[OpenSIPS-Users] LDAP Authentication

Alan Rubin Alan.Rubin at nt.gov.au
Mon Jun 15 06:46:16 CEST 2009 

Thiago, 

Thanks for the reply; however, the module documentation does not seem to
give examples on how to configure LDAP with the auth mechanism.  Or is
that not necessary?

This is the section from the tutorial I found, mentioned previously:

modparam("auth", "username_spec", "$avp(s:username)")
modparam("auth", "password_spec", "$avp(s:password)")
modparam("auth", "calculate_ha1", 1)
...

The possible difference (typo?) that concerns me is this next reference
in the tutorial:

route[11] {
    if(is_method("REGISTER"))
    {
        if(is_present_hf("Authorization"))
        {
            # ldap search
            if
(!ldap_search("ldap://sipaccounts/ou=sip,dc=example,dc=com?SIPUserName,S
IPPassword?one?(cn=$fU)"))
            {
                switch ($retcode)
                {
...

I have no "route[11]" in my configuration file.  Am I meant to create a
new route section to handle LDAP authentication?  

What I am trying to do, if it is not clear, is use LDAP as a mechanism
for authentication/registration of SIP accounts rather than having to
configure, by hand and with a separate password, a SIP account for each
user of my SIP server.

Regards,

Alan 
 
-----Original Message-----
From: users-bounces at lists.opensips.org
[mailto:users-bounces at lists.opensips.org] On Behalf Of Thiago Rondon
Sent: Monday, 15 June 2009 1:47 PM
To: Alan Rubin
Cc: users at lists.opensips.org
Subject: Re: [OpenSIPS-Users] LDAP Authentication



Alan,

How about the document of ldap module ?

http://www.opensips.org/html/docs/modules/1.5.x/ldap.html

-Thiago Rondon

Alan Rubin escreveu:
> Hello,
>
> I've gathered from web searches that it IS possible to authenticate to
> an OpenSER system using an LDAP database. Is this also true for
OpenSIPS
> (1.5)?
>
> Does anyone have a tutorial for configuring such a setup? I found one
> for Kamailio, but it doesn't appear to be identical to my version of
> OpenSIPS (or there are typos of significance in the tutorial).
>
> Also important, can this authentication be done with existing LDAP
> credentials or does there have to be specific SIP information inside
the
> LDAP database for the authentication to work? The requirement of
> additional values in the LDAP space is also indicated by the example
in
> the tutorial for Kamailio that I found
> (http://kamailio.org/dokuwiki/doku.php/tutorials:openser-auth-ldap),
but
> I am unable to add SIP specific information in my instance. There is,
> however, already UID and password information contained within.
>
> Regards,
>
> Alan Rubin
>  
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>   


_______________________________________________
Users mailing list
Users at lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

More information about the Users mailing list