<div>But what do I have to add? I can add a user, with username Asterisk, but how can I associate that user to the INVITE message from Asterisk to the SER? Don't understand how SER can authenticate if i cannot associate the RADIUS/LDAP user to the Asterisk box.
</div>
<div> </div>
<div>Jose Simoes<br><br> </div>
<div><span class="gmail_quote">On 11/25/05, <b class="gmail_sendername">Arek Bekiersz</b> <<a href="mailto:sip@perceval.net">sip@perceval.net</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">Sure, in this case you need to add user into Radius/LDAP backend and<br>proceed as normally.<br><br>AFAIK there is no "third" solution here, except for "trusted" table.
<br><br>--<br>Arek<br><br><br>Voipers Portugal wrote:<br>> Ok. That's the easy solution. However, that ain't protected againts IP<br>> spoofing problems. Isn't there a way to authenticate using users (with<br>> username and password)? So that, when Asterisk send an INVITE do SER,
<br>> Asterisk should be a normal SER user, like any other user. I am using<br>> the following code to see if the invite is trusted or not:<br>><br>> log(1, "INVITE not in table trusted\n");
<br>> if (!radius_www_authorize("ser host")) {<br>> log(1, "INVITE not authorized, generating<br>> digest\n");<br>> www_challenge("ser host", "0");
<br>> break;<br>> };<br>> log(1, "INVITE authorized\n");<br>><br>> And this way, I think only the users that are in my LDAP database<br>> (contacted via radius) and registred to my ser host can make the calls.
<br>> Am I correct?<br><br>_______________________________________________<br>Serusers mailing list<br><a href="mailto:serusers@lists.iptel.org">Serusers@iptel.org</a><br><a href="http://lists.iptel.org/mailman/listinfo/serusers">
http://lists.iptel.org/mailman/listinfo/serusers</a><br></blockquote></div><br>