The Sonus SBC 1000/2000 system supports multiple forms of authentication, which authentication method is used depends on the prototype of credentials presented by the user when attempting to login, either one of the following:
usernamesimple alphanumeric format – applicable to local and RADIUS users
user@domainformat – applicable to Active Directory and known as the userPrincipalName attribute
domain\usernameformat – applicable to Active Directory and known as the SAMAccountName attribute in Active Directory
Active Directory Authentication
If the user presents credentials in either the
domain\username format, the Sonus SBC 1000/2000 attempts to authenticate the user against Active Directory. If the user is authenticated belongs to a group mapped with a Sonus SBC 1000/2000 access level, then they are given access and granted permissions. If the user fails to authenticate, they are denied access and no further attempt to authenticate the user is made.
Local and RADIUS Authentication
If the user presents credentials in the simple alphanumeric format, the Sonus SBC 1000/2000 first attempts to authenticate the user against the Local User Table. If the user's credentials are not found or the user's password does not match, authentication is then attempted against the RADIUS server with respect to the RADIUS User's class mapping with Sonus SBC 1000/2000 access level.