Yealink provisioning template

Discussion in 'Ideas' started by complex1, Jul 12, 2017.

Yealink provisioning template 5 5 4votes
5/5, 4 votes

  1. complex1

    complex1 Active Member

    Joined:
    Jan 25, 2010
    Messages:
    789
    Likes Received:
    45
    Hi,

    Please change the Yealink templates to prevent unauthorized login via User or Var account, to keep hackers outside the phone.
    After provisioning, the User and Var account are still open for everybody.
    Painful detail: One of the phones was hacked this way and the costs ware $1000

    Code:
    #######################################################################################
    ##                                Security Settings                                  ##
    #######################################################################################
    
    #Enable or disable the phone to only accept the certificates in the Trusted Certificates list;
    #0-Disabled, 1-Enabled (default);
    {IF $uagroup=NoSSL}
    security.trust_certificates = 0
    {ELSE}
    security.trust_certificates = 1
    {ENDIF}
    
    #Define the login username and password of the user, var and administrator.
    #If you change the username of the administrator from "admin" to "admin1", your new administrator's username should be configured as: security.user_name.admin = admin1.
    #If you change the password of the administrator from "admin" to "admin1pwd", your new administrator's password should be configured as: security.user_password = admin1:admin1pwd.
    
    #The following examples change the user's username to "user23" and the user's password to "user23pwd".
    #security.user_name.user = user23
    #security.user_password = user23:user23pwd
    #The following examples change the var's username to "var55" and the var's password to "var55pwd".
    #security.user_name.var = var55
    #security.user_password = var55:var55pwd
    
    security.user_name.user = user
    security.user_name.admin = admin
    security.user_name.var = var
    security.user_password = user:%%DESKPHONE_PASSWORD%%
    security.user_password = admin:%%DESKPHONE_PASSWORD%%
    security.user_password = var:%%DESKPHONE_PASSWORD%%
    
    #Enable or disable the 3-level permissions (open var); 0-Disabled (default), 1-Enabled;
    #Require reboot;
    security.var_enable =
    
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...