[Serusers] SER and Asterisk authentication

Voipers Portugal voipers at gmail.com
Fri Nov 25 19:50:11 CET 2005


But what do I have to add? I can add a user, with username Asterisk, but how
can I associate that user to the INVITE message from Asterisk to the SER?
Don't understand how SER can authenticate if i cannot associate the
RADIUS/LDAP user to the Asterisk box.

Jose Simoes


On 11/25/05, Arek Bekiersz <sip at perceval.net> wrote:
>
> Sure, in this case you need to add user into Radius/LDAP backend and
> proceed as normally.
>
> AFAIK there is no "third" solution here, except for "trusted" table.
>
> --
> Arek
>
>
> Voipers Portugal wrote:
> > Ok. That's the easy solution. However, that ain't protected againts IP
> > spoofing problems. Isn't there a way to authenticate using users (with
> > username and password)? So that, when Asterisk send an INVITE do SER,
> > Asterisk should be a normal SER user, like any other user. I am using
> > the following code to see if the invite is trusted or not:
> >
> >                 log(1, "INVITE not in table trusted\n");
> >                 if (!radius_www_authorize("ser host")) {
> >                         log(1, "INVITE not authorized, generating
> > digest\n");
> >                         www_challenge("ser host", "0");
> >                         break;
> >                 };
> >                 log(1, "INVITE authorized\n");
> >
> > And this way, I think only the users that are in my LDAP database
> > (contacted via radius) and registred to my ser host can make the calls.
> > Am I correct?
>
> _______________________________________________
> Serusers mailing list
> serusers at lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20051125/79bd51fb/attachment.htm>


More information about the sr-users mailing list