specifying the use of an auto configuration server (ACS) to perform remote, centralized management of customer premises equipment (CPE).
In 2004, The Broadband Forum (formerly The DSL Forum) released the CPE WAN Management Protocol (CWMP), which is more commonly known as TR-069. This protocol standardizes the wide area network (WAN) management of CWMP devices. TR-069 gives broadband service providers a framework and common language to remotely provision and manage these devices, which are usually in a home network, regardless of device type or manufacturer.
TR-069 supports a variety of functionalities to manage CPEs and has the following primary capabilities:
TR-069 is a specific technical report from Broadband Forum; however, the term is commonly used to refer to associated reports and extensions, including TR-106, TR-098, TR-104, TR-135, TR-140, and TR-111. See the Broadband Forum for the most up-to-date information.
A remote procedure call (RPC) is an operation between an ACS and the CPE. It is used for bidirectional communication between CPE and an ACS. This includes methods initiated by an ACS and sent to a CPE, as well as methods initiated by a CPE and sent to an ACS. Some common RPCs (methods) are included below, consult Broadband Forum for a complete list
In a TR-069 environment, tasks are completed through sessions. Each session consists of a series of remote procedure calls (RPC) between an ACS and the CPE. TR-069 uses HTTP or HTTPS and SOAP messaging, which allows messages to pass through firewalls and NAT gateways. TR-069 defines a generic mechanism by which an ACS can read or write parameters to configure a CPE and monitor CPE status and statistics.
The minimum TR-069 eco-system requires:
By specifying a variety of criteria, including provisioning parameters and vendor-specific information, an Auto Configuration Server provisions a CPE or collection of CPEs.
Yes. Broadband Forum reported in 2018 over 1 billion TR-069 installations, laying the foundation for mass adoption of broadband globally.
Broadband service providers use TR-069 to manage end-user devices and reduce operational costs. TR-069 and related standards have been deployed on Ethernet, 4G LTE, WiMAX, xPON, FTTx (fiber), DSL and cable networks. Cable companies are increasingly looking to adopt TR-069 as home networks became too complicated for subscribers to configure and manage on their own. Additionally, leveraging TR-069 in a cable network allows device management for entities not touched by DOCSIS provisioning, such as standalone home gateways who are not embedded in cable modems. This also provides access to additional device performance, fault and Wi-Fi configuration.
TR-069 offers management capabilities for a wide range of devices including DSL and cable residential gateways, fiber optical network terminals (ONT embedded in a CPE for xPON access network), 4G fixed-wireless routers, IPTV set-top boxes, network attached storage, HomePlug adapters, IP phones, and more. This extends to the cable industry and the multimedia residential gateways that utilize traditional DOCSIS provisioning along with TR-069 to manage value-added features such as gateway configuration, VoIP, Wi-Fi, and IPTV set-top box services.
TR-069 specifies communication between a customer-premises equipment (CPE) and Auto Configuration Server (ACS). The ACS acts as a remote management server for TR-069 enabled CPEs. It is essentially the secure link between the subscriber’s devices in the home and the service provider’s customer service representative (CSR), support staff, operational support systems and business support systems (OSS/BSS), and network operations and field technicians. An ACS enables you to automate remote provisioning and many management tasks for TR-069 devices such as firmware upgrades.
There are many benefits associated with using TR-069 to provision and manage end-user devices. In addition to using an industry standard approach for device integration, TR-069 and its extensions allow you to:
Yes. There are many scenarios where TR-069 may be deployed in conjunction with another management protocol, such as DOCSIS, SNMP and IoT (e.g. MQTT). For example, a cable operator may use DOCSIS onboard a device to the network and then use TR-069 for device provisioning. TR-069 enabled DOCSIS gateway availability encouraged the cable industry to embrace TR-069 for CPE management.
TR-069 can extend beyond the residential gateway to provide carrier class management of other networking devices and services within the customer premises such as a set-top box. Wireless extenders can be remotely managed via TR-069, to deliver trouble-free Wi-Fi to any location in a customer’s home with the benefits of shortened installation times.
Yes. The Broadband Forum designed CWMP model to provide a high degree of security while remaining scalable. The stated security goals of this protocol are below:
Secure Socket Layer/Transport Layer Security (SSL/TLS) should be used to encrypt traffic between CPE and an ACS ensuring all data passed between the CPE and ACS remains private and integral. It is possible to use the protocol directly over a HTTP connection; however, some aspects of security will be sacrificed. SSL is an industry standard, and used by millions to protect online transactions between customers. When SSL/TLS is used, the CPE must authenticate the ACS using the ACS-provided certificate.
Yes. You can further extend digital channels by supplementing your customer care solutions with TR-069 ACS retrieved device data. Now you can rapidly deliver subscriber self-service functions and arm field technician with operational tools, all while using your existing BSS assets such as existing self-care portals and mobile apps. A key challenge for internal development teams is how to integrate network-facing tools and functions within existing BSS systems.
TR-069 device management platform can be used to manage IoT devices, using the same data model to achieve zero-touch service activation and management. TR-069 provides a standardized approach to enable control of connected devices to be managed by CSPs who are looking to enter the IoT market.
The following key requirements need to be considered for rapid IoT device on-boarding:
Cisco’s VNI report estimates that 14.6 billion connections will be M2M by 2022. Incognito estimates that approximately 70% of these could be manageable by CSPs with a focus on industrial IoT applications like smart cities, smart meters, heavy machinery, and more.
The User Services Platform (USP) is an evolution of the TR-069 Broadband Forum specification detailed earlier in this FAQ. In January 2018 the Broadband Forum Connected Home Council ratified the USP 1.0 standard (TR-369).
USP provides the platform for standards-based next-generation services such as wireless meshes, smart-home automation, customer self-care and IoT. This service enablement leverages TR-069, along with critical new functionality including:
CSPs face the risk of in-home network marginalization. So the race is on for new revenue streams beyond GB connectivity and IP services, while also reacting to competitive pressures. Operators need to control the Connected Home business model, with management insight into a gateway, CPE and visibility of connected devices, all while being vendor neutral and network agnostic.
A critical value-add for service providers is presenting a seamless, quality, user experience to the subscriber regardless of the IoT protocol, device supporting TR-069 or a device supporting USP. This requires a new management platform approach where USP bridges that gap.
USP represents a natural evolution of CWMP, a sort of “TR-069 2.0” intended to be faster, lighter weight, and more secure. USP will be less ‘noisy’ than TR-069 in terms of message exchange, and more efficient in establishing a session between a device and a controller. USPs approach of service elements and controllers, results in a simpler, lighter message set reducing complexity and increasing performance, all while maintaining backwards compatibility with TR-069.
TR-069 lacks the following capabilities, providing further drivers for USP adoption:
Interested in learning more about User Services Platform (USP) and what's in it for global service providers? Check out Incognito's USP insights page or read our latest blog series on the next-gen device management and data collection protocol.