[OpenSIPS-Users] ha1 password authentication

Răzvan Crainea razvan at opensips.org
Mon Sep 14 16:47:02 CEST 2015 

Hi, Nabeel!

You should set the 'calculate_ha1' to 0 (it is already computed in the 
ha1 column) and set the password_column to 'ha1'.

modparam("auth_db", "calculate_ha1", 0)
modparam("auth_db", "password_column", "ha1")

Best regards,

Răzvan Crainea
OpenSIPS Solutions
www.opensips-solutions.com

On 09/14/2015 12:00 PM, Nabeel wrote:
>
> Hi razvan,
>
> By default, the opensips script from menuconfig already has 
> 'calculate_ha1' set to 'yes' (and 'password_column' set to 
> 'password').  Do you mean set 'calculate_ha1' to '0'? Then should the 
> 'password_column' remain 'password', or should it point to the 'ha1' 
> column?  If the column remains 'password', should this column contain 
> the encoded ha1 password?
>
> Please clarify.
>
> On 14 Sep 2015 08:04, "Răzvan Crainea" <razvan at opensips.org 
> <mailto:razvan at opensips.org>> wrote:
>
>     Hi, Nabeel!
>
>     By default, OpenSIPS uses the password column to authenticate
>     users. If you want to use HA1 authentication, you should set the
>     calculate_ha1 parameter[1].
>
>     [1] http://www.opensips.org/html/docs/modules/2.1.x/auth_db#id293468
>
>     Best regards,
>
>     Răzvan Crainea
>     OpenSIPS Solutions
>     www.opensips-solutions.com <http://www.opensips-solutions.com>
>
>     On 09/13/2015 10:25 AM, Nabeel wrote:
>>
>>     Just tested this and I'm not able to register without having the
>>     plain text password present in the 'password' column in db.  How
>>     can I make OpenSIPS register using only the ha1 hashed value? I
>>     tried commenting out and changing the 'password_column' attribute
>>     in config but it didn't work.
>>
>>     On 12 Sep 2015 12:40, "Nabeel" <nabeelshikder at gmail.com
>>     <mailto:nabeelshikder at gmail.com>> wrote:
>>
>>         Hi,
>>
>>         My SIP client only uses the 'ha1' password field from
>>         database to authenticate users and ignores the 'password'
>>         field totally.  Will OpenSIPS allow such authentication to
>>         complete and register the user by using only the ha1 hashed
>>         password?
>>
>>
>>
>>     _______________________________________________
>>     Users mailing list
>>     Users at lists.opensips.org <mailto:Users at lists.opensips.org>
>>     http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>     _______________________________________________
>     Users mailing list
>     Users at lists.opensips.org <mailto:Users at lists.opensips.org>
>     http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opensips.org
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20150914/dc84dc9c/attachment-0001.htm>

More information about the Users mailing list