Feature Configuration
This section describes how to configure AMF Ciphering Algorithm.
This feature is configured under the amf-global configuration.
The supi-policy is configured per subscriber or for a group of subscribers. It’s done by associating the supi/supi-prefix with the supi policy. The operator policy name is configured under supi-policy and the call-control profile is configured under operator policy. Under call-control policy, authentication timer, retry, and security algorithms are configured.
To configure this feature, use the following configuration.
config
amf-global
call-control-policy call_control_policy_name
timers t3560
value time_value
retry retry_value
exit
security-algo security_algo_priority
ciphering-algo [5G-EA0 | 128-5G-EA1 | 128-5G-EA2]
integity-prot-algo [5G-IA0 | 128-5G-IA1 | 128-5G-IA2]
exit
operator-policy operator_policy_name
ccp-name ccp_name
exit
supi-policy supi_policy_name
operator-policy-name operator_policy_name
end
NOTES:
-
call-control-policy call_control_policy_name —Specify the call control policy name.
-
security-algosecurity_algo_priority —Specify the priority of security algorithms. Its values are 1, 2, 3.
-
ciphering-algo [5G-EA0 | 128-5G-EA1 | 128-5G-EA2] —Specify the Ciphering algorithm to use.
-
integity-prot-algo [5G-IA0 | 128-5G-IA1 | 128-5G-IA2] —Specify the Integrity protocol algorithm to use.
-
operator-policy operator_policy_name —Specify the operator policy name.
-
supi-policy supi_policy_name —Specify the SUPI policy name. SUPI policy name is the number which represents PLMN ID.
Example:
amf-global supi-policy 223556 operator-policy-name local