Polycom SIP 3.1 Telephone User Manual


  Open as PDF
of 71
 
Developer’s Guide SoundPoint IP / SoundStation IP
2 - 32
Phone State Polling Configuration Parameters
The phone state polling configuration parameters in sip.cfg must be set as
followed:
Set
apps.statePolling.URL
to the location where requested information
should be sent.
For example,
apps.statePolling.URL
=http://172.24.128.85:8080
If this URL is set to Null, the requested information will not be sent.
Set
apps.statePolling.username
to the appropriate username.
For example,
apps.statePolling.username
=bob
The username and password are required to authenticate incoming
polling requests to the phone.
Set
apps.statePolling.password
to the appropriate password.
For example,
apps.statePolling.password
=1234
API Security
With respect to the security of the SoundPoint IP/SoundStation IP XML API,
the following should be noted:
Authenticating remote control and monitoring— There is no support of
TLS on the phone’s web server. The execution of each of each HTTP
GET/POST request requires an MD5 digest authentication. All pushed
URLs are relative URLs with the root specified in the sip.cfg configuration
file.
Achieving confidentiality of executed content—The phone’s HTTP client
supports TLS, so any data retrieved from the URL can be protected. Make
sure of the confidentiality of all traffic past the initial push request by
specifying a root URL that uses https.
Unsolicted event reporting—The confidentiality of all events reported by
the phone can be also be protected by TLS in the same way that push
content is.
Direct data push—When direct data push is enabled—disabled by
default— small amounts of executable content (1KB) can be sent directly
to the phone by the application server. The request will still be
authenticated through HTTP digest, but all content will be in clear text on
the network. Polycom recommends that you only use data push for
broadcast type alerts that do not pose any confidentiality risks.
Note
Both
apps.push.username
and
apps.push.password
must be set for data
push to be enabled.
 previous next