ip touch 4038 - problem with certificate download

marc_bo · Post by **marc_bo** » 31 Oct 2014 05:59

Hello,

I'm new at the forum and from Germany so please excuse my bad english.

I have to set up network access control in our company. And my Problem is to get the certificates automaticly to the IP touch 4038.

I set up the lanpbx.cfg like this:
CERTSRV_IP=10.15.3.20 CERTSRV_PORT=80 CERTSRV_PATH=/certserv

The certificate is at the folder /certserv like this: "macaddress-ip-phone".pfx

When the IPphone boots up, I have the following steps:
1/5network start
2/5 network setup
3/5 config download
bad file content
5/5 connecting
connected

Hope anybody can help me!!

kind regards
Marc

Post by **frank** » 31 Oct 2014 15:52

So your lanpbx.cfg looks kind of like this:

Code: Select all

TYPE=A4400 VERSION=1 IP_DOWNLOAD=192.168.1.120 IP_CPU1=192.168.1.120
CERTSRV_IP=1.2.3.4 CERTSRV_PORT=80 CERTSRV_PATH=/certsrv

?

marc_bo · Post by **marc_bo** » 03 Nov 2014 03:59

Hello,

my lanpbx.cfg first looks like this:

Code: Select all

CERTSRV_IP=10.1.3.2 CERTSRV_PORT=80 CERTSRV_PATH=/certserv

Now I fixed like this:

Code: Select all

TYPE=A4400 VERSION=1 IP_DOWNLOAD=10.1.2.3 IP_CPU1=10.1.2.4 IP_CPU2=10.1.2.5
CERTSRV_IP=10.1.3.2 CERTSRV_PORT=80 CERTSRV_PATH=/certserv

Now I can see no bad file error. But my certificate will not be downloaded automaticly.

Post by **tot3nkopf** » 03 Nov 2014 04:28

Which is the type of access required by the web server? (anonymous or basic?)
Did you configured the access user and password on IP Touch? (default user is ALCIPT and no password is configured by default)

marc_bo · Post by **marc_bo** » 03 Nov 2014 05:14

In my test I use Apache (XAMPP) and in the conf is the basic access loaded:
LoadModule auth_basic_module modules/mod_auth_basic.so
#LoadModule authn_anon_module modules/mod_authn_anon.so

Should I try with anonymous?

There are no credentials configured, I use the standard user ALCIPT without a password.

Additional Information:
I tried with a certificate with password and one without.

I can download the certificate manually on the IP touch Phone "Menu\Certificate\Get Certificate".
When i go to the get certificate menu i see my IP parameters, which I set in my lanpbx.cfg...

Post by **frank** » 03 Nov 2014 08:17

I would say try with anonymous

marc_bo · Post by **marc_bo** » 03 Nov 2014 08:52

I tried but no changes...

The thing is, when i start the download manually it works!

Post by **cavagnaro** » 03 Nov 2014 08:54

Then probably the certificate format is not correct?

Post by **tot3nkopf** » 03 Nov 2014 09:25

marc_bo wrote:I tried but no changes...

The thing is, when i start the download manually it works!

You need to activate manually the certificate... (at least in my understanding from what I have read in the docs) I do not think this can work automatically...Raise an eSR and ask ALU if this is the case and maybe open a feature req for an automated process...
Funny is that we need to do the same tests here..

I will come back.

Post by **tot3nkopf** » 03 Nov 2014 09:27

cavagnaro wrote:Then probably the certificate format is not correct?

Manually it is working....

Alcatel Unleashed

ip touch 4038 - problem with certificate download

ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download

Re: ip touch 4038 - problem with certificate download