[cisco-voip] What else uses CallManager authentication?
Lelio Fulgenzi
lelio at uoguelph.ca
Fri Nov 9 17:00:44 EST 2007
We are investigating Sun's Access Manager to front end our campus services that require authentication. They have a proxy solution for servers that "cannot be touched" - but in order to make this work, the proxy has to pass the userID and password to the end device using the appropriate method, e.g. post,http headers, etc. The only way to do this is to lookup the password, but this is not really possible in LDAP because of the oneway encryption.
A simple and effective solution, would be to change everyone's password in CallManager to the same password, or shared secret in this case, so the proxy solution would pass the same password every time.
I'm not to concerned about this since our AM team says it's secure and there are many example of this being done.
My one concern is what about other applications that use the callmanager userID and password that may not be able to be front ended with this proxy?
I know this is really out there, but thought I would see what people think.
--------------------------------------------------------------------------------
Lelio Fulgenzi, B.A.
Senior Analyst (CCS) * University of Guelph * Guelph, Ontario N1G 2W1
(519) 824-4120 x56354 (519) 767-1060 FAX (JNHN)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
"Buffalo buffalo Buffalo buffalo buffalo buffalo Buffalo buffalo." WJR
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://puck.nether.net/pipermail/cisco-voip/attachments/20071109/1ca983b2/attachment.html
More information about the cisco-voip
mailing list