Moderators: gerski, enjay, williamconley, Op3r, Staydog, gardo, mflorell, MJCoate, mcargile, Kumba, Michael_N
williamconley wrote:1) Good job posting your Vicidial Version with Build.
2) Please try to also post your Installation Method with Version (it helps to get used to doing it).
3) Confusion always ensues when you relate users to phones in any way. Try again with JUST the phone. No discussion of User at all.
4) PHONES have two completely unrelated id/auth entries: First is "extension/registration password". Second is "screen login/screen password". They are not linked in any way other than the fact that when a user logs in to Vicidial in the agent login screen, that's the phone which will be called by Vicidial's login script. They are used in different places: extension/registration password is used in the PHONE (be it physical hardware VOIP phone or Software phone). screen login/screen password is used by the agent in the web browser during login (on the first login page).
5) Security-consciousness: NEVER use "all numeric" extension. If you get hacked and someone brute force attacks your asterisk server, the script kiddy will attempt every number from 100 to 10000. If they get a hit, then they need only brute force the password for that extension. But they never go beyond that. I highly recommend using one or two alphabet characters before or after or during your extensions. Instead of 1121 try zz1121. Note that this is in NO way related to any number anyone will dial on the telephone keypad to reach this agent. That's the "dialplan number" in the phone record. So the only place this "extension" will be used is when you register the phone. Think of it as a "user name" for the phone. Do you really want to have a "user 1000"? That's as bad as "root". LOL Since no one will ever use this again aside from registering a phone, why not something a little less obvious and less likely to cause a monetary loss if you do get hacked?
Users browsing this forum: Google [Bot] and 140 guests