/
Switchvox - Managing the Switchvox SSL Certificate and Sangoma Phones

Switchvox - Managing the Switchvox SSL Certificate and Sangoma Phones

As of Switchvox version 6.6, Sangoma Phones require (by default) a secured SSL environment with a valid SSL certificate from Switchvox.

If your Switchvox is fully isolated from the public Internet, you can turn off this requirement.

In version 6.6, there is a new Sangoma Phone Setting in Switchvox SIP Phone extensions: Allow Insecure SSL. This is set to NO by default, meaning that the phone will not fully function in an unsecured SSL environment, and requires Switchvox to have a valid SSL certificate. In an unsecured SSL environment, phones don’t use the negotiated certificates to validate the host they are connecting to, leaving you vulnerable to Man-In-The-Middle, and other kinds of attacks.

You can change the setting Allow Insecure SSL to YES for your Sangoma Phones (desktop, or the Softphone App). Your Sangoma Phones will reconfigure, and fully function in an unsecured SSL environment.

The setting Allow Insecure SSL is found in the SIP Phone extension’s Sangoma Phone Settings, under the Advanced Phone Options. You can also set this for multiple phones at once, using the Bulk Modify tool. These items are found under Setup > Extensions > Manage

A Sangoma Phone will register with Switchvox and make calls if this setting is not correct, but apps such as Voicemail and Status will not work.

Return to Documentation Home | Sangoma Support