[OpenSIPS-Users] LDAP Authentication

Bogdan-Andrei Iancu bogdan at voice-system.ro
Tue Jun 16 00:53:58 CEST 2009


Hi Alan,

Do you want to use LDAP to authenticate clients or to authenticate 
opensips against other SIP server?

Regards,
Bogdan


Alan Rubin wrote:
> Thiago, 
>
> Thanks for the reply; however, the module documentation does not seem to
> give examples on how to configure LDAP with the auth mechanism.  Or is
> that not necessary?
>
> This is the section from the tutorial I found, mentioned previously:
>
> modparam("auth", "username_spec", "$avp(s:username)")
> modparam("auth", "password_spec", "$avp(s:password)")
> modparam("auth", "calculate_ha1", 1)
> ...
>
> The possible difference (typo?) that concerns me is this next reference
> in the tutorial:
>
> route[11] {
>     if(is_method("REGISTER"))
>     {
>         if(is_present_hf("Authorization"))
>         {
>             # ldap search
>             if
> (!ldap_search("ldap://sipaccounts/ou=sip,dc=example,dc=com?SIPUserName,S
> IPPassword?one?(cn=$fU)"))
>             {
>                 switch ($retcode)
>                 {
> ...
>
> I have no "route[11]" in my configuration file.  Am I meant to create a
> new route section to handle LDAP authentication?  
>
> What I am trying to do, if it is not clear, is use LDAP as a mechanism
> for authentication/registration of SIP accounts rather than having to
> configure, by hand and with a separate password, a SIP account for each
> user of my SIP server.
>
> Regards,
>
> Alan 
>  
> -----Original Message-----
> From: users-bounces at lists.opensips.org
> [mailto:users-bounces at lists.opensips.org] On Behalf Of Thiago Rondon
> Sent: Monday, 15 June 2009 1:47 PM
> To: Alan Rubin
> Cc: users at lists.opensips.org
> Subject: Re: [OpenSIPS-Users] LDAP Authentication
>
>
>
> Alan,
>
> How about the document of ldap module ?
>
> http://www.opensips.org/html/docs/modules/1.5.x/ldap.html
>
> -Thiago Rondon
>
> Alan Rubin escreveu:
>   
>> Hello,
>>
>> I've gathered from web searches that it IS possible to authenticate to
>> an OpenSER system using an LDAP database. Is this also true for
>>     
> OpenSIPS
>   
>> (1.5)?
>>
>> Does anyone have a tutorial for configuring such a setup? I found one
>> for Kamailio, but it doesn't appear to be identical to my version of
>> OpenSIPS (or there are typos of significance in the tutorial).
>>
>> Also important, can this authentication be done with existing LDAP
>> credentials or does there have to be specific SIP information inside
>>     
> the
>   
>> LDAP database for the authentication to work? The requirement of
>> additional values in the LDAP space is also indicated by the example
>>     
> in
>   
>> the tutorial for Kamailio that I found
>> (http://kamailio.org/dokuwiki/doku.php/tutorials:openser-auth-ldap),
>>     
> but
>   
>> I am unable to add SIP specific information in my instance. There is,
>> however, already UID and password information contained within.
>>
>> Regards,
>>
>> Alan Rubin
>>  
>>
>> _______________________________________________
>> Users mailing list
>> Users at lists.opensips.org
>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>>
>>   
>>     
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>   




More information about the Users mailing list