(RADIATOR) Digest Authentication Question.

Hugh Irvine hugh at open.com.au
Mon Nov 15 13:19:09 CST 2004 

Hello Ricardo -

There is no command required, you just need to configure the 
appropriate AuthBy SQL clause to access your database.

See section 6.29 in the Radiator 3.11 reference manual and the example 
in "goodies/sql.cfg" in the distribution.

regards

Hugh


On 16 Nov 2004, at 00:21, Ricardo Martinez wrote:

> Mike.
> 	Thanks for the response.  How can activate this function to work?
> Which is specifically the command to do that?
>
> Thanks in advance.
>
> Ricardo.-
>
> -----Mensaje original-----
> De: Mike McCauley [mailto:mikem at open.com.au]
> Enviado el: Viernes, 12 de Noviembre de 2004 18:35
> Para: Ricardo Martinez
> CC: 'radiator at open.com.au'
> Asunto: Re: (RADIATOR) Digest Authentication Question.
>
>
> Hello Ricardo,
>
>
> On Saturday 13 November 2004 01:40, Ricardo Martinez wrote:
>> Hello List.
>> 	I am trying to use Radiator to authenticate SIP users, my SIP server
>> authenticate user using Digest Authentication, so the Radius packet is
> like
>> this :
>>
>>
>>  Attributes:
>> 		User-Name = "User1 at sipproxy.mydomain.com"
>> 		Digest-Attributes = "<10><9>User1"
>> 		Digest-Attributes = "<1><15>sipproxy.mydomain.com"
>> 		Digest-Attributes
>> ="<2>*4193f392b1c4523017059950be294b7c8bc80632"
>> 		Digest-Attributes = "<4><19>sip:sipproxy.mydomain.com"
>> 		Digest-Attributes = "<3><10>REGISTER"
>> 		Digest-Attributes = "<5><6>auth"
>> 		Digest-Attributes = "<9><10>00000001"
>> 		Digest-Attributes = "<8><10>9a39a1b8"
>> 		Digest-Response = "18f1da62dba6f25b2283b9c2cefd0235"
>> 		Service-Type = Sip-Session
>> 		NAS-IP-Address = 127.0.0.1
>> 		NAS-Port = 5060
>>
>> For what i know in Digest Authentication the password never goes into 
>> the
>> network.  So if i want to authenticate a user using Digest 
>> Authentication
>> how can i configure my Radiator to acomplish this?.  I am also using 
>> SQL
> to
>> make database querys.  Supponse that i have a TABLE in my database 
>> with
> the
>> passwords(maybe in cleartext) of all my clients.  How can i use 
>> radiator
> to
>> authenticate a user?
>> I really hope that someone can help me here
>
> Radiator can already authenticate such SIP requests, provided it has 
> access
> to
> the correct plaintext password from the user database.
>
> You dont need to do any special configuration to handle SIP: Radiator
> notices
> the Digest-Response attribute and automatically uses SIP.
>
> If it is not working as expected, please post a log file at trace 
> level 5
> (not
> 4) showing what is happening when it tries to authenticate.
>
> Cheers.
>
>>
>> Thanks in advance.
>>
>> Ricardo Javier Martinez Ogalde
>> Ingeniero de Desarrollo
>> VOISS NET S.A.
>> Cisco Certified Network Associate ,CCNA (CSCO 10643101)
>> *   :  (56 2) 240 81 96
>> *    :  (56 2) 245 74 95
>> *   :  rmartinez at redvoiss.net
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>
> -- 
> Mike McCauley                               mikem at open.com.au
> Open System Consultants Pty. Ltd            Unix, Perl, Motif, C++, WWW
> 9 Bulbul Place Currumbin Waters QLD 4223 Australia   
> http://www.open.com.au
> Phone +61 7 5598-7474                       Fax   +61 7 5598-7070
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP etc on Unix, Windows, MacOS etc.
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive 
(www.open.com.au/archives/radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list