Overview

SIP Digest Authentication is a security mechanism that verifies access to your SIP endpoint using a username and password.
This method uses a secure challenge-response mechanism, meaning the password is not sent in plain text.
SIP Authentication

Why It’s Needed

Digest Authentication protects your system from:
  • Unauthorized access
  • Fraudulent outbound calls
  • Unknown SIP connections
Only systems with valid credentials can connect.

How It Works

  1. A SIP client or provider attempts to connect
  2. The system requests authentication
  3. The client sends:
    • SIP Username
    • Hashed response based on the password
  4. If credentials are valid → access granted
  5. If invalid → access denied

Configuration

Provide the following credentials:
  • SIP Username — unique identifier for authentication
  • SIP Password — secure password used for verification
These credentials must match the configuration on your SIP provider or PBX.

When to Use

Use SIP Digest Authentication when:
  • Your SIP provider requires credential-based authentication
  • IP Whitelisting is not available or sufficient
  • You need an additional layer of security

Example

Username: sip-user-001
Password: ********

Best Practices

Use strong, unique passwords and avoid sharing credentials publicly.
Incorrect credentials will result in failed call connections.
For maximum security, combine Digest Authentication with IP Whitelisting when possible.