[OpenSIPS-Users] Authentication using LDAP attribute with MD5 hash.
Hi! I would like to know if it's possible to use the LDAP module along with the AUTH module to use LDAP for authenticating SIP users. Of course that an attribute with the MD5 hash is needed in the LDAP, but i already have that. My preliminary research points me in the direction of making a query with the LDAP code to retrieve the hash and then use some function of AUTH like pv_www_authorize (http://www.opensips.org/html/docs/modules/1.5.x/auth.html#id271238) where the $vars were set through the query to the LDAP. Also I think i would have to set the parameter calculate_ha1 (http://www.opensips.org/html/docs/modules/1.5.x/auth.html#id228275) not to calculate the ha1 as it's possible to use the hash as it is straight from the LDAP query. Am I right about this? I figured that there should be already lots of people that implemented or tried to implement LDAP authentication with OPENSIPS without the need to use RADIUS, so here are my questions: Are the previous assumptions correct? Is it possible to do LDAP authentication with OpenSIPS without the use of the RADIUS server? is it convenient to do so? is there some kind of catch for me not to have found anything related with that kind of direct authentication (without the use of RADIUS) with LDAP? Is this a good way to do this? Am I missing something on what i need to do, would that suffice, is there some kind of documentation, webpage, mail thread anybody can point me to? Thanks in advance, João Antunes ___ Users mailing list Users@lists.opensips.org http://lists.opensips.org/cgi-bin/mailman/listinfo/users
Re: [OpenSIPS-Users] Multi domain registration.
Read this: http://www.opensips.org/html/docs/modules/1.4.x/auth.html#id228366
and http://www.opensips.org/html/docs/modules/1.4.x/auth_db.html#id228346
And try this code:
if (!www_authorize(, subscriber)) {
www_challenge(, 0);
exit;
}
That way it should work if I'm not mistaken.
--
/Saúl
http://www.saghul.net | http://www.sipdoc.net
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
[OpenSIPS-Users] LDAP Authentication OpenSIPS
Hi there, I have been trying to configure LDAP authentication. I have been reading some documentation I have found about the configuration in OpenSer 1.3.x and some emails from this list and I have read the the way is to make queries against ldap to obtain username and password and then authenticate. The way I have to do this LDAP authentication is binding directly the LDAP server with the username/password of the SIP users, it is impossible to me to do on the other way because the password field on the LDAP is unreadeable. Is there any way for OpenSIPS to bind the LDAP server to authenticate the user? Thanks in advance, Jonathan -- Personal webpage - www.jonbaraq.eu ___ Users mailing list Users@lists.opensips.org http://lists.opensips.org/cgi-bin/mailman/listinfo/users
[OpenSIPS-Users] drouting: varios entries in 'dr_rules' with some groupid', not possible?
Hi, I'm trying to figure if it makes sense and it's possible to set various
entries in 'dr_rules' table with same 'groupid' but different 'priority' so
after trying all the gateways in the rule with highest priority, the gateways
in the second rule would be tryed.
However it seems that I'm wrong since it doesn't work. Just the rule with
highest priority is taken (and all its configured gateways or list of
gateways).
In the doc I read:
--
1.1.5. Routing Rule Processing
within the set of rules is applied the time criteria, and the rule which has
the highest priority and matches the time criteria is selected to drive the
routing.
--
But it doesn't work for me. I've two rules:
rule 1:
- groupid = 1
- priority = 10 (highest)
- gwlist = 1,2
rule 2:
- groupid = 1
- priority = 5
- gwlist = 3,4
Then in the script I do:
do_routing(1);
t_relay();
and in failure route:
if t_check_status(408|503) {
use_next_gw();
t_relay();
}
In my example call the rule 1 is choosen (since it has highest prioriry).
Gateways 1 and 2 fail (reply 503 code) and there is no more failover, this is:
servers 3 and 4 are not tryed, is it the expected behaviour?
Thanks.
--
Iñaki Baz Castillo i...@aliax.net
___
Users mailing list
Users@lists.opensips.org
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
