Cisco Cisco ASR 5000
CSCF SIP Proxy Configuration Mode Commands
▀ authentication
▄ Command Line Interface Reference, StarOS Release 18
3412
re-register
: Specifies that access to the CSCF service is allowed if authentication fails on RE-REGISTER
requests when the request is integrity-protected only.
registration
: Specifies that access to the CSCF service is allowed if early IMS-based IP authentication
fails on REGISTER requests only.
allow-unsecure
Specifies that un-secure access is allowed to the CSCF service.
aor-auth
Specifies that authentication is based on the AoR when accessing the CSCF service.
md5
value
Specifies that the MD5 algorithm is used as the authentication type for accessing the CSCF service.
value
specifies a preference - the lower the value, the higher the preference.
value
must be an integer from 1 to
1000.
Important:
In order to change a priority level, you must remove the original value and configure a new one.
Usage
Use this command to configure the authentication method used by the CSCF service.
Important:
The S-CSCF supports multiple authorization schemes, but this requires disabling all authorization
configured in the S-CSCF service so that it will send “Unknown” in the Sip-Authorization-Scheme AVP. This allows
the HSS to dictate authorization. The following commands disable all authorization configured in the S-CSCF service to
allow HSS to control authorization:
the HSS to dictate authorization. The following commands disable all authorization configured in the S-CSCF service to
allow HSS to control authorization:
authentication allow-noipauth
allow rfc3261-ua-interworking
no authentication aka-v1
no authentication md5
Example
The following command configures the authentication method used by the CSCF service to MD5 with a
preference of
preference of
3
:
authentication md5 3