i made the changes as you mentioned
////////////////////////////////////////////////
if (!S_is_integrity_protected("open-ims.test")){
# Unprotected REGISTER
# Variant 1 - accept also non IPSec clients
#if (!S_is_authorized("open-ims.test")) {
# S_challenge("open-ims.test");
# route(Service_Routes);
# t_reply("401", "Unauthorized - Challenging the UE");
# exit;
#}
#else{
if (S_is_not_registered()){
if (S_assign_server("open-ims.test")){
route(Service_Routes);
route(Charging_Function_Addresses);
t_reply("200","OK - SAR succesful and registrar saved");
ISC_match_filter_reg("0");
exit;
}else{
t_reply("500","Server Internal Error - Server
Assignment failed");
exit;
}
}else{
ISC_match_filter_reg("1");
if (S_assign_server("open-ims.test")){
route(Service_Routes);
route(Charging_Function_Addresses);
t_reply("200","OK - SAR succesful and registrar
saved");
exit;
}else{
t_reply("500","Server Internal Error - Server
Assignment failed");
exit;
}
}
#}
/////////////////////////////////////////////////
but the problem is still there..MSG DOES NOT CONTAIN AUTHENTICATION
HEADER.
attached is trace file...
On Tue, May 17, 2011 at 1:25 PM, Carsten Bock <carsten at ng-voice.com> wrote:
> You should let the following lines in your config and NOT comment them out.
>
> # if (S_is_not_registered()){
> # if (S_assign_server("open-ims.test")){
> # route(Service_Routes);
> # route(Charging_Function_Addresses);
> # t_reply("200","OK - SAR succesful and
> registrar saved");
> # ISC_match_filter_reg("0");
> # exit;
> # }else{
> # t_reply("500","Server Internal Error - Server
> Assignment failed");
> # exit;
> # }
> # }else{
> # ISC_match_filter_reg("1");
> # if (S_assign_server("open-ims.test")){
> # route(Service_Routes);
> # route(Charging_Function_Addresses);
> # t_reply("200","OK - SAR succesful and
> registrar saved");
> # exit;
> # }else{
> # t_reply("500","Server Internal Error - Server
> Assignment failed");
> # exit;
> # }
> # }
>
> Carsten
>
> 2011/5/17 abid khan <abidkhan135 at gmail.com>:
> > thanks for the reply , but i comment the following lines..after
> commenting
> > it look like this
> > ///////////////////////////////////////////////////////
> > if (!S_is_integrity_protected("open-ims.test")){
> > # Unprotected REGISTER
> > # Variant 1 - accept also non IPSec clients
> > #if (!S_is_authorized("open-ims.test")) {
> > # S_challenge("open-ims.test");
> > # route(Service_Routes);
> > # t_reply("401", "Unauthorized - Challenging the UE");
> > # exit;
> > #}
> > #else{
> > # if (S_is_not_registered()){
> > # if (S_assign_server("open-ims.test")){
> > # route(Service_Routes);
> > # route(Charging_Function_Addresses);
> > # t_reply("200","OK - SAR succesful and registrar
> > saved");
> > # ISC_match_filter_reg("0");
> > # exit;
> > # }else{
> > # t_reply("500","Server Internal Error - Server
> > Assignment failed");
> > # exit;
> > # }
> > # }else{
> > # ISC_match_filter_reg("1");
> > # if (S_assign_server("open-ims.test")){
> > # route(Service_Routes);
> > # route(Charging_Function_Addresses);
> > # t_reply("200","OK - SAR succesful and registrar
> > saved");
> > # exit;
> > # }else{
> > # t_reply("500","Server Internal Error - Server
> > Assignment failed");
> > # exit;
> > # }
> > # }
> > #}
> >
> > # Variant 2 - accept only IPSec clients
> > #S_challenge("open-ims.test");
> > #route(Service_Routes);
> > #t_reply("401", "Unauthorized - Challenging the UE");
> > /////////////////////////////////////////////////////////
> > but when i try to register from pjsip dialler it give me the same error
> >
> > ERR:P-CSCF:cscf_get_authorization: Message does not contain
> Authorization
> > header.
> > 2(11553) INF:P-CSCF:P_add_integrity_protected: No authorization header
> > found.
> > ....
> >
> >
> > On Tue, May 17, 2011 at 12:53 PM, Carsten Bock <carsten at ng-voice.com>
> wrote:
> >>
> >> Hi,
> >>
> >> sorry my fault, it is named differently in OpenIMS-Core...
> >>
> >> Check the route "route[REGISTER]". Just comment the following lines out:
> >>
> >> # Unprotected REGISTER
> >> # Variant 1 - accept also non IPSec clients
> >> if (!S_is_authorized("open-ims.test")) {
> >> S_challenge("open-ims.test");
> >> route(Service_Routes);
> >> t_reply("401", "Unauthorized -
> >> Challenging the UE");
> >> exit;
> >> }else{
> >>
> >> and the according closing bracket ("}").
> >>
> >> Carsten
> >>
> >> there is configured, that the client should be
> >>
> >> 2011/5/17 abid khan <abidkhan135 at gmail.com>:
> >> > there is no such field in scscf.cfg...
> >> >
> >> > On Tue, May 17, 2011 at 12:38 PM, Carsten Bock <carsten at ng-voice.com>
> >> > wrote:
> >> >>
> >> >> Hi abid,
> >> >>
> >> >> just look for www_auth / proxy_auth in the scscf.cfg.
> >> >>
> >> >> Kind regards,
> >> >> Carsten
> >> >>
> >> >> 2011/5/17 abid khan <abidkhan135 at gmail.com>:
> >> >> > thanks for the reply. is there anyway through which i can disable
> >> >> > authentication in openIMS core.???
> >> >> >
> >> >> > On Tue, May 17, 2011 at 1:01 AM, Franz Edler
> >> >> > <franz.edler at technikum-wien.at>
> >> >> > wrote:
> >> >> >>
> >> >> >> Hi Abid Khan,
> >> >> >>
> >> >> >> > #define PJSIP_HAS_DIGEST_AKA_AUTH 1
> >> >> >> > but it doest not work.. i also made changes in openIMS core
> >> >> >> > by selecting Early IMS security
> >> >> >> > and Early IMS IP as my dialler IP from where i am requesting ...
> >> >> >> > but
> >> >> >> > it
> >> >> >> doesnot
> >> >> >> > work plz help me.
> >> >> >>
> >> >> >> You should dig a little bit into authentication mechanisms of IMS
> >> >> >> and
> >> >> >> try
> >> >> >> to
> >> >> >> analyze the signaling trace.
> >> >> >> Early IMS is a different authentication than Digest.
> >> >> >>
> >> >> >> If nothing helps add the tracefiel.
> >> >> >>
> >> >> >> - Franz
> >> >> >>
> >> >> >
> >> >> >
> >> >> >
> >> >> > --
> >> >> > Abid khan
> >> >>
> >> >> >
> >> >> >
> >> >> > _______________________________________________
> >> >> > OpenIMSCore-Users mailing list
> >> >> > OpenIMSCore-Users at lists.berlios.de
> >> >> > https://lists.berlios.de/mailman/listinfo/openimscore-users
> >> >> >
> >> >> >
> >> >>
> >> >>
> >> >>
> >> >> --
> >> >> Carsten Bock
> >> >> http://www.ng-voice.com
> >> >> mailto:carsten at ng-voice.com
> >> >>
> >> >> Schomburgstr. 80
> >> >> 22767 Hamburg
> >> >> Germany
> >> >>
> >> >> Mobile +49 179 2021244
> >> >> Office +49 40 34927219
> >> >> Fax +49 40 34927220
> >> >
> >> >
> >> >
> >> > --
> >> > Abid khan
> >> >
> >> >
> >>
> >>
> >>
> >> --
> >> Carsten Bock
> >> http://www.ng-voice.com
> >> mailto:carsten at ng-voice.com
> >>
> >> Schomburgstr. 80
> >> 22767 Hamburg
> >> Germany
> >>
> >> Mobile +49 179 2021244
> >> Office +49 40 34927219
> >> Fax +49 40 34927220
> >
> >
> >
> > --
> > Abid khan
> > NUST-SEECS BSIT
> > Final Year Student
> >
> >
>
>
>
> --
> Carsten Bock
> http://www.ng-voice.com
> mailto:carsten at ng-voice.com
>
> Schomburgstr. 80
> 22767 Hamburg
> Germany
>
> Mobile +49 179 2021244
> Office +49 40 34927219
> Fax +49 40 34927220
>
--
*Abid khan
NUST-SEECS BSIT
Final Year Student*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.pjsip.org/pipermail/pjsip_lists.pjsip.org/attachments/20110517/08964d32/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: register_trace.pcap
Type: application/cap
Size: 344247 bytes
Desc: not available
URL: <http://lists.pjsip.org/pipermail/pjsip_lists.pjsip.org/attachments/20110517/08964d32/attachment-0001.pcap>
