As of Switchvox version 6.6, Digium Phones require (by default) a secured SSL environment with a valid SSL certificate from Switchvox.
If your Switchvox is fully isolated from the public Internet, you can turn off this requirement.
In version 6.6, there is a new Digium Phone Setting in Switchvox SIP Phone extensions: Allow Insecure SSL. This is set to NO by default, meaning that the phone will not fully function in an unsecured SSL environment, and requires Switchvox to have a valid SSL certificate. In an unsecured SSL environment, phones don’t use the negotiated certificates to validate the host they are connecting to, leaving you vulnerable to Man-In-The-Middle, and other kinds of attacks.
You can change the setting Allow Insecure SSL to YES for your Digium Phones (desktop, or the Softphone App). Your Digium Phones will reconfigure, and fully function in an unsecured SSL environment.
The setting Allow Insecure SSL is found in the SIP Phone extension’s Digium Phone Settings, under the Advanced Phone Options. You can also set this for multiple phones at once, using the Bulk Modify tool. These items are found under Setup > Extensions > Manage.
A Digium Phone will register with Switchvox and make calls if this setting is not correct, but apps such as Voicemail and Status will not work.
