Filter
Top Products
TANDBERG Border Controller User Manual
5.2 Authentication
The TANDBERG Border Controller can use a user name and password based challenge-response
scheme to permit registrations. For details of how to configure your endpoint with the appropriate
information, please consult your endpoint manual.
The Border Controller supports the ITU H.235 [1] specification for authenticating the identity of
network devices with which theBorder Controller communicates.
In order to verify the identity of a device, the Border Controller nee ds access to the password
information. This credential information may be stored in a local database on the Border Controller
or obtained from an LDAP Director Server.
5.2.1 Authentication using a local database
To configure the Border Controller to use the local database of credentials during authentication
issue the following commands
xConfiguration Authentication Mode: On
xConfiguration Authentication Database: LocalDatabase
Each credential in the local database has a username and a password. To manage the credentials
in the local database use the following commands
xcommand CredentialAdd <user name> <password>
xcommand CredentialDelete <credential index>
To show the credentials in the local database use the command
xConfiguration Authentication Credential
The credential database can also be configured via the web interface on the Border Controller
Configuration → Credentials page (Figure 13).
Figure 13: Adding LDAP credentials
5.2.2 Authentication using an LDAP server
The authentication information can be obtained from an LDAP server. The directory on the
LDAP ser ver should be configured to implement the ITU H.350 specification to store H.235
credentials for devices that the Border Controller communicates with. The directory should also
be configured with the H.323 aliases of endpoints that will register with the Border Controller.
For instructions on how to configure common third party LDAP servers, see Appendix B.
21