Feature Configuration

This section describes how to configure AMF Ciphering Algorithm.

This feature is configured under the amf-global configuration.

The supi-policy is configured per subscriber or for a group of subscribers. It’s done by associating the supi/supi-prefix with the supi policy. The operator policy name is configured under supi-policy and the call-control profile is configured under operator policy. Under call-control policy, authentication timer, retry, and security algorithms are configured.

To configure this feature, use the following configuration.

config 
  amf-global 
   call-control-policy call_control_policy_name 
      timers t3560 
       value time_value 
       retry retry_value 
      exit 
      security-algo security_algo_priority 
       ciphering-algo  [5G-EA0 | 128-5G-EA1 | 128-5G-EA2] 
       integity-prot-algo [5G-IA0 | 128-5G-IA1 | 128-5G-IA2] 
      exit 
   operator-policy operator_policy_name 
      ccp-name ccp_name 
   exit 
   supi-policy supi_policy_name 
     operator-policy-name operator_policy_name 
     end 

NOTES:

  • call-control-policy call_control_policy_name —Specify the call control policy name.

  • security-algosecurity_algo_priority —Specify the priority of security algorithms. Its values are 1, 2, 3.

  • ciphering-algo [5G-EA0 | 128-5G-EA1 | 128-5G-EA2] —Specify the Ciphering algorithm to use.

  • integity-prot-algo [5G-IA0 | 128-5G-IA1 | 128-5G-IA2] —Specify the Integrity protocol algorithm to use.

  • operator-policy operator_policy_name —Specify the operator policy name.

  • supi-policy supi_policy_name —Specify the SUPI policy name. SUPI policy name is the number which represents PLMN ID.

    Example: amf-global supi-policy 223556 operator-policy-name local