Cisco Cisco Packet Data Interworking Function (PDIF)
CSCF Serving-CSCF Configuration Mode Commands
▀ authentication
▄ Command Line Interface Reference, StarOS Release 18
3366
authentication
Configures the authentication method used by the S-CSCF service.
Product
SCM (S-CSCF, SIP Proxy)
Privilege
Administrator
Mode
Exec > Global Configuration > Context Configuration > CSCF Service Configuration > Serving-CSCF Configuration
configure > context context_name > cscf service service_name > serving-cscf
Entering the above command sequence results in the following prompt:
[context_name]host_name(config-cscf-service-serving-cscf)#
Syntax
authentication { aka-v1 value | allow-auth-rsp-failure re-register | allow-hss-failure
re-register | allow-noauth [ invite | re-register| register ] | allow-noipauth [ invite |
re-register| register ] | allow-skip-sar re-register | allow-unsecure | aor-auth |
custom-md5 value | md5 value }
re-register | allow-noauth [ invite | re-register| register ] | allow-noipauth [ invite |
re-register| register ] | allow-skip-sar re-register | allow-unsecure | aor-auth |
custom-md5 value | md5 value }
no authentication { aka-v1 | allow-auth-rsp-failure re-register | allow-hss-failure re-
register | allow-noauth [ invite | re-register| register ] | allow-noipauth [ invite |
re-register| register ] | allow-skip-sar re-register | allow-unsecure | aor-auth |
custom-md5 | md5 }
register | allow-noauth [ invite | re-register| register ] | allow-noipauth [ invite |
re-register| register ] | allow-skip-sar re-register | allow-unsecure | aor-auth |
custom-md5 | md5 }
no
Disables the specified authentication method for the S-CSCF service.
aka-v1
value
Specifies that AKA-v1 algorithm is used as the authentication type when accessing the CSCF service.
value
specifies a preference - the lower the value, the higher the preference.
value
must be an integer from 1 to
1000.
Important:
In order to change a priority level, you must remove the original value and configure a new one.
allow-auth-rsp-failure re-register
Specifies that S-CSCF will not validate authorization received from UE for challenge re-register. If enabled,
S-CSCF will send SAR without validating authentication; after receiving SAA, it will send 200 OK for
register.
S-CSCF will send SAR without validating authentication; after receiving SAA, it will send 200 OK for
register.
allow-hss-failure re-register
Specifies that S-CSCF should send 200 OK for re-register in case of HSS failure.
When S-CSCF receives register, it sends MAR/SAR to HSS to authenticate the user when authentication is
enabled and to get the subscriber profile. When S-CSCF fails to receive response MAA/SAA from HSS, it
When S-CSCF receives register, it sends MAR/SAR to HSS to authenticate the user when authentication is
enabled and to get the subscriber profile. When S-CSCF fails to receive response MAA/SAA from HSS, it