[asterisk-dev] [Code Review] SIP authentication support

Joshua Colp jcolp at digium.com
Mon Feb 11 07:37:01 CST 2013

Hans Witvliet wrote:
> Perhaps a long shot, but why can't asterisk use use the authentication
> methods already existing on systems?
> Something like pam_asterisk ?
> If possible, you could use anything (pwd, ldap, kerberos, pkcs11, ...)
> Or do i over-simplify things...

The discussion that Mark and Olle were having was referring to the 
authentication between the end device (a SIP phone for example) and the 
new SIP work within Asterisk. There are defined standards for doing 
that, that both have to implement.

PAM is really for what you are authenticating against. IE: I want to 
authenticate using LDAP for my credentials. That has nothing to do with 
the actual communication with the end device. (Disclaimer: Depending on 
the actual PAM module in use this can be untrue.)

Joshua Colp
Digium, Inc. | Senior Software Developer
445 Jan Davis Drive NW - Huntsville, AL 35806 - USA
Check us out at:  www.digium.com  & www.asterisk.org

More information about the asterisk-dev mailing list