This is the new home of the egghelp.org community forum.
All data has been migrated (including user logins/passwords) to a new phpBB version.

For more information, see this announcement post. Click the X in the top right-corner of this box to dismiss this message.

script on cisco AS5350 for porta aaa authentication

Old posts that have not been replied to for several years.
Locked
t
tom

script on cisco AS5350 for porta aaa authentication

Post by tom »

Hi there,

I have a little problem with a authentication tcl script.

I am sending aaa authentication to porta billing server (Radius) they expect not only caller telefonenumber they need also the h323-conf-id.

information from porta was this:
Cisco IOS has bug with h323-conf-id in authentication requests. Cisco
sends H323-conf-id only in authorization requests. So you should add
this lines to your script before 'aaa authenticate':

Code: Select all

 if { [catch {set avsend(h323-conf-id) [infotag get leg_guid]} ] } {
         puts "WARNING: leg_guid is not available, please upgrade your IOS"
 } else {
         set guid [infotag get leg_guid]
}
the aaa authentication part is (and the part before... original from cisco)
(the "" means, NULL for the password field):

Code: Select all

    init_perCallVars

    leg setupack leg_incoming
    leg proceeding leg_incoming
    leg connect leg_incoming
    set ani [infotag get leg_ani]

 aaa authenticate  $ani ""
I did some debugs and tried to send in the 3 field the h323-conf-id...
the radius log is always saying: h323-conf-id=00000000 00000000 00000000 00000000/4

has someone an idea, how to send to porta billing the h323-conf-id?

Thanks
Tom
Top
User avatar
user
 
Posts: 1452
Joined: Tue Mar 18, 2003 9:58 pm
Location: Norway

Post by user »

upgrade your IOS?
Have you ever read "The Manual"?
Top
t
tom

Post by tom »

no, the IOS is ok....

Porta is saying:

Cisco IOS has bug with h323-conf-id in authentication requests. Cisco
sends H323-conf-id only in authorization requests.

with

Code: Select all

set guid [infotag get leg_guid]
I see the H323-conf-id with:

Code: Select all

puts $guid
at the cisco debug

The question is, how is porta expecting to get this ID? The suport from this guys is not very helpfull

Thanks
Tom
Top
User avatar
user
 
Posts: 1452
Joined: Tue Mar 18, 2003 9:58 pm
Location: Norway

Post by user »

From http://www.propersoft.ru/doc/vsaig3.pdf
Until Cisco IOS Release 12.0(7)T, the Cisco-specific parameters were overloaded into RADIUS attribute 44, Acct-Session-ID. See the document, RADIUS Attribute 44 (Accounting Session ID) in Access Requests for details about Acct-Session-ID.

In releases later than Cisco IOS Release 12.0(7)T, the overloaded Acct-Session-ID method continues to be the gateway’s default behavior, but you can configure the gateway to enable VSAs.
Have you ever read "The Manual"?
Top
t
tom

Post by tom »

no, this is not the problem... at the cisco we are seeing this h323-conf-id
and with the check of:

Code: Select all

if { [catch {set avsend(h323-conf-id) [infotag get leg_guid]} ] } {
         puts "WARNING: leg_guid is not available, please upgrade your IOS"
this IOS issue is checked.... the leg_guid is what I am looking for...

how porta or other billing systems expecting to send them.
when I put:

Code: Select all

aaa authenticate  $ani "" $guid
$ani = the caller telefonenumber
"" = password field empty
$guid = h323-conf-id [format: xxxxxxxx.xxxxxxxx.xxxxxxxx.xxxxxxxx]

the billing system is not accepting, but the value is ok...
with the command "aaa authenticate" I send calling number and password...
how to send the h323-conf-id

may be there is another command in tcl, I have to use
any ideas???

Tom
Top
t
tom

Post by tom »

I found something....

Code: Select all

aaa authenticate  $ani "" leg_incoming
is working

now I am searching how to send them the selected digits.. to place a call

Tom
Top
Locked

Return to “Archive”