Authentication and Authorization

Authenticating a SIP user means verifying its identity if the user is initiated into the system. Authorizing a SIP user means verifying its rights if the user is allowed to access the system. Both processes are always invoked in connection with the registration procedure.

When the SIP user is initiated in the MX-ONE Service Node, the system administrator has to configure an Individual Authorization Code (IAC) for the SIP user directory number, which will be used as the PIN code/Password. The user of the SIP terminal needs to enter this PIN code to get registered in the system.

The PIN code entered is compared to the IAC stored in the MX-ONE. The registration procedure is successful if the PIN code matches.
Note: If the SIP user initiated in the MX-ONE Service Node has no IAC assigned to it, then there is no request/check for the PIN code. From a security point of view, it is strongly recommended always to assign a PIN code to the user.

If the authentication and authorization procedures are successful, the user gets the traffic categories associated with the SIP user directory number.

For Mitel 6xxx terminals, at registration, the MX-ONE Service Node will provide the SIP terminal with its directory number and name and information related to services that either are active or can be invoked from the terminal (URI links).

EDNs can have separate passwords (Authorization codes), which differ from the SIP user's password. See the description for the AUTHORIZATION CODE FOR EXTENSION.

Parent topic: Procedures, SIP extension