The figure illustrates the steps required for digest authentication handling in Converged Application Server:

1. The client sends a request to the SIP Servlet.

2. The Digest Identity Asserter Provider sends a challenge to the client to identify itself.

3. The client sends a challenge response

4. The Digest Identity Asserter Provider retrives a hashed A1 or unencrypted password from the LDAP or RDBMS.

5. The Digest Identity Asserter Provider responds to the client's challenge response using digest verification.

6. The Authentication Provider verifies the identity of the client againist the LDAP or RDBMS and determines the group membership of a validated user.