[SR-Users] LDAP and Kerberos backend for authentification / Or PAM / SASL ?

Yoann Gini yoann.gini at gmail.com
Wed Apr 23 08:06:42 CEST 2014

Le 22 avr. 2014 à 11:03, Daniel-Constantin Mierla <miconda at gmail.com> a écrit :

> the constraint to have access to text password or HA1 format (md5 over username, password, realm) comes from WWW Authentication mechanism which is used by SIP.
> Writing something different in kamailio would be possible (it is open source), but you don't have phones able to do it and provide the adequate details.

Are you sure? You’ve a Radius backend for example, Radius don’t allow you to access to clear text password, it isn’t?

The only www authentication mechanism who must have access to clear text password is the DIGEST auth. But if we consider using SIP over TLS, we may be able to use BASIC authentication…

What do you think ? Does the authentication kind is negotiated during the communication?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20140423/327d9087/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4806 bytes
Desc: not available
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20140423/327d9087/attachment.bin>

More information about the sr-users mailing list