T4XG series not able to autoprovision over https with FreePBX 14 - Printable Version +- Yealink Forums (http://forum.yealink.com/forum) +-- Forum: IP Phone Series (/forumdisplay.php?fid=4) +--- Forum: T4x Series (/forumdisplay.php?fid=31) +--- Thread: T4XG series not able to autoprovision over https with FreePBX 14 (/showthread.php?tid=41194) |
T4XG series not able to autoprovision over https with FreePBX 14 - JaredBusch - 10-06-2017 05:37 PM You can see this thread on the FreePBX forums for all the details. https://community.freepbx.org/t/yealink-t4xg-phones-will-not-autoprovision-over-https-with-freepbx-14/44617 But to summarize: The Yealink T42G and T46G will not correctly communicate to over https FreePBX 14 with a Let's Encrypt Cert. Neither for autoprovisioning https://pbx.domain.com:1443, nor to pull a remote phone book https://pbx.domain.com/contacts.xml If I change it to http for those, it works perfectly. If I connect to a FreePBX 13 instance it works perfectly with https or http. RE: T4XG series not able to autoprovision over https with FreePBX 14 - Michael_Yealink - 10-12-2017 02:33 PM Hi There Thanks for your information , and i belive that it is the certificate not correct which may case this issue , you can confirm with elow setps : 1. Disable the "Only accepte trusted certificate" in web site. 2. Auto proviison with https again , it should work. So my adivse is to use th bulit in certificate for https server , you can find all certficate infrmaiton from below link : http://support.yealink.com/faq/faqInfo?id=691 BR Michael RE: T4XG series not able to autoprovision over https with FreePBX 14 - JaredBusch - 10-17-2017 04:49 AM (10-12-2017 02:33 PM)zouym Wrote: Hi There That is not the problem. 1. I have tested with that setting turned off. 2. I have test by loading hte LE cert from FreePBX into the Trusted Certificates. 3. The Firmware of the T42G and T46G I am testing with is 29.82.0.20 and 28.82.0.20 and these models are supposed to support LE with this firmware. Inside FreePBX I receive a standard http error code of 408. From the phone I see this. Phone talking to FreePBX 13: Code: <134>Oct 8 03:48:37 ATP [1022]: ATP <6+info > Upgrade from com.cfg Phone Talking to FreePBX 14: Code: <134>Oct 8 03:33:08 ATP [780]: ATP <6+info > Upgrade from mac.boot Notice that the initial connection never completes when talking to FreePBX 14. The phone never gets a cipher like it did with FreePBX 13. This line: Code: <134>Oct 8 03:48:37 LIBD[1022]: DCMN<6+info > ssl cipher num is 18 RE: T4XG series not able to autoprovision over https with FreePBX 14 - JaredBusch - 11-02-2017 11:47 PM Still unable to resolve this. I have now also tested the same FreePBX install with a GoDaddy SSL cert. That one works fine. It is only the Let's Encrypt cert that has a problem. How can I resolve this? LE cert on FreePBX 13 works. LE cert on FreePBX 14 does not. I have reviewed the code and there are no differences in FreePBX between 13 and 14 in regards to the SSL certificates. I can access the config files in every browser with no error. It is only the T4XG models (and I assume P but I do not have one to test). The T4XS models work with the LE cert on FreePBX 14. RE: T4XG series not able to autoprovision over https with FreePBX 14 - Michael_Yealink - 11-23-2017 09:52 AM Hi There, Sorry for the inconvenience ,so in order to speed up this issue , would you please kindly provide the pcap file , bin file and level 6 log file to me so that we can submit to R&D for analysis. Please provide LE cert for us Please kindly provide auto provision with FreePBX V13 LE cert OK trace files (pcap file , bin file and level 6 log file) Please kindly provide auto provision with FreePBX V14 LE cert OK trace files (pcap file , bin file and level 6 log file) As the phone will reboot , then it is advised to use a wireshark tool to get the pcap file , for how to download the tool and use it , please refer to the link below : http://forum.yealink.com/forum/showthread.php?tid=15529 For the syslog, please export it to server side , before phone reboot , you can refer to the guide download from below link : http://forum.yealink.com/forum/showthread.php?tid=15529 For the config.bin file , please refer to the FAQ below : http://support.yealink.com/faq/faqInfo?id=311 After you collect all the three files, just upload them to below link: http://ftp.yealink.com/?ShareToken=451B59FC3B79AD083C07AAF9C4810C7F0C14B169 Let me know if any question TKS & BR Michael Yealink Wiki : http://support.yealink.com/ RE: T4XG series not able to autoprovision over https with FreePBX 14 - JaredBusch - 02-27-2018 11:20 PM Just as an update, and I recently had someone with a new FreePBX 14 install using a T19PE2 also have problem with TLS. I know support asked for all of the above information, but I have limited free time to perform actions like this. So far, I have worked around the issue by not using the LE cert. This is an easily reproducible issue, that support could test themselves. |