This article describes the steps necessary to configure the with a SIP peer or with an Internet Telephony Service Provider (ITSP) that requires digest authentication with 401 Unauthorized challenge.
This document assumes that you have already created a Signaling Group and a SIP Server table for the ITSP.
Verify that your is loaded with the correct boot image version and that your SBC Edge base software version is at least version 2.0.0, build 108.
The system must have the necessary licenses to make calls.
The configuration is comprised of three overall steps:
Add a Remote Authorization Table
Add a Remote Authorization entry
Assign the Remote Authorization Table to the SIP Server Table
The call flow below depicts an outbound call from Lync to ITSP via Sonus SBC 1000/2000.
The debug log produced at Trace level will show the information that is used to compute the MD5 string used in the Authorization header:
[2012-04-12 16:17:40,303] 5688 0001 com.net.ux.sip TRACE (Credentials.cpp:451) - computeResponse: creating credentials: algorithm : "MD5" userName : "d8Er27ScWIQ" passWord : "uw83i29BeY3x" realm : "ITSPRealm" nonce : "ITSPRealmDe98wSj8euJdU8SHs8" cNonce : "baea32a3" nonceCount: "00000001" qop : "auth" method : "INVITE" uri : "sip:email@example.com:5070;user=phone"