One alternative to consider is a certificate authority/peering server that issues a digitally signed token authorizing each call between SER and Asterisk. This eliminates the threat of IP spoofing and the need top maintain IP access lists on each SER and Asterisk box. See http://osp-module.berlios.de/.
Jim Dalton
_____
From: serusers-bounces@iptel.org [mailto:serusers-bounces@lists.iptel.org] On Behalf Of Voipers Portugal Sent: Friday, November 25, 2005 2:21 PM To: sip@perceval.net Cc: serusers@lists.iptel.org Subject: Re: [Serusers] SER and Asterisk authentication
Thanks, i'll read it now. But this only solves one part of the problem, that is, Asterisk can authenticate in SER. And how SER can authenticate in Asterisk? Is it possible only by IP?
Jose Simoes
On 11/25/05, Arek Bekiersz sip@perceval.net wrote:
OK, I understand your problem. Please read <carefully> Asterisk Wiki for sip.conf at:
http://www.voip-info.org/tiki-index.php?page=Asterisk+config+sip.conf
To register, you just need to insert this into general section of Asterisk's sip.conf:
[general] ; Register with a SIP provider - register username at SER as local_asterisk_extension at Asterisk
register => username:digest_password@your.ser.server/local_asterisk_extension
[your.ser.server] type=friend host=your_ser.server username=username
-- Arek
Voipers Portugal wrote:
But what do I have to add? I can add a user, with username Asterisk, but how can I associate that user to the INVITE message from Asterisk to the SER? Don't understand how SER can authenticate if i cannot associate the RADIUS/LDAP user to the Asterisk box.
Jose Simoes
_______________________________________________ Serusers mailing list serusers@lists.iptel.org http://lists.iptel.org/mailman/listinfo/serusers