LST Configuration
To configure the Oracle Enterprise Communications Broker to use LSTs for authentication, you need to create a local subscriber table configuration element that identifies that LST. The LST must include users with minimum configuration of user name and password. Alternatively, an LST entry can include an AOR and a universal number. If there is no AOR, the username is assumed to be the AOR. The universal number field assigns a universal number to all contacts registered to the AOR.
You have the option of setting the registrar to authenticate. When messages requiring authentication are received and processed by the sip registrar, the Oracle Enterprise Communications Broker uses the identified LST for authentication.
In a local subscriber table configuration, you must define an object name. The Oracle Enterprise Communications Broker stores LST files in the /code/lst directory. Do not specify a path in the name field.
When the registrar configuration includes a reference to an LST, the registrar uses it as its user list. The configuration may or may not include digest authentication functionality, depending on user configuration. Additional registrar configuration includes setting the digest realm appropriately (this is required for authentication), and setting the hash secret. At this point you may save and activate your configuration.
Unencrypted passwords for each user in the table is computed with the MD5 hash function as follows:
MD5(username:digest-realm:password)
Configure the Registrar with an LST
Define the registrar for using the Local Subscriber Table (LST) for registration authentication as opposed to an external resource, or to accept registrations without authentication.
Edit an LST File
In the SIP Registrar configuration, select the LST file from the drop-down list and click the Manage LST button to display the Edit Local subscriber table dialog, from which you can add, change, copy and delete users from the LST.
Additional dialog controls include:
- Verify— Parse the LST for format errors and report if the syntax/format is incorrect.
- Save—Dismiss the dialog and save all changes.
- Compare—Identify the changes made to this LST since the last save.
- Change secret—Change the hash secret used to encrypt username, digest realm and password.
- Close—Dismiss the dialog without saving changes.
Perform the following steps to add a user to the LST: