User:Mauro/Sandbox

From VoIP.ms Wiki

Revision as of 20:45, 28 August 2019 (view source) Mauro (Talk | contribs) (→System configuration) ← Older edit		Latest revision as of 17:30, 4 September 2019 (view source) Mauro (Talk | contribs)
(11 intermediate revisions not shown)
Line 1:		Line 1:
-	[[File:VCS754-thumb.PNG|250px|thumb|left]]	+	Two-factor authentication is a method for securing the account, there are several methods available however in VoIP.ms we offer 2 options.
-	<br clear="all" />	+	<div><ul> <li style="display: inline-block; vertical-align:top;"> </li> </ul></div>
		+	*2 step authentication using a one time code sent via email (OTP) You can find the guide for this feature in our wiki page [[Two-step Verification | Two Step Verification]]
-	The [https://businessphones.vtech.com/pd/3439/VCS754-ErisStation-SIP-Conference-Phone-with-Four-Wireless-Mics Vtech VCS754 ErisStation] is a modern and cost-effective conferencing solution for enterprises of any scale.	+	*And authentication based on a time-based one-time Password (TOTP) using an authenticator app like FreeOTP, Google Autheticator, Microsoft Authenticator, Authy, etc.
-	With its modern and sleek design, the C520 fits seamlessly into your working day. Two detachable DECT microphones can be positioned freely or carried in the room as required to ensure the best sound and voice quality. Built-in charging stations with magnetic bays directly on the base station mean both microphones are always charged and ready for use in the next meeting. The conference phone also features automatic volume control and digital noise reduction so that all call participants can be understood in best sound quality.
-	<br clear="all" />	+	Using TOTP as the authentication method allows an extra layer of security on your VoIP.ms account which requires a device with access to such authenticator app as those mentioned above.
		+
		+	Enabling TOTP will disable 2 step Authentication (OTP) via email as both are mutually exclusive.
	__TOC__		__TOC__
-	=='''Accessing The Web Interface'''==	+	== Activate This Option for your Account ==
-		+
-	In order to configure the '''VCS754''' to be used along with our service, it is required to access it's web interface settings. For this, the IP address of the device must be acquired.	+
-		+
-	To perform this click on the "'''''Menu'''''" button of the phone. Once on the settings menu, scroll down to: " '''''Status''''' " , then select: " '''''Network''''' ". On this section, you'll need to take note of the IP address shown beside: " '''''IP''''' ". It should read back something as: " '''''192.168.0.1''''' ".	+
-		+
-	Once you have the IP address please open a web browser of your preference and it's URL bar enter the IP address you got by prepending: " '''''http://''''' " and access it. Once accessed, you'll be prompted to authenticate.	+
-		+
-	Default's credentials are:	+
-	user: '''''admin'''''	+
-	password: '''''admin'''''	+
-		+
-	=='''System configuration'''==	+
-		+
-	Once logged in you'll be presented with this screen:	+
-	[[File:VCS754-1.PNG|thumb|none|600px]]
-	Here, please navigate to: ''System''. Once on this page, select '''''Account 1''''' under ''"SIP account Management"'' from the colum on the left (or the one you will configure):
-	[[File:VCS754-2.png|thumb|none|600px]]	+	1) To active this feature go to your Customer portal home and click on “'''Main Menu'''” > “'''<font color="#FF7C21">Account Settings</font>'''”
-	===System Account Management Account X===	+	:[[File:TLS-SRTP-Steps0001.png|border|thumb|none|600px]]
-	====General Account Settings====
		+	2) Once you are in the "Account settings" section, navigate to the security tab and scroll down to find the Account security options "2FA/TOTP Authentication" and click on the "Enable" button.
-	:*'''''Account Label:''''': The name you wish to pass when calling out
-	:*'''''Display Name''''': The name you wish to pass when calling out
-	:*'''''User Identifer''''': 100000 (replace with your SIP main account or subaccount)
-	:*'''''Authentication Name''''': 100000 (replace with your SIP main account or subaccount)
-	:*'''''Authentication Password''''': Your SIP account's password
-	:*'''''Dial Plan''''': ''x+P'' (By default)
-	====SIP Server====	+	:[[File:TOTP_enable.PNG|border|thumb|none|600px]]
-	:*'''''Server Address''''': One of VoIP.ms multiple ''[[Choosing Server | SERVERS]]'', you can choose the one closest to your location
-	:*'''''Port''''': 5060 (Aditionally you could use 5080 or 42872)
-	[[File:VCS754-3.PNG|thumb|none|600px]]	+	3) A confirmation window will pop up, click on "Yes, ge my QR code" button.
-	====Registration====	+	:[[File:TOTP_OK.PNG|border|thumb|none|600px]]
-	:*'''''Server Address''''': Be sure that you use the same one you used at '''Server Address'''
-	:*'''''Port''''': 5060 (Aditionally you could use 5080 or 42872)
-	:*'''''Expiration (secs)''''': 300
-	:*'''''Registration Freq (secs)''''': 10
-	====Outbound Proxy====	+	4) A QR code will show up in the new window, you can download this image, scan it with your authenticator app (Google Authenticator in the image below) or input the text string below the image. Either will work.
-	:*'''''Server Address''''': Be sure that you use the same one you used at '''Server Address'''
-	:*'''''Port''''': 5060 (Aditionally you could use 5080 or 42872)
-	====Backup Outbound Proxy====	+	:[[File:TOTP_code.PNG|border|thumb|none|600px]]
-	''Leave these settings as they are by default''
-	====Audio====
-	We strongly recommend to have set here only the audio codec(s) you have enabled in your SIP account's settings (preferrably only one). In case you need to have more than 1 Audio codec, it can be set as follows:
-	:*'''''Ringer Tone''''': 1 (or the one you prefer)	+	== Pairing your authenticator app ==
-	:*'''''Codec Priority 1''''': G.711u	+
-	:*'''''Codec Priority 2''''': G.729a/b	+
-	:*'''''Codec Priority 3''''': None	+
-	:*'''''Codec Priority 4''''': None	+
-	:*'''''Codec Priority 5''''': None	+
-	[[File:VCS754-4.PNG|thumb|none|600px]]
-	====Signaling Settings====
-	:*'''''Local SIP Port''''': 5060 (Aditionally you could use 5080 or 42872)	+	1) Open your preffered authenticator app, for the purpose of this wiki will be using Google authenticator. Click on the begin button if you haven't used the app before or click on add an account button otherwise.
-	:*'''''Transport''''': UDP or TCP (Depending on your network's configuration)	+
-	You can leave all the other values as they are unless you actually need to specify them.
-	Scroll down and click on '''''"Save"''''' then you can go back to the '''''"Status"''''' tab, if all is correct, you will see your account as '''Registered'''	+	:[[File:TOTP_GAUTH.png|border|thumb|none|400px]]
-	[[File:VCS754-5.PNG|thumb|none|600px]]
-	=== Using TLS/Encryption ===	+	2) Use the scanner or input manually the code using your keyboard. After added you'll see a timed six digit code on screen
-	The Snom C520 is compatible with [[Call Encryption - TLS/SRTP | Call Encryption]]. However to use it, you need to change some settings in your device:
-	==== Ports for TLS ====
-	When you enable encryption calls from our system, the ports need to be changed to the encrypted ones. This is just adding " 1 " to the used port, leaving the available ones as 5061, 5081, 42873. Make the proper changes in your device's settings to have it working	+	:[[File:TOTP_GAUTH2.png|border|thumb|none|400px]]
-	==== Audio Section ====
-	Mark this "[]Enable Voice Encryption (SRTP)"
-	<div><ul>	+	3) You can now input in the voip.s website the code in the TOTP window below were the QR code is displayed then click on the "Validate" button to complete the validation.
-	<li style="display: inline-block;"> [[File:VCS754-6.PNG|thumb|none|400px]] </li>	+
-	<li style="display: inline-block;"> [[File:VCS754-7.PNG|thumb|none|600px]] </li>	+
-	</ul></div>	+
-	== Factory Reset ==	+	The code in the screen is timed and will only work while the timer is shown, after it's done the code will change and you'll need to input the new code instead.
-	This is '''NOT''' always required and will wipe all your settings. Do not do it unless strictly necessary.
-	In case you need to factory C520 phone, you could to following this sequence :	+	:[[File:TOTP_code.PNG|border|thumb|none|600px]]
-	Press '''[Menu] key''' + '''0 7 # * 1 8 5 0 #'''
-	This means start with the Arrow up key an then type: '''07#*1850#'''
-	If everything went right, it shows a Message. And than reboots.	+	6) After the last step is done and if everything is correct a warning will show up letting you know the code will appear only once more in your account which you can download again. Click either download or accept to finish.
-	[[category:SIP phones]]	+	:[[File:TOTP_warning.PNG|border|thumb|none|600px]]

---

Latest revision as of 17:30, 4 September 2019

Two-factor authentication is a method for securing the account, there are several methods available however in VoIP.ms we offer 2 options.

• 2 step authentication using a one time code sent via email (OTP) You can find the guide for this feature in our wiki page Two Step Verification

• And authentication based on a time-based one-time Password (TOTP) using an authenticator app like FreeOTP, Google Autheticator, Microsoft Authenticator, Authy, etc.

Using TOTP as the authentication method allows an extra layer of security on your VoIP.ms account which requires a device with access to such authenticator app as those mentioned above.

Enabling TOTP will disable 2 step Authentication (OTP) via email as both are mutually exclusive. 

Contents 1 Activate This Option for your Account 2 Pairing your authenticator app

Activate This Option for your Account

1) To active this feature go to your Customer portal home and click on “Main Menu” > “Account Settings”

2) Once you are in the "Account settings" section, navigate to the security tab and scroll down to find the Account security options "2FA/TOTP Authentication" and click on the "Enable" button.

3) A confirmation window will pop up, click on "Yes, ge my QR code" button.

4) A QR code will show up in the new window, you can download this image, scan it with your authenticator app (Google Authenticator in the image below) or input the text string below the image. Either will work.

Pairing your authenticator app

1) Open your preffered authenticator app, for the purpose of this wiki will be using Google authenticator. Click on the begin button if you haven't used the app before or click on add an account button otherwise.

2) Use the scanner or input manually the code using your keyboard. After added you'll see a timed six digit code on screen

3) You can now input in the voip.s website the code in the TOTP window below were the QR code is displayed then click on the "Validate" button to complete the validation.

 The code in the screen is timed and will only work while the timer is shown, after it's done the code will change and you'll need to input the new code instead.

6) After the last step is done and if everything is correct a warning will show up letting you know the code will appear only once more in your account which you can download again. Click either download or accept to finish.