Page History

Name

The user name of this SIP Security Profile.

Sbx Sec Mode

Use this parameter to define the SBC security mode for this SIP Security Profile.

• Sbc-pcscf

• (default) – SBC acts as integrated SBC+PCSCF mode.
• Sbc-only: SBC-only mode. The SBC disregards the configured security mechanism (ipsec-3gpp or tls) in the profile, if any.

When you configure Sbx Sec Mode

as

"Sbc-only", you must configure a Transparency Profile

in an egress trunk group.

• Refer

• to SIP Security Profile - CLI, "Command Examples

• " section to know more on how to configure a Transparency Profile.
• Refer

• to P-CSCF Security Mechanisms to

• learn the functionality of this feature.
  

Force Client
Security

If Enabled, while selecting the Security Mechanism, the precedence is given to the order of occurrence

of mechanism-

name values in

the Security-Client header.

• Disabled (default)
• Enabled

Reject Sec Unsupported Request

Enable this flag to reject the incoming REGISTER when it does not contain "sec-agree" header value (in Require or Proxy-Require headers) or does not contain any supported mechanism-name (ipsec-3gpp) in "Security-Client" header.
Use default setting "Disabled" to process messages using "Digest without TLS" security mechanism.

• Disabled (default)
• Enabled

Encryption

Preference

Specify the SIP Security Profile encryption preference.

• Always-encrypt

• – Use this option to reject REGISTER requests if the UE offers a NULL encryption algorithm. 

• None (default)

• – If this option is configured the SBC compares the UE's offer of encryption algorithms with the list of supported encryption algorithms, and selects the first matched entry in the 401 response for the REGISTER request. The SBC accepts the NULL encryption algorithm if it is the first one in the UE's offer.
• Null-forced

• –  Use this option to enforce NULL encryption irrespective of what encryption

• algorithm offered by the UE.

• The SBC acting as a Proxy For Call Session Control Function (P-CSCF) always disables encryption.