One alternative to consider is a certificate authority/peering server that issues a digitally signed token authorizing each call between SER and Asterisk.  This eliminates the threat of IP spoofing and the need top maintain IP access lists on each SER and Asterisk box.  See http://osp-module.berlios.de/.
 
Jim Dalton
 


From: serusers-bounces@lists.iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Voipers Portugal
Sent: Friday, November 25, 2005 2:21 PM
To: sip@perceval.net
Cc: serusers@lists.iptel.org
Subject: Re: [Serusers] SER and Asterisk authentication

Thanks, i'll read it now. But this only solves one part of the problem, that is, Asterisk can authenticate in SER. And how SER can authenticate in Asterisk? Is it possible only by IP?
 
Jose Simoes

 
On 11/25/05, Arek Bekiersz <sip@perceval.net> wrote:
OK, I understand your problem.
Please read <carefully> Asterisk Wiki for sip.conf at:

http://www.voip-info.org/tiki-index.php?page=Asterisk+config+sip.conf


To register, you just need to insert this into general section of
Asterisk's sip.conf:

[general]
; Register with a SIP provider - register username at SER as
local_asterisk_extension at Asterisk

register =>
username:digest_password@your.ser.server/local_asterisk_extension

[your.ser.server]
type=friend
host=your_ser.server
username=username


--
Arek



Voipers Portugal wrote:
> But what do I have to add? I can add a user, with username Asterisk, but
> how can I associate that user to the INVITE message from Asterisk to the
> SER? Don't understand how SER can authenticate if i cannot associate the
> RADIUS/LDAP user to the Asterisk box.
>
> Jose Simoes

_______________________________________________
Serusers mailing list
serusers@lists.iptel.org
http://mail.iptel.org/mailman/listinfo/serusers