Versions Compared

Old Version 4

changes.mady.by.user Marc Tribbe

Saved on

compared with

New Version 5

changes.mady.by.user Marc Tribbe

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Select the provisioning and management protocol for each brand within your tenants by modifying the brand-specific security settings.

...

With brand-specific security settings, you can select the provisioning and management protocol for each brand within your tenants. This feature must be configured by Phonism support.

...

  • HTTPS

  • MTLS (Mutual TLS) 

  • HTTP

  • DEFAULT - If DEFAULT is configured, the system communicates by the protocol used in the device's request. Most manufacturers use HTTPS.

CONFIGURE

You can configure these settings per tenant.

...

The brand security is active on the next provisioning time of the device.

...

MTLS LIMITATIONS

  • Currently, MTLS (Mutual TLS) is only supported for PolycomYealink, and Cisco brands. 

  • Support for MTLS in these brands is specific to the firmware version the device is running. Some older firmware versions of the brand may not support it.
    Phonism supports versions according to the documentation provided by the device vendor.

  • When MTLS is selected for a brand, any device of that brand is expected to provide a client certificate, which is baked into the device’s firmware.

  • For the case when the tenant is configured with MTLS for a brand but a specific device of that brand on that tenant does not support MTLS, then the device is allowed to provision over default transport.

  • Currently, MTLS is not supported with whitelabel domains.

LOGS AND MONITORING

MTLS status

In the phones list, you can see which devices are successfully or unsuccessfully connected via MTLS.

...

A Green or Blue badge indicates success, and a Red badge indicates failure.

...

MTLS functionality

You can view the MTLS functionality from the Logs page. Requests from devices are logged and listed with the protocol that was used to perform the request. In the example below, the request was performed (using MTLS). If it was performed via plain SSL/TLS it would show (using HTTPS) instead.

...

Debug potential issues with MTLS

Device protocol/communications-related problems (mostly around MTLS) are logged and can be seen on the Logs page. To easily find which errors are regarding TLS errors for your devices, filter using the keyword “TLS.”

...